About ProfytAI

We're Building the Compliance Data Layer for Regulated Industries.

The regulatory data layer is live. Packaged compliance products launch Q2 2026.

2025Founded
SEAPrimary market
4+Regulatory frameworks
6,500+Obligations mapped

System in active use at a leading BSP-regulated digital bank in the Philippines.

See the Case Study

Our Mission

Compliance Shouldn't Steal Your Calm.

People carry enough stress before they open their laptop. Regulated work adds a different pressure. Responsibility stretches across quarters. The bar is high. The work rarely feels closed. That is not weakness. It is what serious accountability feels like when everything important is riding on getting it right.

Our mission is to reduce that load. We build so teams spend less time searching, re-mapping, and bracing for “show me” moments, and more time on the judgment calls that actually need a human.

“Compliance infrastructure was never supposed to be rebuilt by every institution it applies to. Someone had to stop treating that as normal.”

ProfytAI Founding Thesis

How We Build

Four Principles. One Direction.

01

The layer that outlasts the tool

Products change. Teams turn over. We invest in the layer that should not disappear when either happens: the model of what the institution must prove, and where that proof lives.

02

Built for cycles, not moments

Compliance is recurring work: audits, exams, remediation, upgrades. We build for repetition without reinvention, so each cycle compounds instead of resetting the organization from zero.

03

Evidence as a habit, not a rescue

We bias toward systems that make proof ordinary: retrievable, attributable, reviewable. If proof only appears when someone panics, the architecture failed long before the panic.

04

One jurisdiction, one chain of proof

We keep obligations, decisions, and proof tied to the jurisdiction they belong to. We do not let a single "global" thread replace separate chains where regulators expect separation.

What We Build

Today: Live Data Layer. Launching: Packaged Products.

The regulatory data layer is built and live. Pre-packaged compliance tools launch Q2 2026, giving teams direct access to the structured framework data they need without rebuilding from scratch. Regulatory APIs follow as the next layer.

Live

Compliance Data Layer

Structured obligation registers and control maps for MAS TRM and BSP MORB frameworks. Built, live, and operating for regulated institutions today.

Q2 2026

Compliance Packs

Pre-packaged Compliance Packs, Control Mapping Kits, and Audit Readiness Kits built on the live regulatory data layer.

Roadmap

AI-Native Platform & APIs

Regulation Policy Generator, obligation graphs, and structured regulatory data exposed via APIs for every compliance tool in the region.

Team

Our Leadership Team

Experienced leaders bringing 40+ years of combined expertise in financial services, compliance, and cutting-edge AI technology.

Team member

Jeff Kangar

CEO & Co-Founder

Ex-LinkedIn and Deloitte security leader with 13+ years in GRC.

Featuring

Ex-LinkedIn & Deloitte Cyber Security Leadership • Top Secret (DoD) clearance and trusted with national security data

Education

Bachelor of Science (B.S.), Information Technology

REGULATED ENVIRONMENTS

Leads GRC programs in highly-regulated environments with national-security-grade trust requirements.

ENTERPRISE SECURITY

Scaled enterprise security programs across cloud and corporate systems at LinkedIn and Deloitte.

LEADERSHIP & STRATEGY

Drives security strategy, risk reduction, and compliance execution across complex organizations.

Team member

Chris Burkhardt

CTO & Co-Founder

Founder-operator with 20+ years building and scaling products across industries.

Featuring

Founding Engineer at TrueCar (NASDAQ IPO) • Principal Engineer at Beachbody (NYSE IPO) • Principal AI Engineer at Asurion

Education

Master of Engineering (MEng), Cloud Computing Management

STARTUP FOUNDING

Built companies from zero to launch as both CEO and CTO across Japan, Vietnam, and the United States.

PUBLIC COMPANY EXPERIENCE

Held Founding Engineer and Principal Engineering roles at TrueCar and Beachbody through IPO-stage growth.

DEEP TECHNICAL EXPERTISE

Leads AI and cloud architecture, scaling products with distributed engineering teams globally.

Team member

Bloo Nguyễn

CPO

Product and full-stack leader focused on AI features and production data systems.

Featuring

Founding Engineer at ProfytAI • Lead Engineer at Sinhke • Senior Engineer at Airthings

Education

Master of Science (M.S.), Computer Science • MBA Quantic School of Business

PRODUCT LEADERSHIP

Owns product strategy and delivery across engineering, design, and go-to-market teams.

AI & DATA SYSTEMS

Built ETL, LLM, and model-management pipelines for reliable AI operations at scale.

ENTREPRENEURIAL EXECUTION

Combines startup execution with technical depth and MBA-driven business discipline.

Case Study

From Manual Rebuild to Automated Compliance

One of the Philippines' leading digital banks runs compliance across multiple regulators and many business units, still heavily dependent on manual processes and spreadsheets. ProfytAI is implementing an enterprise-grade program that makes AML obligations, regulatory change, and remediation visible, traceable, and accountable across the organization.

Active Engagement · 2026

Sector

Digital Banking

Jurisdiction

Philippines

Frameworks in Scope

BSP MORB Part IX (AML/CFT) · BSP issuances

Program scope

9 capability layers ·
3 workstreams

The Challenge

A compliance function built entirely on manual effort.

