Advisory-Firm AI Exam Defensibility Audit
Would your RIA’s AI use survive an SEC or state exam? A deterministic self-assessment across the six exam-surface domains an examiner probes when a firm uses AI — AI in marketing (20, fatal), books & records for AI outputs (20, fatal), supervision & written policies (18, fatal), vendor AI oversight (16), client disclosure & Form ADV (14), AI communications capture (12) — marked 0/1/2 on your own evidence for a 0-100 score banded EXAM-READY / OPEN FINDINGS / NOT DEFENSIBLE. A dispositive fatal-domain gate forces NOT DEFENSIBLE when any of the three fatal domains is zero, because each draws a deficiency letter on its own — so a firm can score 73 and still be NOT DEFENSIBLE with books-and-records at zero. Portfolio rolls up to the worst branch (ALL EXAM-READY / FINDINGS TO CLOSE / DEFICIENCY LIKELY) with the domain to fix first. Date-agnostic and people-blind. Runnable Python engine + workbook + assessment & remediation playbooks + a 5-firm sample. Grades a firm’s evidence file, renders no legal ruling, scores no person. Not legal advice.










