# MONITIVE COM SRL - Strategic Tech Services (Full Catalogue)

Operator: Lucian Lungu. Twenty years operating engineering organisations at scale - imobiliare.ro (35-to-300 engineers), Bitstamp (pre-IPO regulated finance), three M&A processes including Bitstamp to Robinhood. Co-author of the WARRANT Standard for autonomous agent authorisation.

Two front doors:
- AI matchmaker: https://luci.ws/
- Static catalogue: https://luci.ws/catalogue
- Contact: luci@luci.ws

Voice posture: confident, direct, peer-to-peer. Premium pricing stated plainly. Disqualifies out loud when a situation does not fit.

---

## The Four Guarantees
Carried by every engagement.

### Sprint 1 Escape Hatch
If after the first sprint the work isn't justifying continuation, you pay only Sprint 1 and the engagement ends.

### Board-Ready Quality
If your board rejects a deliverable on substantive grounds, it's reworked at no charge.

### Two-Client Cap
Maximum two concurrent clients. No delegation, no associates, no juniors.

### Skin-in-the-Game Pledge
Every recommendation is one the Consultant would execute if the company were his own.

---

## Commercial Models (for agency partners)

### Direct Referral
Client pays Consultant directly. Agency shapes the brief and gets a 10% referral fee. Deliverables carry Consultant's brand; agency credited as referring partner.

**When:** Agency wants the credibility uplift but doesn't need to own the engagement commercially.
**Margin:** 10% referral fee

### Pass-Through
Agency invoices the client at the agency's own rate. Consultant invoices the agency at standard sprint rate. Agency captures the margin. Deliverables are co-branded - Agency × Consultant.

**When:** Agency wants commercial ownership and is willing to position the Consultant as their named senior strategic partner.
**Margin:** Agency-set margin (typically 20–40%)

### White-Label
Agency owns the deliverable end-to-end. Consultant works in the agency's name with no public credit. 30% premium on standard rates. Capped at max 2 white-label engagements per year per agency.

**When:** Agency must be the sole client-facing entity for strategic reasons - and the engagement is high-stakes enough to justify the premium.
**Margin:** 30% premium absorbed; agency-set client rate

---

## Sprint Catalogue

### The Foundation Sprint (id: foundation)

> Build the tech foundation that survives the board, the audit, and the scaling.

- **Duration:** 4 weeks (2 sprints × 2 weeks)
- **Price:** 17,000 EUR (direct or pass-through) · 22,100 EUR white-label
- **Audiences:** ceo, agency
- **Who for:** CEOs about to commit real capital to a product, or agencies scoping a six- or seven-figure build whose foundation they'll answer for in 18 months.
- **When you need it:** You're at a decision point. The cost of a bad foundational choice compounds - every feature built on top of it costs more, binds you tighter to a structure you'll have to tear out, and dies in the room with the wrong investor.

**What's delivered:**
- Architectural blueprint pressure-tested against your business model
- Board-ready presentation of that blueprint
- Living systems map documenting how every piece fits together
- Vendor shortlist for highest-leverage build-or-buy decisions
- Decision framework for top architectural trade-offs
- Governance scaffolding sized for your team
- 12-month roadmap with quantified milestones

**Differentiator:** Twenty years operating engineering organisations across scale-up (35→300 at imobiliare.ro), regulated finance (Bitstamp), three M&A processes including Bitstamp → Robinhood. Co-author of the WARRANT Standard for autonomous agent authorisation.

*Note: Diagnostic-only (Sprint 1 alone) is €5,500. Full Build-Ready (3 sprints / 6 weeks) is €25,500. Founding-client pricing for the first three engagements: €6,500/sprint in exchange for case-study rights.*

### Tech Audit & Heritage Review (id: tech-audit)

> Diagnostic for a legacy or inherited tech estate.

- **Duration:** 4 weeks
- **Price:** 17,000 EUR (direct or pass-through) · 22,100 EUR white-label
- **Audiences:** ceo, agency
- **Who for:** Companies inheriting opaque tech - from a previous vendor, a recent acquisition, a long-tenured founder-engineering era - that needs an honest read before commitments are made.
- **When you need it:** You took over a platform you don't fully understand. You need to know what's actually there before you sign the next contract, write the next roadmap, or tell your board what comes next.