The team had strong documentation and clear processes, but limited real-time visibility into obligation coverage, how new BSP issuances affect MORB (AML/CFT) obligations, or end-to-end remediation status. Work spanned multiple regulators and business units, yet lived largely in spreadsheets and ad hoc trackers.

AML obligations under MORB Part IX were not held in a searchable obligation registry with evidence anchored in board-approved internal policy. BSP circulars were followed manually. Gap findings were not managed in one place from assignment through closure with an evidence matrix and audit-readiness trail, which was the focus of the remediation and evidence workstream.

ProfytAI is deploying the full program on primary sources including MORB obligations, internal AML policy, BSP issuances, and compliance frameworks. Each with clear ownership, executive visibility, and measurable outcomes for obligation structuring, regulatory change awareness, and remediation.

Before ProfytAI

  • Excel-heavy tracking and limited real-time visibility into obligation coverage, regulatory change impact, and remediation status
  • No structured obligation registry linking BSP MORB (AML/CFT) requirements to board-approved internal policy with evidence-grade citations
  • Manual monitoring of BSP issuances: reading, interpreting, and summarizing updates without a unified feed, classification, or executive briefs
  • Policy-to-regulation gap reviews disconnected from a single remediation workflow; weak traceability from surfaced gap to verified closure
  • Fragmented documentation across manuals, annexes, and testing artifacts instead of one evidence and audit-readiness view
  • Downstream effect of new BSP circulars on MORB obligations assessed manually, with limited linkage to internal policy updates

Solution Overview

The program is deliberately wide: it has to connect regulatory source law, internal policy, business-unit accountability, and audit-grade evidence at once. Nothing here is a slide deck. Each layer below is a live system surface that replaces manual reconstruction with structured data, so the bank can defend its posture under real supervisory scrutiny, not just in a workshop.

Obligation Registry

In Progress

Thousands of discrete regulatory obligations are extracted from BSP MORB Part IX and GoTracs, normalized, and held in a searchable register so compliance and the business can answer what the rule requires, in one place, instead of scattered PDFs and spreadsheets. Each obligation carries structured metadata for ownership, severity, and downstream mapping to policy and controls.

Structured

Regulatory Lineage &
Policy Evidence

In Progress

Every obligation is tied to verbatim source text and to AML policy language, with inline citations that show exactly where internal standards meet (or diverge from) the regulator’s rule set. This closes the gap between what examiners read in MORB and what the bank can prove in its own documents.

Traceable

Coverage Analytics &
Gap Surfacing

In Progress

Policy coverage is scored against the obligation set so leadership sees concentration risk: which requirements are fully evidenced, which are partial, and which are open gaps requiring remediation. The same view feeds prioritization for the business units that must act.

Measured

BSP Issuance Ingestion &
Alerting

In Progress

New BSP circulars and issuances are captured continuously and surfaced in a central dashboard with proactive notifications, so the team is not discovering material updates days later through manual lists or email forwards. The feed becomes the single front door for regulatory change that can move MORB obligations.

Live

Applicability &
Classification

In Progress

Each issuance is triaged for relevance to the bank’s license and operating model (for example digital banks vs. the full industry), tagged by regulatory intent, and linked to the MORB sections they amend or supersede. That cuts noise and prevents mis-prioritized fire drills on informational circulars.

Triage

Executive Circular Briefs

In Progress

Action-required issuances produce tight one-page summaries for leadership: what changed, who is affected, and what must happen next, with clear ownership hooks. The goal is decision-ready packs, not another 40-page PDF sitting unread in an inbox.

Executive

Remediation Workflow &
Business Unit Routing

In Progress

Gaps surfaced in obligation and policy analysis become trackable items with human-in-the-loop confirmation, assignment to business units, deadlines, and status from open through review to completion-including committee or approval paths where the bank’s governance model requires them. Nothing disappears into a side channel.

Routed

Evidence Matrix &
Control Linkage

In Progress

Remediation outcomes, evidence attachments, and control mappings roll up into a living evidence matrix so auditors and internal assurance can see which obligations are satisfied with what proof, not a binder assembled the week before an exam. Pass, partial, and fail states stay attached to the underlying obligation.

Defensible

Audit Readiness &
Closure Validation

In Progress

When remediation is validated by compliance, the system propagates closure into audit-readiness views: a traceable chain from surfaced gap to verified closure, with automatic linkage back to the obligation register. That is the difference between ‘we think we fixed it’ and ‘we can show we fixed it under scrutiny.’

Auditable

Engagement Summary

Nine capability layers

Obligation registry & MORB coverage
Policy evidence & lineage
Gap analytics & prioritization
BSP feed & alerting
Applicability & classification
Executive circular briefs
Remediation & BU routing
Evidence matrix & controls
Audit readiness & closure

Direction of Travel

The bank is moving from manual spreadsheets and ad hoc tracking to a single enterprise program that spans the full compliance operating stack: authoritative obligations, policy and evidence linkage, continuous regulatory change intelligence, routed remediation across business units, and audit-defensible closure. Leadership-grade reporting ties each layer to primary regulatory and policy sources so complexity becomes visibility, not noise.

Work with us

Ready to Stop Rebuilding?

Whether you're a compliance team, a fintech founder, or a consultant, our system is ready for you today.