Skip to main content
Back to Research
AI Ethics & Safety

How Serqet Makes AI Safe for Sensitive Use Cases

Edward Pina-Butler
May 2026
9 min read

Everyone is excited about AI — and they should be. It genuinely transforms how businesses operate. But there is a conversation that rarely happens before deployment, and it is the one that matters most: what happens when the data your AI touches is sensitive?

The Problem Nobody Warns You About

Healthcare records. Disability assessments. Legal correspondence. Financial documents. Social care intake forms. These are not the use cases you can experiment with. A data breach here is not an embarrassing news story — it is a regulatory penalty, a broken trust, and in some sectors, real harm to real people.

Generic AI tools — the ones built for mass-market adoption — are not designed with these contexts in mind. They are designed for speed, simplicity, and scale. The compliance architecture, the audit trail, the consent mechanisms: those are afterthoughts, if they exist at all.

At Serqet, we build AI differently. Here is the framework we apply to every sensitive deployment.

1 — Explicit Consent Before Any Data Leaves Your System

If your AI processes personal or sensitive data, the person whose data it is must understand what is happening — and agree to it, explicitly, before it happens.

This is not just good ethics. Under the Australian Privacy Act, GDPR, and most healthcare data regulations, it is a legal requirement. But beyond compliance, it is the right way to build trust with the people your product serves.

In practice, this means a consent screen that clearly explains: what data is being processed, by which AI system, by which provider, in which jurisdiction. Not buried in a terms of service — upfront, in plain language, before a single byte is transmitted.

2 — Full Audit Trail on Every AI Interaction

In a sensitive deployment, you need to be able to answer: who accessed what, when, and why?

  • Every plan generated. Every document uploaded. Every PII field revealed.
  • Every sign-in attempt. Every role change. Every consent recorded.

An append-only audit log is not optional in regulated industries — it is the backbone of your accountability posture. Without it, you cannot investigate an incident, pass a regulatory audit, or demonstrate due diligence.

We build audit logging into every Serqet AI deployment from day one — not as a Phase 2 feature, not as a bolt-on after launch.

3 — Role-Based Access: Not Everyone Sees Everything

The person answering the phone does not need to see the same data as the clinical lead. The admin processing a booking does not need access to full case history. The developer debugging a UI issue does not need access to real patient records.

Role-based access control (RBAC) is how you enforce least-privilege access at every layer — database queries, UI components, API routes, and export functions. When it is built correctly, PII does not appear on screen unless the logged-in user has a specific, named permission to see it. And even then, that reveal is logged.

4 — Validate AI Output Before It Reaches the User

AI models are powerful, but they are probabilistic. In a sensitive context, a hallucination is not a quirky chatbot response — it could be a wrong medication name in a care plan, or incorrect legal advice in a compliance document.

The safeguard is schema validation: define exactly what a valid AI response looks like, then parse and validate every response against that schema before it is rendered. If the output does not conform, the user sees an error — not a plausible-sounding fabrication.

5 — Map Your Regulatory Framework Before You Write a Line of Code

This is the one most developers skip — and the one that causes the most expensive problems later.

Every sensitive deployment has a regulatory landscape: GDPR, the Australian Privacy Act, NDIS Practice Standards, ICO guidelines, FCA requirements, HIPAA, the NDB scheme. These are not obstacles — they are specifications. They tell you exactly what controls you need to build.

At Serqet, we map the regulatory requirements to concrete technical controls before the first sprint starts. Building compliance in from the architecture is orders of magnitude cheaper than retrofitting it after the fact.

Proof: Movido Care — NDIS Support Plan AI

Movido Care is a Victorian NDIS-registered disability services provider. Their case workers were spending four or more hours per participant crafting six-page support plans from 34-page intake forms — by hand.

We built Movido Mind: an AI-powered support plan generator that transforms structured intake data into polished, NDIS-compliant participant support plans in minutes, not hours.

But the core challenge was not the AI. It was the data. NDIS intake forms contain some of the most sensitive information that exists: diagnoses, mental health triggers, medications, home addresses, family contact details, functional capacity assessments. This is data that belongs to vulnerable people. Getting it wrong — technically or ethically — was not an option.

Here is how we applied the five principles:

  • Consent. Before any participant data is sent to the AI, the application displays an explicit consent screen. It names the AI provider (Anthropic), identifies that processing occurs in the US, and requires an active opt-in. The consent event is timestamped and logged to the audit trail.
  • Audit Trail. Every event in the system is recorded: sign-ins (including failed attempts), plan generation requests, document downloads, PII field reveals, role changes. The log is append-only and cannot be edited.
  • RBAC. Three roles — case worker, coordinator, admin — each with scoped permissions. PII fields are masked by default and require an explicit reveal action, which itself is logged.
  • Output Validation. The AI returns a strict JSON structure covering ten named plan sections. Every response is parsed and validated against a Zod schema before it renders.
  • Regulatory Mapping. Before development began, we mapped the Australian Privacy Act, the NDIS Practice Standards, the Notifiable Data Breaches scheme, and OWASP LLM Top 10 risks to concrete technical controls.

What This Means for Your Business

If your use case involves sensitive data — healthcare, legal, financial, social care, HR, education — the question to ask before you build is not "which AI model should we use?"

It is: does our architecture deserve the trust we are asking for?

Consent. Audit. Access control. Output validation. Regulatory alignment. These are not features you add later. They are the foundation you build on.

At Serqet, we do not bolt compliance on at the end. We design for it from the first conversation. If your use case involves sensitive data, talk to us before you build.

Back to Research