Insights from the CoreStream GRC UK Annual Community Forum
How customer collaboration is driving the future of intelligent GRC
This past September, we hosted our annual community forum, joined by clients, thought leaders and others across the GRC space
The event focused celebrated what we’ve achieved and opened the floor for attendees to explore and question what comes next. The central theme was simple: at CoreStream GRC, customer collaboration drives innovation. We build with our customers, not just for them.
With that in mind, we wanted to give our blog community a snapshot of what the event covered, what you might have missed and what’s coming down the pipeline.
If you are part of our private customer community, and would like access to the presentation recording, please fill in this form, and marketing will be in touch with the private link.
How can GRC platform systems be integrated and configurated smarter?
Our forum began with a look at the CoreStream GRC integration engine, which allows powerful connections with HR, Finance, and Audit systems. The configuration-first model allows teams to connect seamlessly without any hard coding.
To show what this looks like in action, one of our clients demonstrated how they use automated data ingestion to share information directly from sources their internal HR systems. In their case, they built an automated workflow for onboarding new hires to be assigned relevant policies to attest to based on their role, level of seniority and region. This created a standardized, yet role-specific onboarding process for every new employee that was automated and began from day 1 of employees’ journey.
The impact speaks for itself: no duplicated work, full visibility across relevant policies that matter to them and hours saved every week for HR and compliance teams.
Further improvements: AI in CoreStream GRC
CoreStream GRC also shared a glimpse into the future of AI at CoreStream GRC. Attendees saw how existing AI integrations are already improving efficiency and got an exclusive look at what’s coming next.
One example is the CoreStream GRC AI Co-Pilot, which allows users to submit a free-text description and receive relevant suggestions in return. This can include suggesting controls, actions, causes or consequences of a risk, or even predicting future risks based on an existing register.
Another new feature, Black Kite AI, now live, lets users upload documentation such as policies and procedures, and automatically assesses them against a chosen cyber standard. Third party risk assessments have never been so seamless and quick!
Is AI optional with CoreStream GRC?
While we’re proud to expand and innovate, we also recognize that flexibility matters. AI use within CoreStream GRC is entirely optional. Our goal isn’t to push technology for its own sake it’s to give every customer the freedom to work in a way that truly works for them.
As Rich Eddolls, Co-Founder and Platform Director at CoreStream GRC, explains:
“AI should never be something that’s forced on our customers. It’s there to empower, not to dictate.
Everything we build at CoreStream GRC is about giving teams the freedom to work in a way that truly works for them, using technology when it adds value, not just because it’s new.“
Download our CoreStream GRC AI Strategy Guide to learn more
Improved user experience for CoreStream GRC platform clients
User experience was a major focus at the forum, and at the heart of what the product team focus on. At CoreStream GRC, we know GRC tasks can sometimes feel like a burden, so our priority is always asking: how can this be done faster, so staff can get back to their day job?
For the CoreStream GRC team, we believe technology should be an enabler, not a barrier. That means constantly reducing clicks, improving usability, and making the platform more intuitive and accessible.
Real-life GRC innovation: how our clients brought the product to life
For confidentiality reasons, we’ll only share a brief overview of what was shown at the forum. The case studies were an opportunity to truly show how our clients are using CoreStream GRC in their day-to-day to drive real results.
Case study 1: building a proactive compliance culture
One insurance client showed how they’ve successfully engaged their executive committee to use CoreStream GRC and complete their work directly within the platform. With their own dedicated ExCo reporting area, that they have private access to.
They consolidated risk, compliance and data protection records into one unified dataset and demonstrated how multiple solutions connect, from conflict of interest and gifts and hospitality to their broader risk management framework.
The outcome: full visibility of risk ownership, improved audit readiness, and a proactive compliance culture.
“For the first time, our executive committee has full visibility of our risks in one place. We can see ownership clearly, connect compliance with data protection, and even link conflict of interest and gifts and hospitality processes. It’s completely changed how we manage GRC accountability.”
This case truly brought to life what we mean when we say that at CoreStream GRC, we challenge and we deliver.
Case study 2: putting AI into action
Another client showcased how they’re using CoreStream GRC’s AI-powered tools to strengthen risk, control and policy management. All AI activities run within each client’s own Azure tenant, meaning no external data sharing and complete data security.
Their dedicated AI solution helps them identify risk causes and consequences, generate control test scripts and suggest mitigation recommendations.
“We’re not using AI to replace judgment. We’re using it to make sure the right judgment happens faster.”
Conclusion: the no-code GRC platform that truly works for you
The UK Forum 2025 reaffirmed CoreStream GRC’s position as the no-code GRC platform that truly works for you. Every improvement on our roadmap is shaped by the CoreStream GRC community. It is built through partnership, not product.
At CoreStream GRC, we strive to be the preferred and trusted GRC platform for enterprises worldwide by delivering intuitive, flexible solutions that drive efficiency and value, their way.
Our focus remains on empowering people. AI and automation will enhance human decision-making, not replace it. The next phase of the CoreStream GRC platform includes scalable cross-enterprise reporting, enhanced predictive insights, community-led content templates and continued ESG and regulatory support.
Rich summed it up perfectly:
“Our goal has remained throughout. It isn’t to chase hype; it’s to make governance work better, for everyone.“
If you are client who missed out on the forum, but would like to see the full presentation recording, reach out to us, here.
Our Community
CoreStream GRC takes pride in putting on events like this for our community. It facilitates exactly the kind of open, collaborative conversation we aim to foster where ideas move freely and every question drives the product forward.
Feedback from attendees captured the impact perfectly:
“Really interesting session. The highlight for me was Rich’s session on the roadmap and futures. The ability to ask questions in that format was very valuable.”
Want to learn about our Community? Check it out →
Frequently Asked Questions
It means every CoreStream GRC innovation is shaped through customer collaboration. We co-design features with our clients, ensuring every update solves real-world challenges rather than pushing generic tools or tech for its own sake.
Our integration engine connects seamlessly with HR, Finance, and Audit systems, with no hard coding required. Clients can automate workflows, such as policy attestation during onboarding, saving hours of manual work each week.
No. AI is completely optional. Features like CoreStream GRC AI Co-Pilot and Black Kite AI are designed to empower users, not replace their judgment. Teams can choose when and how to use AI depending on what adds value.
All AI activities run within each client’s own Azure tenant. This means there’s no external data sharing and clients retain full control and security over their information.
Recent updates focus on usability and automation: improved UX, cross-enterprise reporting, predictive insights, and community-led content templates. These innovations help teams make governance faster, simpler, and more intuitive.
CoreStream GRC supports a wide range of enterprise clients across finance, healthcare, insurance, and public sectors. Examples include names like; BBC, Shell Energy, NHS, and Deloitte.
They support many organizations that value flexibility, security, and intelligent automation in their GRC processes.
