EU AI Act Article 50 — 20 days to seal | Get passport
Controlled onboarding pack

Customer Onboarding — Evidence First, Access Second

The expanded onboarding page for DEFONEOS buyers: first 10 minutes, first 24 hours, 7-day scoping, 30-day control map, 90-day pilot closeout, and truthful sandbox provisioning gates.

7stages
10mfirst routine
90dpilot path
0false access claims
Buyer-safe: this page is written to be sent, bookmarked, and audited. It separates what is live from what remains owner-gated.

Onboarding principle

A new buyer should experience DEFONEOS as controlled, auditable, and bounded from minute one. The onboarding path starts with evidence and scope, not with unbounded platform access.

Onboarding stages

This replaces vague “your sandbox is live” language with a real controlled path.

StageBuyer seesOwner actionStatus
1. IntakeConfirmation and reference numberVerify identity, route, and consentPublic
2. EvidenceEvidence room and pricing cardSend proof bundle and validation slotsLive
3. ScopeMeeting-notes-to-SoW draftConvert buyer pain into 90-day pilotDraft
4. SecurityData boundary and red-line registerConfirm no sensitive data in public demoDesigned
5. ProvisioningSandbox or private workspaceOnly after payment or contract routeOwner-gated
6. PilotControl map, demo, risk registerRun 30/60/90 cadenceBuyer-gated
7. CloseoutGo/no-go reportRoute to framework, prime, grant, or stopDecision

First-10-minute checklist

Use this after a high-intent buyer action.

Sandbox provisioning truth

The old onboarding page implied automatic sandbox provisioning. This page makes the truthful route explicit.

RequirementWhy it mattersGate
Verified buyer identityPrevents unknown access to dual-use AI surfaceOwner
Payment or contract routeAvoids unpaid provisioning and unclear termsOwner
Data boundaryKeeps public-source demo separate from sensitive buyer dataBuyer plus owner
Security postureCyber Essentials Plus and access-control pathOwner
Scope and success metricPrevents platform sprawlBuyer plus owner
Revocation pathAccess can be removed if scope changesOwner

Command examples

Commands below are illustrative until a buyer-specific sandbox exists. Do not present them as live credentials.

# Public-source pilot preparation
python -m defoneos.verify --evidence-room public --red-lines strict
python -m defoneos.scope --template 90-day-pilot --buyer public-service
python -m defoneos.audit --frameworks jsp936,nist-ai-rmf,iso42001,uk-gdpr

# Private sandbox commands require owner-gated provisioning.
# Never paste real API keys into public pages or email.

Welcome email template

Send this only after owner verification.

Subject: DEFONEOS onboarding — evidence, scope, and next step

Thank you for the DEFONEOS request. I have verified the public route and set up the next step as a bounded validation, not an open-ended platform rollout.

Your public evidence links:
- Evidence room: /defoneos-mod-evidence-room-index
- Pricing: /defoneos-mod-pricing-card-onepager
- 90-day pilot SoW: /defoneos-mod-meeting-notes-to-sow

Before any sandbox or private workspace is provisioned, we will confirm data boundary, scope, commercial route, and accountable owner.

Regards,
Nicholas Templeman

30-day onboarding cadence

The onboarding cadence turns a high-intent buyer into a governed pilot without assuming that all infrastructure is already accredited.

DayBuyer outcomeDEFONEOS deliverableDecision gate
0Understands route and boundaries.Evidence room, pricing card, SoW template.Proceed to validation or close.
1Has a named validation slot.Agenda, public proof links, red-line register.Meeting accepted.
7Sees scoped pilot draft.90-day SoW v0.1, success metrics, risk register.Buyer validates scope.
14Confirms procurement route.DASA, G-Cloud, prime, grant, or direct-pilot map.Route owner named.
30Receives control map and demo plan.JSP 936 map, NIST AI RMF map, public-source demo plan.Go or no-go to Day 60.

Access-control model

Access follows the least-privilege route. Public pages are open. Private workspaces are created only after scope, payment or contract path, and data boundary are verified.

Onboarding failure modes

These are the common places onboarding goes wrong. The page names them so the operator can prevent them.