**What's delivered:**
- Complete current-state inventory: services, vendors, contracts, infrastructure, team
- Heritage assessment: technical debt, vendor lock-in, undocumented decisions, single points of failure
- Risk-prioritised remediation list
- Recommended path per area: refactor / replace / leave-as-is, with rationale
- Scoping input for the onward proposal (whether to the agency's client or to the company's board)

### Engineering Health Check (id: health-check)

> Independent audit of a steady-state engineering organisation against industry good practice.

- **Duration:** 4 weeks
- **Price:** 17,000 EUR (direct or pass-through) · 22,100 EUR white-label
- **Audiences:** ceo, agency
- **Who for:** New CTOs/Heads of Eng wanting a 30-day baseline. CEOs wanting an independent reality check on whether engineering is operating at the level the stage and stakeholders require. Pre-fundraise temperature checks.
- **When you need it:** Engineering is 'fine' - but you don't actually know. You want a second opinion that isn't a Big Four deck and isn't your team marking their own homework.

**What's delivered:**
- Practice maturity scorecard across 10 dimensions (architecture, delivery, observability, security, data, on-call, code review, hiring, performance management, knowledge transfer)
- Process review - how the team actually works vs. how it should
- Standards & good-practice benchmark (DORA, IEEE/NIST where applicable, SRE norms, twelve-factor / well-architected)
- Operating discipline audit (postmortems, on-call humanity, deployment cadence, change-management hygiene)
- Architecture posture: current state, debt inventory, scaling readiness for 12–18 months
- Risk register: top 10 risks with materiality, likelihood, owner, and remediation effort
- Prioritised improvement roadmap
- Board-ready summary

**What this sprint is NOT:**
- A code audit (light at code level - escalate to specialists if deep code review needed)
- A penetration test (practice-level only, no offensive testing)
- A change-management programme (delivers diagnosis and roadmap; client executes)

**Differentiator:** Benchmarks applied from twenty years of operating against them and watching what holds - not from a framework deck.

### Performance & Goals Framework (id: performance-goals)

> Install the operating system - OKRs, KPIs, SLAs, SLOs, performance management cycle - in four weeks.

- **Duration:** 4 weeks
- **Price:** 17,000 EUR (direct or pass-through) · 22,100 EUR white-label
- **Audiences:** ceo, agency
- **Who for:** Series A → Series B companies between 15–100 engineers where ad-hoc operating discipline has stopped holding. New CTOs/VPEs in their first 60 days installing the operating system.
- **When you need it:** You've outgrown ad-hoc. The last OKR attempt fizzled. The board has started asking for SLO/SLA reporting. Your team has lost faith in the framework - and is operating on instinct.

**What's delivered:**
- Company-level OKR framework - annual + quarterly cadence, ambition-vs-realism calibration, cascade rules
- First quarter OKRs actually drafted with the exec team during the engagement
- Squad-level OKR cascade, run with the squad leads
- KPI definitions: operating metrics, leading vs lagging, dashboard structure, ownership map
- SLO definitions for Tier 0 and Tier 1 services with error-budget policy and breach-response protocol
- SLA framing - customer-facing SLAs aligned to internal SLOs
- Performance management cycle: quarterly review templates, calibration, manager training brief
- Operating cadence document - weekly / monthly / quarterly / annual rhythms with named owners
- Board-cadence reporting structure with sample first report
- Tooling recommendation (lightweight eval of OKR / SLO / perf-mgmt platforms)

**What this sprint is NOT:**
- Tooling implementation (recommendation only)
- HR / total-rewards system (no comp banding)
- Perpetual coaching engagement (installation + first cycle + handover)

*Note: Conversion mechanic: if Sprint 03 (Engineering Health Check) closed in the prior 90 days identified operating-discipline gaps, this sprint runs at 15% off.*

### AI Integration Strategy (id: ai-integration)

> Strategic plan for integrating AI / LLM / agent capabilities into your product, responsibly.

