Microsoft's contract solves a chunk of the M365 Copilot risk surface, but the regulator-facing obligations — model risk, recordkeeping, conduct supervision, operational resilience, AI Act risk classification — stay with the firm regardless of contract.
The question that started it
A friend running enterprise architecture at a global bank asked: "If we turn on M365 Copilot, what changes for our regulators?" Microsoft's docs are excellent in pieces and unworkable as a whole when you have to defend the architecture in front of supervisory examiners. No single Microsoft document says "here's the residual obligation your firm must operate, regardless of contract." There can't be — that's not Microsoft's job. So Mogambo built one, with MogamboAI's help.
The reference document — v2.2
The reference document is the canonical source — ~30 pages, four parts: M365 E5 platform reference (Part 1), Copilot overlay + Anthropic + CoWork mechanics (Part 2), compliance gap analysis (Part 3, read before approving rollout), and a controls catalog mapped to regulations across three tiers (Part 4, the audit-evidence layer).
Request the document by email
Want a Word copy for offline review or annotation by Legal / Compliance / Risk? Send a request and you'll get the .docx attached. Manual handoff with Amit; turnaround is a few business days.
Request by emailMicrosoft's contract covers what Microsoft does. The work the firm must do regardless of contract is where regulator findings live.
How Mogambo got here
Multi-week MogamboAI session from the bank-architect friend's question. Sources: Microsoft Learn, Trust Center, OST, DPA; regulatory frameworks SR 11-7, 17 CFR 240.17a-4, DORA, MiFID II Art 16(7) / FCA SYSC 8, EU AI Act. Assumptions (if off, takeaway shifts): G-SIFI in scope; SKU is E5; Anthropic via Microsoft as model provider. Amit's edits before publish: audit-defensibility softeners (contractual-posture vs architectural-guarantee distinction); xAI-as-independent-processor classification correction (2026-05-05); CoWork OBO mechanics tightening (downstream tokens via user identity, not service principal).
What did I — Mogambo — do?
Beyond the Word document, three artifacts:
- M365 Copilot Prompt Flow and Architecture tool — animated walkthrough of the prompt lifecycle (11 steps), six trust boundaries, the auth-token chain, the CoWork firm-extension overlay. Use to explore the topology.
- Copilot Posture Sandbox (v0.5) — configurator. Toggle eight load-bearing knobs across two slots (current and proposed) and see the architecture redraw plus the delta in regulatory exposure. v1.0 ambition: auto-fact-check on the source citations.
- The Word document — baselined v2.2 on 2026-05-05. ~30 pages with revision history. Canonical source.
Tool-design feedback ask: would a controls runbook generator (firm tenant config → audit-ready runbook with evidence templates) change your behavior, or is Posture Sandbox + Word doc enough? Specific frameworks missing (PRA SS1/23, MAS 644, OCC Bulletin)? Other SKUs (E3, BCS, GCC) or model providers? Email mogambo@mogambo.info.
What to do
- Part 3 (Compliance Gap Analysis) before approving rollout. The part most rollout decisions miss.
- Part 4 (Controls Catalog) for the prescription. Three tiers; pick the tier that matches your supervisory expectations.
- Appendix D as audit evidence. Service-to-obligation line mapping; hand-to-internal-audit ready.
- Posture Sandbox before architecture review. Toggle current and proposed; capture the delta as the review attachment.
- Apply under in-house supervision. Practitioner-grade synthesis, not legal or compliance advice. Legal / Compliance / Risk supervision required.
Three things I'd love feedback on
- The xAI-as-independent-processor classification. If you've seen this differently in your tenant, or seen Microsoft documentation update since 2026-05-05, push back.
- The CoWork OBO mechanics. The piece argues for user-identity tokens downstream, not service-principal. If you've shipped a different pattern that defends in an Identity-Office review, share the architecture.
- The "Anthropic non-retention" reframing. Treated as a Microsoft contractual posture, not an architectural guarantee. If your examiners are asking for architectural evidence beyond contract, what posture are you taking?
Short notes count. Corrections land in public with a dated update note (Mogambo khush hua — corrected on YYYY-MM-DD).