The Triptique Diagnostic · AI Visibility · Security · Compliance
Proxaim resolves both.
Proxaim measures three interconnected risks in one automated diagnostic: whether you can be found by AI, whether your infrastructure is secure, and whether you face data protection exposure. The Triptique report tells you exactly where you stand.
The problem
Your clients are already using ChatGPT, Siri, and Perplexity to find professional services. These platforms do not read your Google ranking. They draw from entirely different data sources: Bing, Apple Business Connect, Reddit, the Knowledge Graph. A firm that has invested heavily in Google can simultaneously be invisible to every AI assistant a prospective client uses.
At the same time, the infrastructure holding years of client data is often running on software from 2013 with twelve unpatched security vulnerabilities. And the data protection posture those clients will check before engaging you may carry active regulatory exposure you are unaware of.
These three problems are connected. Proxaim measures all three in one report.
"It would give me cause for pause before using them."
Sara, Director of At The Markets, Edinburgh — on suppliers who are hard to find online"It would be a major red flag."
Gonzalo, food importer from Spain — on whether poor online discoverability affects trust in a supplierThe Triptique diagnostic
The Triptique is not three separate tools. It is one integrated diagnostic that treats AI visibility, security, and compliance as the interconnected risks they are.
01
AI Visibility · Found Score
Whether you can be discovered by an international client using any major AI assistant. ChatGPT draws from Bing. Siri uses Apple Business Connect. Alexa queries Yelp. Gemini reads the Knowledge Graph. Perplexity rewards structured, answer-ready content. We audit all of them. Apple Business Connect is a deliberate differentiator — no other tool scores this signal.
02
Stack Scanner · Security Grade
Whether your infrastructure is robust and defensible. The Stack Scanner detects outdated website platform versions, known security weaknesses, missing security controls, and high-risk platform combinations. WordPress plus Elementor plus PHP 7.4 plus no firewall plus four missing security controls is not four separate risks. It is a compounded attack surface. We identify it as one.
03
GDPR / Garante · Compliance Flags
Whether your data protection posture carries active regulatory exposure. Calculated from signals across all three pillars and anchored to ICO, Garante, and AEPD enforcement precedent. Displayed as a letter grade with a consequences narrative and remediation priority order.
Empirical research
Ten firms audited across Italian professional services and the UK-Italy food trade corridor. Each selected from the top of Google search results in their category, in order, with no performance-based filtering. Results are anonymised; methodology and full findings are available on request.
| Firm | Type | AI Visibility | Security | Key finding |
|---|---|---|---|---|
| Florence notary Top Google result, notaio Firenze |
Notary | 0 / 100 | D | Website platform from 2013. 12 known security weaknesses actively exploited by attackers. A decade of client legal documents on that infrastructure. |
| Milan accountancy firm Top Google result, commercialista Milano |
Accountants | 36 / 100 | F | Website platform 8 years out of date. 12 known security weaknesses. No encrypted connection. No AI-readable structured data. |
| Puglia olive oil producer Top Google result, olio extravergine export |
Food exporter | 30 / 100 | — | Built on a platform discontinued in 2018. Invisible to every AI assistant a British or French buyer would use. |
| Global coffee brand 20 country domains audited |
Food brand | 75 / 100 | D | Every required security control absent or misconfigured across all 20 country domains. |
| Cross-border legal firm Top Google result, avvocato UK-Italy |
Legal services | 85 / 100 | D | Four redundant tracking systems. User data transmitted to nine external domains without adequate disclosure. |
No firm achieved full AI visibility. No firm achieved a passing security grade. Not one achieved both simultaneously. This is not a curated selection of failures. It is the top of the search results.
How it works
One URL. One fee.
Provide your domain and confirm your audit. No access credentials, no plugin installation, no technical setup required on your side. The Triptique diagnostic report is delivered within 48 hours of payment.
We run the Triptique
The Become Found By AI Diagnostic Engine and Stack Scanner run in parallel. AI visibility signals are checked across six platforms. Security findings are identified and scored using original risk-combination logic. Data protection exposure is assessed against ICO, Garante, and AEPD enforcement precedent.
You receive the report
A structured PDF with your Found Score, Security Grade, and Compliance Flags. Each finding is named, explained, and given a remediation priority. No jargon. Consequence-focused language your clients would understand if they read it.
We fix what the report finds
For firms that want to act on the findings, Proxaim offers a retainer that maintains your Triptique posture on an ongoing basis, monitors for new security weaknesses and visibility signal changes, and delivers a refreshed report monthly.
Request a Triptique diagnostic. Provide your domain. Receive your Found Score, Security Grade, and Compliance Flags within 48 hours.
We will respond within one working day to confirm your domain and delivery timeline.