▲ 1 r/Notary

I'm trying to understand how apostille work is actually handled by independent notaries.

If a client comes to you needing apostille services and it's not something you handle yourself:

  • What do you usually do?
  • Do you refer them to another notary, an apostille service, an attorney, or someone else?
  • If you refer them, what kind of business are they?
  • What makes you refer it instead of doing it yourself?

I'm not selling anything -just trying to understand how the industry actually works."

reddit.com
u/lamsuneel — 8 days ago
▲ 0 r/Notary

How do apostille coordinators track packets through the Secretary of State's office?

I'm researching how small document coordination businesses operate -specifically companies that manage notarization and apostille services for immigration law firms and adoption agencies.

Trying to understand one specific part of the workflow: what happens after a packet gets mailed to the Secretary of State?

From what I've heard, each state has different processing times, different portals, some have no online tracking at all. Coordinators end up calling offices, logging updates manually, forwarding status emails to clients one by one.

A few questions for anyone who does this or works adjacent to it:

* How do you currently track active apostille packets across multiple states?
* How do you keep law firm clients updated without manually emailing each one?
* Is anyone using software built for this, or is it all spreadsheets and phone calls?
* What does a bad month look like when something falls through the cracks?

Not selling anything. Building an understanding of whether there's a real operational problem here worth solving. Honest answers appreciated -including "it's not actually that bad."

reddit.com
u/lamsuneel — 8 days ago

Question for people building or buying AI governance platforms.

The hyperscalers (Azure Foundry, AWS Bedrock, Google Gemini) are rapidly adding observability, tracing, evaluations, guardrails and governance capabilities. At the same time, AI agents are making it much easier for enterprise IT teams to build internal tools.

Yet companies like Airia, Credo AI, ModelOp, Monitaur, Holistic AI and others continue to build independent AI governance platforms.

I'm trying to understand why.

From your perspective, what is the long-term reason an enterprise would buy an AI governance platform instead of building what they need internally on top of Foundry/Bedrock/Gemini?

Is it because:

  • The hyperscalers won't own enterprise governance?
  • Cross-platform governance is fundamentally a separate problem?
  • The ongoing regulatory and domain expertise is too expensive to maintain in-house?
  • Or do you think many of today's governance vendors eventually get absorbed by the cloud platforms?

I'm not looking for vendor pitches. I'm genuinely trying to understand where people think the boundary between cloud platform and governance platform will settle over the next few years.

reddit.com
u/lamsuneel — 10 days ago

Will Azure and Google (Hyperscalers) just build this themselves and make AI governance startups irrelevant?

One argument against everything I've been saying:

If enterprises are already using Azure AI Foundry, Vertex AI, SageMaker, OpenAI Enterprise, etc., and those platforms increasingly include governance, monitoring, audit logs, guardrails, and compliance capabilities...

...why would anyone buy a separate AI governance product?

Serious question.

For those working in enterprise AI today:

  • Where do the platform capabilities stop?
  • What governance work is still manual?
  • Is there anything they fundamentally cannot solve because it lives outside the AI platform?
  • Or do you think standalone AI governance vendors eventually disappear as hyperscalers absorb the functionality?

I'm genuinely trying to understand where the platform ends and the gap begins or whether the gap exists at all.

reddit.com
u/lamsuneel — 11 days ago

Is AI governance actually three different markets?

I've spent the last few weeks reading AI governance discussions across Reddit, LinkedIn, vendor docs, and regulatory guidance. One pattern keeps showing up, and I'm curious whether people working in this space agree.

it feels like "AI governance" is now being used to describe at least three different problems:

Preventing bad AI usage

  • Browser controls
  • AI gateways
  • DLP
  • Prompt inspection
  • Shadow AI discovery

Governing AI development

  • Copilot/Cursor controls
  • AI code reviews
  • Merge gates
  • Agent approvals
  • Software assurance

Proving governance after decisions have been made

  • Who approved it?
  • What policy applied?
  • What evidence exists?
  • What changed since approval?
  • Can you answer an auditor or regulator six months later?

The interesting part is that these seem like completely different buyers, different budgets, and different products, yet they're all marketed as "AI governance."

For people working in AI governance today,Which of these consumes most of your time in practice?Or am I missing an entirely different category?

reddit.com
u/lamsuneel — 11 days ago

Is the evidence scattered or was it never created?

For people who conduct AI audits, model reviews, regulatory examinations, or governance assessments:

A practitioner recently made an interesting observation to me: the harder problem is not always finding evidence, but determining whether the evidence was ever captured in the first place.

Does that match what you see in practice?

When you're unable to fully reconstruct an AI-related decision, what is usually the primary reason?

The evidence exists but is scattered across multiple systems, teams, and documents.

The key rationale was never captured when the decision was made.

Examples might include:

why a threshold was chosen?why an exception was approved?who accepted a risk?why a human override occurred?

assumptions made at deployment

Interested in experiences from practitioners who have actually gone through reviews, audits, examinations, or investigations.

reddit.com
u/lamsuneel — 15 days ago

NAIC market conduct exam and AI systems ..what actually happened?

For anyone who's actually been through an NAIC market conduct examination in the last two years..when the examiner asked about your AI systems, what was the hardest question to answer?

reddit.com
u/lamsuneel — 15 days ago
▲ 2 r/AI_Governance+1 crossposts

What tools are you actually using for AI governance in insurance - and where do they still fall short?

For people working in insurance AI governance, compliance, risk, model risk, or internal audit:

When you need to answer questions about a specific AI system / AI-assisted decision, what tools are you actually using today?

Not governance frameworks or policies -actual software.

Are you using platforms like Credo AI, Holistic AI, ModelOp, ServiceNow, Archer, AuditBoard, OneTrust, homegrown tooling, or something else?