Failure modeSymptomRecovery
Premature access claimBuyer thinks a sandbox is live before gates are complete.Clarify evidence-first path and owner-gated provisioning.
Unbounded platform askBuyer wants everything in one pilot.Reduce to three work packages and one success metric set.
Security overreachBuyer asks for sensitive data in public demo.Move to private route or keep public-source only.
Procurement ambiguityNo route owner or framework path.Send procurement guide and ask for named route owner.
Certification confusionBuyer asks whether DEFONEOS is already certified.Show current owner gates and DEFONEOS-SEAL route truthfully.

First technical validation agenda

This is the agenda for the first call after onboarding.

0-3 min   Confirm buyer problem and success condition.
3-8 min   Show evidence-room map and red-line register.
8-13 min  Walk through public-source demo route and data boundary.
13-17 min Show pricing card and 90-day SoW skeleton.
17-20 min Agree next step: stop, route, technical deep dive, or pilot scope.

Evidence artefacts created during onboarding

Each buyer journey should leave a small, auditable trail. That trail is the operating system: not a spreadsheet of vague promises, but named artefacts with owners and review dates.

ArtefactCreated byWhenPurpose
Buyer recordJEEVES draft plus owner reviewDay 0Track state, signal score, next action, and honesty flag.
Evidence bundleJEEVESDay 0-1Send the smallest proof set matching buyer pain.
Validation agendaOwnerBefore first technical callKeep the call to proof, boundary, commercial route, and next step.
SoW draftOwner with converter pageAfter meetingTurn notes into a bounded 90-day pilot.
Risk registerJEEVES draft plus owner reviewBefore pilotName certification, procurement, data, expectation, and scope risks.
Closeout reportOwnerDay 90Go, no-go, extend, framework route, prime route, or grant route.

Data-boundary pledge

This pledge is the clearest way to explain onboarding to a cautious public-sector buyer.

Procurement route primer

Onboarding should quickly identify the likely route so the buyer is not left with “interesting, but impossible to buy”.

RouteWhen to useDEFONEOS artefactGate
DASA open callInnovation and defence problem framing.DASA walkthrough and SoW draft.Owner submission.
G-Cloud or CCSCloud service procurement and public-sector buyer.G-Cloud listing bundle and pricing card.Listing status and buyer route.
Prime partnerWhen clearance, framework, or contract vehicle belongs to a larger supplier.Referral partner letter and evidence room.No exclusivity without review.
Direct pilotWhen buyer has budget and authority for discovery.90-day pilot SoW.Contract and payment route.
Grant or acceleratorWhen product-market validation is the goal.DIANA, UKDI, Innovate UK pack.Owner application.

12-framework crosswalk

The mapping below is a design and evidence discipline, not a claim of third-party certification.

FrameworkControl mappingHonesty status
EU AI ActTransparency, human oversight, record keeping, post-market monitoring, and high-risk discipline for public-service AI.Designed. Verify per buyer before external submission.
GDPR and UK GDPRData minimisation, lawful basis, subject-access path, retention, and no personal-surveillance default.Designed. Verify per buyer before external submission.
JSP 936Assurance-case structure, safety evidence, accountable owner, and operational human control.Designed. Verify per buyer before external submission.
JSP 440Protective marking, supplier security, secure handling, and public-vs-sensitive separation.Designed. Verify per buyer before external submission.
NIST AI RMFGovern, Map, Measure, Manage controls connected to buyer onboarding evidence.Designed. Verify per buyer before external submission.
ISO 42001AI management system roles, process control, continuous review, and competence evidence.Designed. Verify per buyer before external submission.
NIST PQCCryptographic agility path and truthful statement of current vs future signing posture.Designed. Verify per buyer before external submission.
NATO STANAGInteroperability-compatible language without claiming NATO certification.Designed. Verify per buyer before external submission.
AUKUS Pillar IICompatibility framing only; no partnership claim without signed evidence.Designed. Verify per buyer before external submission.
OSCALControl catalogue, SSP, component definition, and machine-readable audit path.Designed. Verify per buyer before external submission.
Five Eyes export disciplinePublic-source and non-controlled data boundary.Designed. Verify per buyer before external submission.
C2PA 2.0Content provenance and media-lineage posture for artefacts sent externally.Designed. Verify per buyer before external submission.

Honesty register

Explicit bounds for this page.