About Annexo
Compliance, done by people who have done it before.
Annexo turns the EU AI Act, GDPR, DORA and NIS2 into one audit-ready conformity dossier — produced from your code and documents, with a provenance pointer on every claim. We built it because we have done this work by hand, at enterprise scale, under real regulators.
Founder
Benjamin Hellmich
Data & AI transformation leader · 12 years
Benjamin has spent over a decade building and governing AI at scale. As a Senior Manager for Data & AI and GenAI at Accenture's strategy practice in Munich, he has led more than 100 AI use cases for large, regulated enterprises.
That work included designing BaFin- and GDPR-aligned AI governance for a global asset manager running 200+ models across 20 countries, and delivering GenAI programmes with returns above 15× for industrial and energy groups. Annexo productises exactly that governance discipline for the EU AI Act.
Earlier he worked as a software engineer, an investment analyst and in M&A, and began his career in banking. He holds an MSc in Finance from Cranfield and a BSc in Computer Science, and advises an international humanitarian organisation on data architecture across 30+ countries.
Experience
Selected companies the team has worked with
Why Annexo
Verification is the moat.
Regulators — BaFin, the GDPR supervisory authorities, and now the EU AI Act — expect evidence, not assertions. Annexo applies that same rigour as a product: every line in a dossier traces back to the regulation and to your own source material, so the person who signs it can defend it.
Bring us your system.
Tell us what you're building. We'll confirm it's in scope and show you exactly what an audit-ready dossier looks like.