KPMG Lighthouse Initiative

Project Northern Lights

Proposal workspace for an AI-assisted VSME reporting assistant using Microsoft 365 Copilot with governed Workiva write-backs.

Azure Native Microsoft 365 Copilot Human-in-the-Loop

View Implementation Plan Jump to Plan Section

EU VSME

Compliance Standard

Zero

Data Egress

100%

Audit Trail

Jan 2026

PoV Target

How to Read This Proposal

This workspace captures the proposed approach for Project Northern Lights: scope, architecture exhibits, delivery plan, and where each document lives.

Understand the Approach

Start with the architecture and data flow diagrams to see how the copilot, tools, and controls come together for VSME reporting.

Explore the Plan

Use the Implementation Plan for scope, assumptions, phased delivery, and success criteria that anchor this proposal.

Review Controls

Confirm the control posture: zero-egress data handling, tenant isolation, and the audit trail required for KPMG assurance.

Get in Touch

Share feedback or questions directly—this proposal is designed to iterate with the Lighthouse team.

Proposal Intent & Outcomes

What success looks like for Lighthouse and the Environmental section

This proposal is centered on an M365 Copilot experience that drafts, validates, and writes the Environmental section directly into Workiva with analyst approval.

Every phase is scoped to tangible outcomes: a defended PoV, IT-approved architecture, and repeatable write-backs with the controls Lighthouse needs to trust the assistant.

Copilot-First Flow

Analysts stay inside M365; no new portals or UX to learn

Guardrails & Audit

Approval gating, audit trails, and zero-egress defaults

Workiva-Ready Output

Validated content written into the Environmental tab

Phased Proof Points

PoV, IT sign-off, and expansion milestones pre-defined

Danta Labs - AI Solutions

Project Timeline

Phased delivery approach ensuring quality at every milestone

January 5, 2026

Phase 1: Proof of Value (PoV)

Deliver a working AI assistant completing one Environmental (VSME) section end-to-end. Demonstrates Copilot integration, document analysis, and controlled Workiva write-back.

Budget: USD 7,500 (credited to full program)

Mid-January 2026

Phase 2: IT Assessment & Live Testing

Joint architecture review with KPMG IT, VNET configuration, security validation, and controlled deployment to KPMG-managed Azure tenant.

Budget: USD 15,000

February 2026

Phase 3: Section Expansion & Quality

Expand to additional VSME sections, implement RAG with Azure AI Search, and enhance narrative quality to match consulting standards.

Budget: USD 35,000

March 2026

Phase 4: Report Design & Workiva Layout

Enable structured report layout, template selection, and end-to-end report generation with multi-section consistency.

Budget: USD 27,500 | Total Program: USD 78,000

Architecture Schematics

Comprehensive visual documentation detailing the Northern Lights project architecture and implementation approach.

Architecture Overview

Copilot-centric architecture with MCP-style tool server, human-in-the-loop workflow, and Azure AI Foundry integration.

Data Flow Sequence

Conversational analyst workflow with approval gates. From query to draft to controlled write-back with full audit trail.

6-Step Workflow

Security Architecture

Zero-egress security boundaries, VNET configuration, private endpoints, and authentication flows. GDPR compliant design.

Component Interactions

Detailed service dependencies, API specifications, and interaction matrix between all system components.

Gap Analysis

Current state vs target comparison, migration mapping, effort estimation, and implementation roadmap.

Migration Guide

Designed for Enterprise Compliance

Northern Lights provides a secure, auditable pathway for ESG reporting that meets the stringent requirements of European regulatory frameworks.

Human-in-the-loop controls ensure analyst approval for all write operations
Zero data egress architecture keeps all processing within Azure tenant
Complete audit trail with separation of AI reasoning and actions
GDPR and EU AI Act compliant by design

Enterprise compliance and strategic thinking

Implementation Document

Open the proposal in one place: rendered plan, downloadable markdown, and a quick path back to the schematics.

Implementation Plan

Architecture decisions, phased delivery, controls, and Workiva integration flow for the Environmental section—kept current as the proposal evolves.

4 Delivery Phases Technical Specs Security Framework Code Migration Guide

Prefer the source? Download the markdown.

Open Implementation Plan

Have Questions?

Our team is ready to discuss your requirements, clarify technical details, or walk you through the implementation approach.

Send us an Email Chat on WhatsApp