What COMPAiSS Does

Turning complex institutional web ecosystems into accurate, authoritative, multilingual AI responses.

Websites for regulated institutions contain thousands of pages of information - policies, procedures, rules, and support resources - typically distributed across multiple departments, administrative offices, and service units. For most users, navigating these opaque websites to find the right answer quickly is a daunting proposition.

Universities, government service departments, hospitals, and professional regulators all face the same challenge: the information exists, but it is spread across hundreds or thousands of webpages and policy documents, each governed by different offices and updated on different schedules.

COMPAiSS solves this problem for institutions that have an obligation to provide clear, accurate, and authoritative information - delivered in any language the user prefers - without generating responses that go beyond what the institution has actually authorized.

Why Institutions Choose COMPAiSS

Eight outcomes that no generation-first AI system can match by architecture.

Each of these properties is architectural - not a policy setting, not a configuration option, not a dashboard control. They are structural properties of the execution-gated inference model that cannot be accidentally disabled.

How the Architecture Works

Execution-gated inference - the AI will not answer questions it is not authorized to answer.

At its core, COMPAiSS is built on an execution-gated inference architecture. If authorization fails, the primary institutional reasoning model does not execute or allocate primary inference resources.

By controlling whether AI reasoning happens at all, COMPAiSS enforces institutional authority structurally, rather than relying on post-generation filtering or correction.

COMPAiSS employs defense-in-depth controls: authorization gating prevents unauthorized primary model execution, instruction-based constraints guide behavior during authorized inference, and post-generation validation ensures URL compliance with institutional sources.

The greenlist and parsing architecture do more than control scope - they control what the model receives as its epistemic environment. When the model receives content only from pre-parsed, institutionally authorized pages and documents, the surface area for misinterpretation is dramatically smaller than in a RAG system reasoning over a broad, unstructured corpus.

The Structural Problem with AI Systems Today

Why generation-first AI creates risks that disclaimers cannot fix.

As a direct consequence of complex institutional web ecosystems, many users turn to consumer-based AI systems (ChatGPT, Copilot, Gemini, and similar tools) to obtain fast, clear answers to institution-specific questions.

But consumer AI models are designed to generate responses by default. They optimize for broad usefulness across a vast training base. When these systems are applied to narrow, institution-specific questions, errors, hallucinations, and references to non-authoritative or external sources are a predictable byproduct of that design.

The AI industry readily acknowledges these facts - incorrect or unsupported answers are generally treated as expected outcomes to be managed rather than failures to be prevented. In regulated institutional environments, however, this approach introduces risks that are difficult - if not impossible - to fully mitigate after an answer has already been delivered.

There are also strong economic incentives to preserve this generation-first model. Managing risk after answers are produced enables entire ecosystems of enterprise features - monitoring tools, compliance dashboards, moderation layers, human review workflows, and governance add-ons - that are costly to build, costly to operate, and highly profitable to sell. These measures may reduce exposure, but they do not change the underlying architecture or eliminate the root causes of hallucinations.

Where Accuracy Is Not Optional

The consequences of incorrect information are not theoretical in these environments.

COMPAiSS: The Structural Solution to Systemic AI Failure

Authorization before inference - not filtering after it.

Instead of generating an answer by default and attempting to manage risk afterward, COMPAiSS evaluates each question for institutional authorization before primary model inference is permitted to occur.

When a question is asked, the system first determines whether the question falls within an institution's defined scope, whether authoritative, institution-approved material exists to support an answer, and whether producing an answer would be responsible and defensible. The AI model is only allowed to provide an answer when those conditions are met.

This means COMPAiSS does not rely on disclaimers, confidence scores, post-answer filtering, or human review to retrofit compliance after an answer has already been produced. Unsupported or out-of-scope questions are prevented from triggering primary institutional model execution in the first place.