What part of problem do those tools solve well?

More importantly, what still ends up being manual even after those tools are in place?

Trying to understand where governance platforms stop and where people still have to do the work themselves.

reddit.com
u/lamsuneel — 16 days ago

Has anyone been through an audit where assembling evidence for an AI system took significantly longer than expected?

Working on something in the AI governance space and trying to understand what actually happens in practice.

When you're auditing an AI system - fraud detection, underwriting, claims processing -and you need to pull together ownership, approvals, policy versions, oversight records -how long does that typically take?

Is it usually straightforward or does it end up scattered across systems, teams, and people who may have moved on?

Not looking for theory -genuinely curious what the reality looks like on the ground

reddit.com
u/lamsuneel — 18 days ago

For those using Archer, ServiceNow GRC, AuditBoard, or MetricStream -can your platform determine whether an AI system's approval is still valid today?

Specific question for GRC platform users in insurance or financial services.

If an examiner asked tomorrow: "Who approved this AI system, what risk was accepted, and is that approval still defensible today given any policy changes, ownership changes, or expired risk acceptances since" - could your platform answer that directly?

Not just retrieve the stored records. But actually determine whether the approval remains valid today.

Trying to understand where the platform ends and the human judgement begins.

If yes — how are you doing it?
If no — where does the process break down?

reddit.com
u/lamsuneel — 19 days ago

For those using Archer, ServiceNow GRC, AuditBoard, or MetricStream -can your platform determine whether an AI system's approval is still valid today?

Specific question for GRC platform users in insurance or financial services.

If an examiner asked tomorrow: "Who approved this AI system, what risk was accepted, and is that approval still defensible today given any policy changes, ownership changes, or expired risk acceptances since" -could your platform answer that directly?

Not just retrieve the stored records. But actually determine whether the approval remains valid today.

Trying to understand where the platform ends and the human judgment begins.

If yes — how are you doing it?
If no — where does the process break down?

reddit.com
u/lamsuneel — 19 days ago
▲ 2 r/Compliance+2 crossposts

Quick question for compliance, audit, or governance folks in insurance:

If an examiner asked tomorrow- "who approved this AI system, what policy governed it, and is that approval still valid today?" - could your organisation answer that from a single system?

Or would it require pulling from multiple systems and teams- GRC tools, ticketing systems, policy repos, committee records?

Trying to understand whether the challenge is storing governance records or assembling them into a defensible answer across systems.

reddit.com
u/lamsuneel — 19 days ago

How do startups sell governance/compliance software into conservative enterprises?(i will not promote)

Founders who sell into highly regulated enterprises (insurance, banking, healthcare, GRC, compliance, audit):

How did you land your first few customers?

I'm trying to understand how buyers evaluate a new vendor when the product touches governance, compliance, audit, or risk management.

Did they care most about:

references and logos?

founder credibility?

pilots and proof of value?

certifications (SOC2, ISO, etc.)?

existing relationships?

What helped overcome the "you're a startup" concern?

Looking for real experiences, especially from founders selling into conservative industries.

reddit.com
u/lamsuneel — 20 days ago

How do startups sell governance/compliance software into conservative enterprises?(i will not promote)

Founders who sell into highly regulated enterprises (insurance, banking, healthcare, GRC, compliance, audit):

How did you land your first few customers?

I'm trying to understand how buyers evaluate a new vendor when the product touches governance, compliance, audit, or risk management.

Did they care most about:

references and logos?

founder credibility?

pilots and proof of value?

certifications (SOC2, ISO, etc.)?

existing relationships?

What helped overcome the "you're a startup" concern?

Looking for real experiences, especially from founders selling into conservative industries.

reddit.com
u/lamsuneel — 20 days ago

When your AI governance documentation is perfect — what else do examiners actually ask for?

For those who've been through an NAIC AI examination-if you had perfect governance documentation for an AI system, what additional evidence did examiners actually ask for that the documentation couldn't answer?

reddit.com
u/lamsuneel — 20 days ago

If AI Inventory Tells You What Exists, What Tells You It's Governed?

If a platform automatically discovered every AI system, assigned an owner, mapped regulations, and scored risk — what important governance question would still remain unanswered?

reddit.com
u/lamsuneel — 21 days ago

Is AI Inventory Enough for Governance?

Many AI governance platforms now focus on:

  • AI discovery
  • AI inventory
  • Ownership assignment
  • Regulatory mapping

Suppose a platform tells you:

"FraudGuard ML exists and John Smith is the owner."

What important question still remains unanswered?

For auditors, regulators, compliance teams, or governance practitioners:

Is inventory and ownership enough, or do you need additional evidence before you would consider a system adequately governed or defensible?

reddit.com
u/lamsuneel — 21 days ago

Question for Internal Audit leaders:

Suppose you were reviewing an AI system and discovered:

  • No clearly demonstrable owner
  • No documented risk acceptance
  • No evidence of oversight
  • No compliance sign-off

The information exists across multiple systems and documents, but no single source shows the complete picture.

Would you consider that a material audit finding?

And would your current tooling (AuditBoard, Workiva, Archer, ServiceNow, etc.) identify that automatically, or would it require manual investigation?

reddit.com
u/lamsuneel — 21 days ago

The more people I talk to, the less it seems like an AI problem and the more it seems like an accountability problem.

When organizations have to explain an AI-assisted decision months later, what's usually hardest: figuring out what happened, or proving who owned the decision and accepted the risk at the time?

reddit.com
u/lamsuneel — 27 days ago

Trying to understand how this works in practice.

If a regulator, auditor, or examiner asks your organization who was accountable for a specific AI-assisted decision made 12 months ago, what's actually hardest to pull together?

Not what should exist. What becomes painful in the real world?

reddit.com
u/lamsuneel — 27 days ago