Bring Your Own Model. Keep Your Own Control.

You should not have to choose between the AI model you trust and the governance your business requires. Model choice is a moving target: providers leapfrog each other, and data residency, transfer, and sovereignty rules can limit where regulated data may go. The right architecture treats the model as a component you can swap, and the control as something you never hand away.

Sorena AI TeamProduct and Strategy7 min read

The best model changes. Your governance should not.

The AI model landscape does not sit still. A provider may lead on reasoning this quarter, another may lead on cost next quarter, and a third may ship a version tuned for exactly the work you do. If your platform is welded to a single model, every one of those shifts becomes a migration decision instead of a routing decision.

That is a bad bet to hardcode. The capability you want is the freedom to move: to adopt a stronger model when it arrives, to route sensitive work to a provider that meets your requirements, to leave one behind without rebuilding your controls. The model should be a component you choose, not a foundation you are stuck on. What must stay constant is the governance around it, no matter which model is doing the reasoning today.

GDPR can still apply after the data leaves the datacenter

It gets sharper with personal data. IBM names GDPR as an example of a law that can apply to data held or processed outside the EU when the data relates to EU residents. The legal mechanics matter: GDPR Article 3 defines territorial scope, and Chapter V sets rules for transfers of personal data to third countries or international organisations. Handing personal data to a model provider does not shed your obligations at the border.

That is why the provider behind your AI is a governance question you have to be able to answer, not a black box buried in someone else's stack. If you cannot say which model processed a given document, where processing happened, and what transfer or processing basis applied, you cannot tell a serious compliance story. Control over the model choice is control over the evidence trail. Lose one and you weaken the other.

Evaluate the model through the control plane

Model selection should start with the controls that survive a model change. Before connecting a provider, ask the operational questions: which region processes data, whether prompts are retained, whether customer data trains the model, who owns keys, what logs are available, how failures route, and whether workspace permissions still apply at retrieval time.

This is not just procurement hygiene. NIST AI RMF calls out third-party AI directly: organizations should have policies for risks from third-party software, data, and supply-chain issues; identify and document internal risk controls for components including third-party AI technologies; and monitor third-party AI risks with documented controls. If changing the model forces you to rebuild permissions, audit logs, residency rules, or source grounding, you do not have model choice. You have vendor lock-in wearing an AI label. The model should be replaceable. The control plane should not be.

The alternative to choice is shadow AI

When the sanctioned platform offers only one model, and that model is not the one your people trust for the work, some teams will look for alternatives. The risk is that they route around you to tools, accounts, or browser tabs you cannot govern. That is shadow AI, and it is the exact outcome governance is supposed to prevent.

Giving people approved model choice inside a governed platform reduces the reason to go around it. The choice they wanted is available on your terms instead of on a personal tab. Restricting model choice can reduce some risks, but it can also relocate work to somewhere you have no visibility. We unpack that dynamic in blocking AI does not stop the leak.

Separate the model from the control

The architecture that makes this work is separation of concerns. The model is the reasoning engine, chosen on capability, cost, and jurisdiction. The control layer, who can access what, where data may reside, and what gets logged, stays in your governance layer when the model changes.

Sorena Integrations is where that choice lives. Connect the AI provider you trust, or the one your policy requires, and swap it later without tearing down your governance. The model plugs in. The permissions, the residency rules, and the audit trail stay in the same governed control layer. You get the frontier when it moves, without renegotiating control each time it does.

Control that does not travel with the vendor

Bringing your own model only matters if the control genuinely stays yours. That means the governance does not live inside the model provider, where it changes with their terms and disappears if you switch. It lives in your platform, applied consistently whichever model is connected.

Everything runs through Sorena SSOT, our Single Source of Truth. Access is scoped, activity is logged, and the model reads only the grounded data a workspace is entitled to. The provider is a replaceable part; the permissions, the residency posture, and the traceable record are not. Change the engine and the guardrails should not need to be rebuilt, because they were never the vendor's to define.

Every answer stays traceable, whatever the model

Model freedom cannot come at the cost of accountability. A different provider must not mean a different, unverifiable answer. Whichever model is connected, every response has to ground in your governed source and trace back to the record it came from.

That is what keeps the output audit-ready across model changes. The reasoning engine can improve underneath you, but the standard for an answer does not move: grounded in your data, scoped to the right people, logged, and traceable to its source. Humans still make the decisions. The model, whichever one you brought, just does the reasoning inside walls you control and can prove.

Choose the model. Keep the control.

You should not have to trade the AI you want for the governance you need. The model market will keep moving, and residency and transfer rules will keep changing. The companies that stay ahead are not the ones locked to a single provider or scattered across ungoverned tools. They are the ones that made the model a choice and the control a constant. Bring your own model. Keep your own control. Let the engine change and the guardrails hold.

Frequently asked questions

What does bring your own model actually mean?+

It means connecting the AI model provider you trust, or the one your policy requires, into a governed platform, and being able to swap it later without rebuilding your controls. The model is a replaceable component; your permissions, data residency rules, and audit trail stay in the governed layer as you change connected models.

Why is model choice a compliance question and not just a performance one?+

Because where your data is stored or processed can affect which laws, contracts, and internal policies apply. IBM notes residency often affects sovereignty, but collection location, processing location, and who the data relates to can also matter. [GDPR](/artifacts/eu/general-data-protection-regulation) can apply outside the EU in defined cases, and transfers to third countries need the right safeguards, so the provider you pick is a governance decision.

Does switching models weaken our governance?+

No. Governance lives in the platform, not the model. Access scoping, residency posture, logging, and traceability are applied the same way whichever model is connected, so you can adopt a stronger provider or leave one behind without renegotiating control.

Sources

Share

See Sorena do the work

Book a demo and watch one real compliance workflow go from question to audit-ready output.