When a question is clearly institution-specific and authoritative information exists within approved sources, COMPAiSS produces a clear answer grounded exclusively in that institution's authorized materials - not inferred from the broader universe of unrelated organizations or jurisdictions. When a question cannot be supported, the system does not guess, generalize, fill gaps, or improvise simply to be "helpful".

By shifting decision-making ahead of AI generation, COMPAiSS removes the need for many of the costly corrective controls required by generation-first AI systems and eliminates a major class of unauthorized institutional hallucinations by design.

COMPAiSS vs. Enterprise AI

Eight governance properties - and how the leading AI platforms compare.

All competitor assessments based on publicly documented architectures and available compliance documentation. RAG column reflects conventional retrieval-augmented generation deployments without a pre-inference gate. See full benchmarking and governance gap analysis →

Not RAG. Not General-Purpose. Not a FAQ Bot.

Three common misconceptions - and why the architecture of COMPAiSS is different from all three.

Not Retrieval-Augmented Generation (RAG)

RAG systems connect AI to an institution's documents or databases so it can "look things up" while generating an answer. Many AI systems rely on RAG and similar post-processing controls to reduce hallucinations after a response has already been generated. These approaches require retrieval pipelines, vector databases, monitoring systems, and ongoing oversight - and the model still generates a response for every request, including requests for which no authoritative information exists.

COMPAiSS operates earlier. By preventing unsupported or unanswerable questions from triggering the AI model in the first place, COMPAiSS prevents unsupported responses from being generated at all - materially reducing reliance on costly post-generation cleanup tools. This difference is not a tuning choice or configuration detail. It reflects a fundamentally different architectural approach.

Not a General-Purpose AI System

General-purpose AI systems are designed to answer questions about anything. Their value lies in breadth - the ability to move freely across domains, institutions, and jurisdictions without predefined boundaries. COMPAiSS is intentionally built for institutional specificity. Its purpose is not to approximate an answer from general knowledge, but to reflect only what a particular institution has actually authorized as its official position, policy, or guidance - and only then release the AI to answer the question.

In short: general-purpose AI optimizes for how much it can answer. COMPAiSS optimizes for when it is appropriate to answer about your institution - and when it is not.

Not a FAQ Bot or Scripted Chatbot

FAQ systems are built around predefined questions and fixed answers, requiring users to frame their questions within those limits. They break down when questions exceed those limits or require context, judgment, or interpretation of institutional rules. COMPAiSS does not rely on scripts. Each question is evaluated on its own terms, drawing from relevant institutional information to provide clear, detailed, and nuanced answers aligned with what users are actually seeking.

Cost Savings by Design

The cost difference between COMPAiSS and conventional enterprise AI is structural, not marginal.

For institutions managing approximately 100,000 AI-assisted queries annually, conventional RAG deployments typically incur total annual operating costs between $90,000 and $200,000, driven by three compounding cost drivers: inference waste, persistent RAG infrastructure, and compensatory governance. A COMPAiSS deployment addressing the same workload operates at approximately $15,000 to $30,000 per year - because all three of those cost drivers are eliminated by architecture, not managed after the fact.

Approximately 40% of queries in a typical institutional deployment are denied inference entirely. Those users receive a high-value safe failure response - direct links to authoritative institutional policies - at zero marginal compute cost.

Lower cost does not imply lower accuracy. Hallucinations require active inference. By preventing inference for unauthorized queries, COMPAiSS removes the structural conditions under which fabrication occurs - not as a downstream filter, but as an architectural property.

The Contrast with Enterprise AI Assistants

A structural difference, not a superficial one.

Systems like Microsoft 365 Copilot are designed to operate across an organization's entire digital environment: emails, documents, Teams conversations, SharePoint repositories, and calendar data. When a multilingual user submits a question, the system translates that query and then retrieves across whatever content happens to be indexed - which may include outdated policy drafts, informal communications, or documents from unrelated departments that happen to contain matching keywords.