- **Duration:** 4 weeks
- **Price:** 17,000 EUR (direct or pass-through) · 22,100 EUR white-label
- **Audiences:** ceo, agency
- **Who for:** Mid-market companies wanting AI without making the classic mistakes (RAG-when-you-needed-fine-tune, fine-tune-when-you-needed-RAG, ungoverned agents).
- **When you need it:** 'We need to do AI' has graduated into 'we need to do AI responsibly and competitively' - and you can feel that the in-house team alone can't navigate this safely.

**What's delivered:**
- AI capability roadmap - what's worth doing, in what order, and what's deliberately not pursued yet
- Architecture for LLM/RAG/agent integration into the existing product
- Vendor analysis: OpenAI vs Anthropic vs open-source vs gateway routing
- Eval framework - how to measure that the AI is doing what it claims to do
- Trust & governance scaffolding - agent authorisation, audit trails, human-in-the-loop boundaries (WARRANT-aligned)
- Cost / latency analysis with budgets per workflow stage
- EU AI Act and NIST AI RMF alignment notes

**Differentiator:** Co-author of the WARRANT Standard - the open specification for autonomous agent authorisation. Design informed by frontier work currently being defined.

### Compliance & DD Readiness (id: compliance-dd)

> Gap-closure programme for SOC 2, DORA, FCA Operational Resilience, or a sector-specific audit.

- **Duration:** 4 weeks
- **Price:** 17,000 EUR (direct or pass-through) · 22,100 EUR white-label
- **Audiences:** ceo, agency
- **Who for:** Series B-stage companies, regulated-industry companies, companies receiving customer DD questionnaires.
- **When you need it:** There's a compliance audit, due diligence, or institutional procurement review on the horizon. You need a clear 'what to fix and in what order' plan - not a 200-page deck.

**What's delivered:**
- Gap analysis against the relevant framework (SOC 2 / DORA / FCA OR / sector-specific)
- Risk-prioritised remediation roadmap
- Process and policy templates: on-call rota, incident management, access review, change management, data-handling
- Vendor selection: SOC 2 readiness platform, DORA tooling, etc.
- Sample evidence pack the client can take into the audit
- Decision framework: what's worth doing in-house vs outsourcing

*Note: Heavy GDPR exposure routes to Sprint 07 (GDPR Technical Compliance) instead.*

### GDPR Technical Compliance (id: gdpr)

> Tech-perspective GDPR programme: data flow mapping, ROPA, DPIA framework, vendor DPAs, data-subject-rights operating model, breach-response runbook.

- **Duration:** 4 weeks
- **Price:** 17,000 EUR (direct or pass-through) · 22,100 EUR white-label
- **Audiences:** ceo, agency
- **Who for:** EU-headquartered or EU-customer-serving companies whose GDPR programme has grown organically. Series A+ B2B SaaS, fintech, healthtech, marketplace, edtech.
- **When you need it:** Your GDPR posture has grown organically and is now visible - a customer DPA negotiation has stalled, a supervisory-authority inquiry is in, DSR volume has overwhelmed the team, or a Series B / acquisition will surface gaps.

**What's delivered:**
- Data inventory & flow map - what personal data exists, where it lives, how it moves
- Record of Processing Activities (ROPA) - Article 30-aligned, structured for ongoing maintenance
- DPIA framework + one worked DPIA on the highest-risk processing activity
- Vendor / sub-processor DPA register, with missing SCCs flagged
- Data subject rights operating model - access, rectification, erasure, portability, objection at scale
- Breach response runbook - 72-hour notification clock, decision tree, templates, tabletop
- Data residency assessment - current footprint, cross-border transfers, residual risk
- Technical control roadmap - encryption, pseudonymisation, access logging, retention/deletion automation
- Board-ready GDPR posture summary

**What this sprint is NOT:**
- Legal advice - works alongside the company's GDPR counsel on the technical operating model

**Differentiator:** Ran the GDPR RASCI implementation at imobiliare.ro across a 2M+-user platform - DSR operationalisation, ROPA structure, vendor DPA programme, tech/legal interface. Lived GDPR work at scale, not framework-reading.

