Operational Manifesto

The G3 Governance Standard

Every technical decision made within Kaldroa Advisory is audited against three gears. G3 is not a framework. It is an operational manifesto.

G1

Generational Continuity

Tech that survives leadership transitions

86% of family offices lack a documented succession plan. When the Principal's trusted CIO or family office manager leaves, they take years of institutional knowledge with them. G1 eliminates key-person risk by embedding all operational knowledge into the architecture — not into people.

Principles

  • All critical processes documented and machine-readable
  • G3 Tech Keys prepared and held by multiple authorised parties
  • Next-Gen capable of independent system operation on Day One
  • No single point of failure in the operational stack
  • Succession testing conducted quarterly

86% of SFOs lack a succession plan — G3 eliminates that risk

G2

Ground-Truth Data

Real-time visibility, not lagging reports

The average family office operates on T+14 reporting. By the time the Principal sees the consolidated position, it is two weeks old. Decisions are made on stale data. G2 establishes a Single Source of Truth — the KaldroaBus — that delivers 60-second consolidated visibility across all custodians and asset classes.

Principles

  • Single Source of Truth via KaldroaBus global singleton architecture
  • Canonical Asset Schema — 14-field normalised data model across all custodians
  • Sub-60-second consolidated reporting for the Principal
  • Zero manual reconciliation — data flows, not spreadsheets
  • Forensic Digital Silhouette Mapper monitoring data integrity

T+14 days → 60 seconds. That is the G2 standard.

G3

Guardrailed AI

modern AI within a Sovereign Clean Room

65% of family offices want AI. Only 5% have adequate governance. The AI Paradox is real: the tools that could eliminate the Complexity Tax are the same tools creating Digital Exhaust (sensitive data leaked into public AI models). G3 resolves the paradox through hardware isolation, not policy promises.

Principles

  • Private AI Clean Room — hardware-isolated, zero data retention
  • IPP 5-Gate Governance — every AI interaction compliance-checked
  • Zero Digital Exhaust — no sensitive data in public AI models
  • Sovereign Clean Room — all AI computation within the family's private technical perimeter
  • Anti-Training Guarantee — your data never enters a public AI training set

Privacy as a technical requirement, not a contractual promise

The AI Paradox

65% want it. 5% can use it safely.

The JPMorgan 2026 Family Office Report confirmed what we already knew: the vast majority of single family offices want to deploy AI in their operations. The efficiency potential is transformational. But 47% cite privacy concerns as the primary barrier — and those concerns are entirely valid.

Public AI tools (ChatGPT, Claude, Gemini) retain user inputs for model training by default. A single document — a trust deed, a tax filing, a beneficial ownership structure — fed into one of these tools creates a permanent Digital Exhaust record. The family's most sensitive data is now embedded in a commercial AI model's training corpus.

G3 resolves the paradox. The Sovereign Clean Room delivers the full power of frontier AI — with zero data exposure. Privacy is enforced at the hardware level, not the policy level. There is no reliance on terms of service. There is no data retention. The family's digital silhouette remains sovereign.

Technical Governance

How We Govern Every AI Interaction

The IPP 5-Gate Framework — built into every Kaldroa engagement

Every piece of data that enters the Sovereign Clean Room passes through five sequential gates before it reaches an AI model. This is not a policy — it is a technical enforcement layer that makes data leakage architecturally impossible.

01

VERIFY

Every data input is cross-referenced for identity and source integrity before processing begins.

02

VALIDATE

Data is algorithmically checked against institutional benchmarks. Corrupt or inconsistent data is rejected before it reaches the model.

03

ENCRYPT

All data is encrypted at rest and in transit. No unencrypted family data ever touches an AI model.

04

SOVEREIGN

Data never leaves the family's private technical perimeter. No public cloud. No third-party training sets. No Digital Exhaust.

05

AUDIT

Every AI interaction is logged in the immutable Decision Audit Trail. The family owns a complete record of every query, every output, every decision.

The result: the efficiency of modern AI with 1920s levels of discretion.

Certification

What G3 Certification means

A G3-certified family office has completed a rigorous assessment across all three governance dimensions. It has demonstrated that operational knowledge is institutionalised, data is unified and real-time, and AI is deployed within a sovereign perimeter. G3 certification is the internal standard Kaldroa uses to confirm an engagement has achieved its objectives — not a regulated qualification.

G1 Assessment

  • Succession readiness
  • Key-person risk
  • Tech handover plan

G2 Assessment

  • Reporting latency
  • Data unification
  • Single Source of TruthOne unified data layer replacing all fragmented portals

G3 Assessment

  • AI governance audit
  • Digital Silhouette map
  • Sovereign Clean RoomPrivate AI environment — zero data exposure

Key Terms

KaldroaBus
The single data architecture connecting all custodians, banks, and asset classes into one real-time view.
Sovereign Clean Room
A private, hardware-isolated AI environment where family data is processed without exposure to public models.
Digital Silhouette
The complete map of every data point, tool, and exposure risk connected to the family's digital presence.