This is not a configuration failure. It is an architectural consequence of designing a system for breadth across an entire organizational corpus rather than for authority within a defined institutional scope.

COMPAiSS separates these functions entirely. Translation normalizes the question into a working language. Authorization determines whether the institution has approved materials to support an answer. Inference occurs only if both conditions are satisfied, drawing exclusively from institution-approved sources.

This means a student asking about academic standing in Mandarin, French, or Arabic receives the same institutionally authorized answer as a student asking in English - not an approximation shaped by translation artifacts or corpus noise. For institutions with obligations to serve multilingual populations equitably, this distinction is not incidental. It is the difference between a system that is consistent by architecture and one that is consistent only when conditions happen to align.

Keeping Meaning Consistent Across Translations

Separating language from meaning at the architectural level.

Consumer-based AI systems often translate a user's question as part of how they search for information. In many RAG-based systems, this translation step is intertwined with retrieval and reasoning. As a result, small differences in phrasing can influence which documents are retrieved, how passages are interpreted, and what the system ultimately emphasizes in its response.

COMPAiSS avoids this problem by separating language from meaning at the architectural level. When a question is submitted in a non-English language, it is first translated into English as a preprocessing step outside the institutional authorization framework. Translation does not retrieve documents, interpret policy, apply institutional rules, or generate answers.

Once translated, the question is evaluated for institutional scope and authorization before any primary institutional reasoning occurs. After the answer is determined, it is translated back into the user's chosen language for presentation.

By fixing meaning, scope, and authorization before generation occurs, COMPAiSS prevents the interpretive drift and cross-language inconsistency common in RAG-based systems - ensuring that institutional answers remain accurate, authoritative, and consistent regardless of language.

For Consulting Firms and System Integrators

Two natural deployment entry points for organizations advising regulated institutions.

For clients with existing RAG infrastructure, COMPAiSS operates as a pre-inference governance layer that addresses the residual hallucination rates RAG alone cannot resolve - strengthening existing investments without replacing them. Peer-reviewed research documents residual hallucination rates of approximately 6% even under optimal RAG conditions, and independent empirical testing of Thomson Reuters' flagship legal AI platform found hallucination rates of 17–33% in real-world use. COMPAiSS addresses the architectural root cause those systems cannot eliminate.

For clients without RAG investment - whether cost-constrained or concerned about documented failure rates - COMPAiSS provides a complete inference governance alternative that enforces scope, source authority, and institutional policy without enterprise infrastructure overhead.

In both cases, deployment is straightforward and the governance story is auditable, defensible, and aligned with regulatory expectations in higher education, healthcare, government, and legal services.

COMPAiSS architecture is the subject of patent applications currently under examination in Canada and the United States.

Built for Institutional Procurement and Governance Review

Auditable, bounded, and aligned with fiduciary obligations.

Regulated institutions do not only need AI systems that perform well - they need AI systems they can document, defend, and submit for formal review. Procurement officers, audit committees, legal counsel, and government review panels increasingly require institutions to demonstrate not just that an AI system produces good outputs, but that its governance architecture is auditable, bounded, and aligned with fiduciary obligations.

COMPAiSS is designed with this requirement in mind. Because authorization decisions are deterministic and occur before inference, every interaction follows a documented, reproducible governance path. The institution controls which sources are authoritative. The institution defines the scope boundary. The system enforces both structurally, not probabilistically.

This makes COMPAiSS directly compatible with the documentation requirements of AI governance panels, institutional ethics review processes, and government procurement frameworks - including those that require institutions to demonstrate how unauthorized or out-of-scope AI responses are prevented, not merely managed.

Institutional Accountability and Control

Visibility and control over every AI-mediated answer.

Beyond preventing AI-generated errors, COMPAiSS has direct implications for institutional accountability and content governance. When institutions provide information, they implicitly promise that it is accurate, authoritative, and reliable. COMPAiSS extends that same standard into AI-mediated answers by ensuring that primary institutional responses are grounded in institution-approved sources.