### Acquisition Tech Due Diligence (id: acquisition-dd)

> Buy-side or sell-side tech due diligence delivered as a senior independent engagement.

- **Duration:** 6 weeks (3 sprints)
- **Price:** 25,500 EUR (direct or pass-through) · 33,150 EUR white-label
- **Audiences:** ceo, agency
- **Who for:** Clients in active deal processes. Time-bound work.
- **When you need it:** You're acquiring, being acquired, or about to enter exclusivity. The tech section of the data room will be read by people who have seen many of these. You want to be on the right side of that reading.

**What's delivered:**
- Buy-side: tech DD report on the target (architecture, team, vendor stack, SBOM & open-source license posture, IP, technical debt, integration plan, retention risk)
- Sell-side: preparation pack - anticipated questions, defensible answers, SBOM and license inventory positioned for the buyer's legal team, data-room curation, narrative for the buyer's tech team
- Risk register with materiality scoring
- Integration plan (buy-side) or separation plan (sell-side)
- Executive presentation for the deal committee

**Differentiator:** Three M&A due-diligence processes lived through personally - including Bitstamp → Robinhood. This is not a learned-from-a-book offering.

*Note: Specialty premium reflects deal-tempo urgency. Capacity: max one acquisition DD engagement per quarter to preserve quality.*

### Senior Engineering Hire (id: senior-hire)

> Two weeks of senior recruiting infrastructure for one critical engineering hire - Staff+ IC or leadership role.

- **Duration:** 2 weeks
- **Price:** 8,500 EUR (direct or pass-through) · 11,050 EUR white-label
- **Audiences:** ceo, agency
- **Who for:** Companies hiring their first Staff+/Principal engineer, first Head of Eng / VPE, replacing a CTO, or staffing a senior bench post-Series B.
- **When you need it:** You're about to hire someone senior and the in-house team does not have a peer-grade interviewer at that seniority. The cost of a bad senior hire - 12–18 months of compensation, displaced morale, lost roadmap quarters - outruns the cost of getting the hiring system right by an order of magnitude.

**What's delivered:**
- Role definition that survives the hire (not the version that gets written for the JD)
- Scorecard - competencies, behavioural indicators, trade-offs, weighted rubric
- Interview architecture - panel design, round structure, technical/behavioural/leadership balance, calibration, anti-bias scaffolding
- Market scan - current senior compensation bands, total-rewards expectations, competitive landscape
- Sourcing strategy - advice on channels, network activation, search-firm-vs-direct trade-off
- Candidate evaluation framework - debrief structure, calibration, written-feedback discipline
- Hiring decision framework - what 'yes', 'stretch yes', 'no' look like; how trade-offs get resolved
- Board / exec brief (for leadership hires)

**What this sprint is NOT:**
- Executive search (no candidate sourcing or placement fee)
- A coaching engagement (CEO/CTO makes the hire; Consultant builds the system)

**Differentiator:** Scaled imobiliare.ro engineering from 35 to 300, ran senior-bench hiring through three M&A processes including Bitstamp → Robinhood. Hiring-at-scale lived experience, not a coaching framework.

*Note: Optional 90-day Interview Partner extension: €5,000 flat (€6,500 White-Label) for up to 10 panel sessions + 3 calibration sessions. Conversion mechanic: 25% off if originating from Foundation Sprint or Tech Audit within 60 days.*

### MCP Server Implementation (id: mcp-implementation)

> Design and stand up a Model Context Protocol server so AI agents can use your data and tools natively, with authorization that holds up.

