Feature comparison

What governance actually requires

The market has compliance tools, authorization platforms, GRC dashboards, board portals, and AI agent platforms with built-in guardrails. None of them govern institutional action at the moment it happens. Here are 36 capabilities across 8 dimensions of governance — and which solutions cover them.

✓Full support

~Partial / related

—Not covered

Constellation

Corporate governance infrastructure

0+2

Compliance

Drata, Vanta

0+5

Authorization

Permit.io, OPA

0+8

GRC

ServiceNow, OneTrust

0+3

Board

Diligent

0+10

AI Agents

Genesys, Salesforce

Manual

Docs + Slack

Capability	Constellation Corporate governance infrastructure	Compliance Drata, Vanta	Authorization Permit.io, OPA	GRC ServiceNow, OneTrust	Board Diligent	AI Agents Genesys, Salesforce	Manual Docs + Slack
Enforcement When and how governance is applied
Moment-of-action constraint checking	✓	—	~	—	—	~	—
7 constraint types	✓	—	~	~	—	~	—
Immutable governance traces	✓	~	~	~	—	~	—
Time-limited exceptions with approval workflow	✓	—	—	~	—	—	—
Constraint conflict detection	✓	—	—	—	—	—	—
Natural language constraint creation	✓	—	—	—	—	~	—
AI Agent Governance Governing autonomous AI systems at the moment they act
MCP integration for AI agents	✓	—	—	—	—	~	—
AI operating modes	✓	—	—	—	—	~	—
Progressive AI delegation with calibration	✓	—	—	—	—	—	—
AI proposes, humans ratify	✓	—	—	—	—	—	—
Ungoverned action detection	✓	—	—	—	—	—	—
Contestation & Due Process Formal mechanisms for institutional dissent
Formal challenge process with standing requirements	✓	—	—	—	—	—	—
Evidence taxonomy	✓	—	—	—	—	—	—
Binding precedents from rulings	✓	—	—	—	—	—	—
Multi-level appeals	✓	—	—	—	—	—	—
Constraint contestation	✓	—	—	—	—	—	—
Emergency powers with role separation	✓	—	—	—	—	—	—
Institutional Knowledge How organizational memory is captured, structured, and used
Knowledge graph with typed relationships	✓	—	—	—	—	—	—
Document ingestion to structured ideas	✓	—	—	—	—	—	—
Decision tracking with ratification	✓	—	—	~	~	—	—
Commitment extraction and review	✓	—	—	—	—	—	—
Policy versioning with diff	✓	~	~	~	—	—	—
AI memory with entity extraction	✓	—	—	—	—	~	—
Measurement & Analytics How governance quality is assessed and tracked
Governance Coordination Index (5 dimensions)	✓	—	—	—	—	—	—
Governance pattern detection	✓	—	—	~	—	~	—
Environmental monitoring (Observatory)	✓	—	—	—	~	—	—
Causal attribution	✓	—	—	—	—	—	—
Escalation & Authority How decisions are routed when they exceed delegated authority
Multi-step escalation chains	✓	—	—	~	—	~	—
Authority roles with scoped delegation	✓	—	~	~	~	~	—
Alignment check against all commitments	✓	—	—	—	—	—	—
Emergency Response What happens when governance detects a threat
Guardian mode (automatic circuit breaker)	✓	—	—	—	—	—	—
Separated AI roles in emergency	✓	—	—	—	—	—	—
Emergency constraint suspension	✓	—	—	—	—	—	—
Constitutional Self-Limitation Whether the platform constrains itself, not just its users
Immutable architectural invariants	✓	—	—	—	—	—	—
Non-surveillance commitment	✓	—	—	—	—	—	—
Fail-open by design	✓	—	—	—	—	—	—

What no other tool does

Moment-of-action enforcement

Every tool above is retroactive (compliance, GRC) or technical-only (authorization, policy engines). None intercepts a consequential institutional action before it completes.

Contestation as infrastructure

Nowhere else can someone formally challenge a governance decision through a process with standing, evidence taxonomy, rulings, and binding precedent.

Knowledge graph connected to governance

No competitor extracts ideas from documents, builds typed semantic relationships, and makes that graph available to AI reasoning about governance decisions.

Progressive AI delegation with calibration

No product tracks AI accuracy per decision class, defines delegation thresholds with sample size requirements, and allows instant suspension with rollback.

Guardian mode with constitutional role separation

No product has a circuit breaker with four separated AI roles that cannot overlap, auto-decays, and cannot expand its own scope.

Constitutional self-limitation

No product constrains itself with immutable invariants. Constellation’s Constitution contains non-violable architectural principles.

Governance Coordination Index

No product produces a diagnostic score measuring governance quality across five dimensions computed from real governance data.

Ungoverned action detection

No competitor reconciles external events against governance traces to find actions that slipped through without governance.

Why they can’t just add this

Compliance tools (Drata, Vanta) are built around evidence collection for external auditors. Their data model is controls and test results. Adding moment-of-action enforcement would mean rebuilding around a completely different data model: constraints, escalation chains, institutional decisions, and governance traces.

Authorization platforms (Permit.io, OPA) evaluate identity-resource-action tuples. Adding institutional context would mean ingesting an organization’s entire decision history, commitment state, and precedent library — a different product entirely.

GRC platforms (ServiceNow, OneTrust) manage risk registers and compliance attestations. Adding contestation infrastructure with standing requirements, evidence taxonomy, and binding precedent would mean building a legal system inside a risk database.

AI agent platforms have built-in goals, permissions, and guardrails for their own agents. But they only govern actions within their ecosystem. The moment an organisation runs agents from multiple vendors — and every enterprise does — no single platform governs the institution. Each vendor's guardrails are invisible to the others, creating governance gaps at every seam.

Each of these tools is good at what it does. Constellation does what they architecturally cannot.

For the financial argument — what institutions actually spend on governance today and what Constellation replaces — see the total cost of governance and the business case.

Where they sit in the stack

// The governance stack

LLM Layer

↓

Prompt Safety (Guardrails, Lakera)

↓

Authorization (Permit.io, OPA)

↓

Application Logic

↓

AI Agent Platforms (Genesys, Salesforce, Amazon Connect)

↓

Corporate Governance (Constellation)

↓

Risk & Compliance (ServiceNow, OneTrust, Drata, Vanta)

↓

Board Reporting (Diligent)

Constellation’s governance traces flow downstream as evidence for compliance tools. Authorization decisions flow into Constellation as context. They are complementary layers, not competing ones.

Product comparisons

Constellation vs Drata

Compliance automation vs institutional governance. Different problems, different architectures.

What governance actually requires

See the architecture in action