COMPAiSS also supports the ongoing quality of institutional source content in two concrete ways. Regular greenlist audits verify that every approved source is live, current, and correctly indexed - identifying broken links, outdated pages, and redirect chains before they affect responses. And because COMPAiSS surfaces the questions users are actually asking, institutions gain a continuous signal about where published content is missing, ambiguous, or in need of revision. The system does not just reflect institutional content - it helps institutions keep that content authoritative.

It is important to note that COMPAiSS, like any information system, reflects the authoritative materials it is permitted to use. If an authorized institutional link, webpage, policy document, or official guidance is outdated or requires revision, that limitation applies equally to any AI system, search tool, or human process relying on the same source. COMPAiSS does not reinterpret or supplement institutional content; it reflects what the institution itself has authorized.

The difference lies in visibility and control. By restricting answers to institution-approved sources and preventing unsupported inference, COMPAiSS makes gaps or inconsistencies explicit and correctable rather than obscuring them through generalized or speculative responses.

Explore This Architecture

Active deployments across Canadian institutional environments.

COMPAiSS is currently in active beta testing pilot deployments across five Canadian institutional environments, including research-intensive universities and a federal public service context, with two additional institutional pilots currently under review.

A federal-scale public service demonstration environment has also been developed to validate execution-gated inference in high-volume constituent service contexts, reflecting organizational environments that manage tens of millions of citizen interactions annually across telephone, in-person, and digital channels.

The system has been shaped through direct institutional governance experience and is currently being evaluated in registrarial and student services domains where policy accuracy and institutional authority are critical.

For institutional evaluation or technology partnership inquiries: [email protected]

Technical Documentation and Further Reading

White papers, architecture papers, cost analyses, comparative assessments, and governance materials for institutional evaluation.

• The Road Less Travelled - Rethinking Generative AI Costs, Safety, and Trust in Regulated Institutions - Expands on the structural arguments and associated costs of post-generation controls.
• Breaking Out of the Matrix - A New Opportunity for AI Consulting Firms with Regulated Industry Clients - White paper directed at major consulting firms, presenting the empirical case for execution-gated inference as an architectural alternative to generation-first AI governance, with active deployment evidence from Service Canada, Dalhousie University, and McGill University.
• COMPAiSS White Paper - Execution-Gated AI for Regulated Institutional Environments - Foundational overview of the COMPAiSS architecture, execution-gated inference model, multilingual authorization framework, governance controls, institutional deployment strategy, and structural contrast with generation-first AI systems.
• Authorization-Controlled Institutional AI in Regulated Environments - Outlines the structural argument behind COMPAiSS and the limitations of generation-first systems.
• Hallucinations by Design - A Cross-Model Assessment of How Major AI Consulting Firms Advise Clients to Manage Generative AI Errors - Structured cross-model consensus analysis of AI consulting firm approaches to hallucination management.

About COMPAiSS

Built from direct institutional governance experience.

COMPAiSS was developed by Frank Harvey, Professor of Political Science and Senior Advisor at Dalhousie University. Over the course of his career Harvey has held senior leadership roles across Canadian higher education (including acting President, Provost and Vice-President Academic, Dean, and Department Chair) giving him direct, institutional-level experience with the governance, accountability, and compliance obligations that regulated environments actually impose on information systems.

COMPAiSS was built from that vantage point. Not as a technology solution looking for a problem, but as an architectural response to a structural failure Harvey observed directly: institutions deploying generation-first AI in environments where that architecture cannot meet their obligations.

Architecture and development were led by Harvey. Backend engineering, API integration, and deployment infrastructure were built with AI-assisted development tools, primarily GPT and Claude, under Harvey's direct architectural oversight. The system has been validated through thousands of test scenarios across student, faculty, and administrative use cases in multilingual institutional environments.

COMPAiSS is actively seeking institutional evaluation partners and technology collaborators.