- **Duration:** 4 weeks (2 sprints)
- **Price:** 17,000 EUR (direct or pass-through) · 22,100 EUR white-label
- **Audiences:** ceo, agency
- **Who for:** B2B SaaS, marketplaces, CRMs, ticketing, documents, calendars, billing - any product whose value compounds when an agent can drive it. Particularly strong fit when customers have already started asking 'do you have an MCP server?'
- **When you need it:** Your product is increasingly being read or operated by AI agents - Claude Desktop, Cursor, custom agent stacks. You want to be present in the agent context window with native tools, not just scraped HTML. Or you can see the wave coming and want to land in the next round of agent integrations on your terms.

**What's delivered:**
- MCP exposure strategy - what tools and resources you should expose, what you deliberately shouldn't, and why
- Tool catalogue with WARRANT-aligned authorization (read-only vs side-effecting, identity scope, audit signals)
- Resource catalogue with mime-types and refresh model
- The MCP server itself, OR a senior-reviewed scaffold your team builds against - the choice is named in Sprint 1
- Discovery surfaces: /.well-known/mcp.json, <link rel="mcp"> tags, HTTP Link headers, robots.txt allowance
- Registry submission kit (Smithery, mcp.so, Glama AI) ready to paste
- End-to-end testing against Claude Desktop, Cursor, Continue, and a custom JSON-RPC client
- Operational documentation for internal teams and external agent consumers
- Board-ready summary of what was exposed and what the agent surface signals about your product

**What this sprint is NOT:**
- A generic AI integration project (pair with AI Integration Strategy Sprint first)
- A one-day 'stand up the server' engagement (the value sits in design, not implementation)
- A security audit of an existing MCP server (closer to Tech Audit Sprint scope)

**Differentiator:** Co-author of the WARRANT Standard for autonomous agent authorisation. Monitive's own site at /.well-known/mcp.json is the live reference implementation - including the discovery stack, the tool catalogue, the resource exposure, and the legal posture. Clients can audit the live server before signing.

*Note: Founding-client pricing on the first 3 engagements: €6,500/sprint (€13,000 for the 4-week engagement) in exchange for case-study rights. Part of the new 'Agentic Stack' trio bundle.*

### Agentic Payments (x402 + L402) (id: agentic-payments)

> Design and integrate per-request payment for an API that AI agents will call. HTTP 402 done properly - wallet, custody, compliance, and abuse-defence answered before they bite.

- **Duration:** 4 weeks (2 sprints)
- **Price:** 17,000 EUR (direct or pass-through) · 22,100 EUR white-label
- **Audiences:** ceo, agency
- **Who for:** API-first SaaS, marketplaces, data providers, compute / inference / extraction APIs whose customers are increasingly using agent-driven access and need usage-based pricing for non-human callers.
- **When you need it:** Your API is being called - or is about to be called - by AI agents on someone else's behalf. The user is no longer a human clicking a button; it's software with a budget. You want to monetize that traffic without dragging every agent operator through a sales call.

**What's delivered:**
- Payment-model design: which endpoints meter, which stay free; per-request vs session-pass vs subscription gate
- Protocol selection: x402 (USDC on Base) as primary; L402 (Lightning) for Bitcoin-native or non-EVM constraints
- Wallet and custody: EOA vs smart account vs custody provider, key-management posture, off-ramp strategy
- Network and asset choice with reasoning written down for audit
- Facilitator selection: Coinbase CDP, self-hosted, third-party - with cost-per-verify modelling
- Server-side integration in your stack (Next.js, Express, FastAPI, Go, or other - named in Sprint 1)
- Pricing-model calibration against unit costs and competitor benchmarks
- Fraud, replay, and abuse defences: nonce, signature verification, replay-window, rate-limit-on-top-of-payment, blacklist hooks, refund posture
- MiCA / VAT / AML compliance scoping for counsel review (not legal advice)
- Monitoring and accounting: on-chain analytics, alerting, daily settlement, finance-stack integration
- Agent-discovery surfaces so callers know what to pay for: /.well-known/mcp.json.paidEndpoints, llms.txt, Link headers
- Board-ready summary including projected agent-revenue baseline and operational risk surface

**What this sprint is NOT:**
- Legal advice (compliance scoping is structured input for your counsel, not an opinion)
- Broader crypto / treasury / token / on-chain product strategy (scope separately)
- Custodial work (Monitive does not hold your funds, keys, or your customers' payments)
- A 1-day wire-it-up engagement (that's mini A20)

**Differentiator:** Monitive's own /api/agents/match endpoint is the live reference implementation of x402, including the facilitator integration, payment-required body shape, receipt header, and graceful-degradation path. Co-author of WARRANT Standard for autonomous agent authorisation - and agent-payment authorisation is the natural extension of agent-action authorisation. Compliance posture is built into the engagement because shipping x402 without it is a problem deferred, not avoided.

*Note: Founding-client pricing on the first 3 engagements: €6,500/sprint (€13,000 for the 4-week engagement) in exchange for case-study rights. Part of the new 'Agentic Stack' trio bundle.*

### Agentic DevOps (id: agentic-devops)

> Put AI agents to work on a legacy estate - assess, map dependencies, containerize, and open governed pull requests - with the authorization model that lets you actually merge them.

- **Duration:** 4 weeks (2 sprints)
- **Price:** 17,000 EUR (direct or pass-through) · 22,100 EUR white-label
- **Audiences:** ceo, agency
- **Who for:** Companies sitting on a load-bearing 10-15+ year codebase that is the main brake on shipping. Teams that want AI leverage on the engineering process itself, not just AI features in the product. Agencies asked to modernize a legacy estate who need a defensible, governed method rather than a heroic rewrite.
- **When you need it:** The biggest brake on AI adoption isn't model access - it's the 10-to-15-year-old codebase nobody fully understands anymore. Agents can now read that estate, map dependencies, containerize it, and open pull requests against it. The question stopped being 'can agents do this' and became 'who do you trust to point them at your production code, and how do you govern what they merge.'

**What's delivered:**
- Estate and dependency map - in-scope legacy services inventoried, dependencies mapped (build-time and runtime), each ranked for modernization-readiness
- The governed agent pipeline - agents read the code, propose containerization and refactors, and open PRs, wired with scoped permissions, branch protection, human-in-the-loop merge gates, and a structured audit trail (WARRANT-aligned)
- Containerization pilot on 1-2 bounded services - dependencies resolved, Docker-containerized, agent-opened PRs reviewed, tested, and merged under the gate. Real merged output, not a deck
- Test and eval gates - characterization tests around legacy behaviour before it's touched, plus CI gates (build, test, security scan, behavioural diff) each agent PR must pass before a human reviews
- Authorization model for agent code changes - what agents may touch, under whose identity, with what blast radius, how it's logged. WARRANT-aligned vocabulary (read-only / side-effecting / identity-required / scoped)
- Sequenced modernization roadmap - the rest of the estate ordered by value, risk, and dependency, with the per-wave plan your team runs against the pipeline
- Board-ready summary - what was modernized, what the pilot proved, and the honest risk surface of pointing agents at production code

**What this sprint is NOT:**
- A full migration delivery (1-2 pilot services end-to-end + the governed pipeline + the roadmap; the rest is a staffed programme, not a four-week sprint)
- Autonomous agents merging to main unsupervised (every agent PR passes automated gates and a human merge gate)
- 'AI will rewrite your app' (agents accelerate the mechanical work; sequencing and boundaries are the senior work)
- A product-AI engagement (that's the AI Integration Strategy Sprint)

**Differentiator:** Co-author of the WARRANT Standard for autonomous agent authorisation - an agent opening a PR against production is a side-effecting agent action, and authorising it properly (scoped identity, bounded blast radius, structured audit) is exactly what WARRANT specifies. Lived pattern, not theory: prismalOS runs adversarial eval swarms as CI/CD release gates - the same governance shape this sprint installs around agent-authored code. Plus twenty years operating legacy estates through scale, regulation, and three M&A processes including Bitstamp → Robinhood.

*Note: Founding-client pricing on the first 3 engagements: €6,500/sprint (€13,000 for the 4-week engagement) in exchange for case-study rights. Part of the 'Modernization Stack' trio bundle (Tech Audit & Heritage + Agentic DevOps + End-of-Build Attestation).*

### Mid-Build Validation Sprint (id: mid-build)

> A two-week checkpoint review on an in-flight build, before too much is committed to the wrong path.

- **Duration:** 2 weeks
- **Price:** 8,500 EUR (direct or pass-through) · 11,050 EUR white-label
- **Audiences:** agency (agency-only)
- **Who for:** Agencies running serious builds where the cost of getting the architecture wrong is now becoming visible.
- **When you need it:** Build is 30–60% complete. Architecture or roadmap question has emerged. You want an independent senior read before the next big commitment.

**What's delivered:**
- Mid-build architecture review against original brief
- Risk register with materiality scoring
- Specific course-correction recommendations if needed
- Brief presentation deck the agency can share with their client (co-branded or white-label)

### End-of-Build Attestation Sprint (id: end-of-build)

> A signed-off attestation document the agency presents to their client at handover.

- **Duration:** 2 weeks
- **Price:** 8,500 EUR (direct or pass-through) · 11,050 EUR white-label
- **Audiences:** agency (agency-only)
- **Who for:** Agencies closing meaningful engagements who want demonstrable independent review at handover.
- **When you need it:** Build is complete. Agency wants a written, signed independent attestation that what was delivered meets industry-standard practices.

**What's delivered:**
- Independent review of the delivered system against the original brief
- Attestation document, signed by a named senior architect
- Brief findings memo: areas of strength, residual risks, recommended next steps
- Handover presentation if requested

### Pitch Support Sprint (id: pitch-support)

> Two weeks of senior strategic firepower during a pitch the agency cannot afford to lose.

- **Duration:** 2 weeks
- **Price:** 8,500 EUR (direct or pass-through) · 11,050 EUR white-label
- **Audiences:** agency (agency-only)
- **Who for:** £150k+ pitches where the agency's chance improves materially with senior credibility in the room.
- **When you need it:** A serious pitch is in flight. You want a named senior strategic partner in the room - for technical credibility, for board-room presence, for the questions the buyer is going to ask that need an experienced answer.

**What's delivered:**
- Sit in pitch meetings (2–4 typical) as the named senior strategic partner
- Pre-pitch architecture briefing & narrative review
- Technical Q&A preparation: anticipated questions, defensible answers
- Post-pitch debrief and refinement

*Note: Conversion mechanic: if the agency wins the pitch and converts to a Foundation Sprint within 60 days, this fee is credited against the Foundation Sprint engagement.*

---

## Bundles

### Trio - The Build Companion (id: build-companion)

**Components:**
- Foundation Sprint
- Mid-Build Validation Sprint
- End-of-Build Attestation Sprint

- **Bundled price:** 30,500 EUR
- **À-la-carte:** 34,000 EUR
- **Saves:** 3,500 EUR
- **Window:** Spread across the full client engagement (3–9 months)
- **Audiences:** agency
- **Best fit:** Agencies offering full-lifecycle senior cover on serious builds.

### Trio - Compliance & Trust Stack (id: compliance-trust)

**Components:**
- Compliance & DD Readiness Sprint
- GDPR Technical Compliance Sprint
- End-of-Build Attestation Sprint

- **Bundled price:** 37,500 EUR
- **À-la-carte:** 42,500 EUR
- **Saves:** 5,000 EUR
- **Window:** 4–6 months
- **Audiences:** ceo, agency
- **Best fit:** Regulated-industry clients (fintech, healthtech, marketplace, edtech) where SOC 2 / DORA and GDPR converge.

### Trio - The Scale-Up Stack (id: scale-up)

**Components:**
- Engineering Health Check Sprint
- Performance & Goals Framework Sprint
- Senior Engineering Hire Sprint

- **Bundled price:** 37,500 EUR
- **À-la-carte:** 42,500 EUR
- **Saves:** 5,000 EUR
- **Window:** 4–6 months
- **Audiences:** ceo, agency
- **Best fit:** Audit current operating posture → install the operating system that survives scale → hire the leader who maintains it.

### Trio - The Agentic Stack (id: agentic-stack)

**Components:**
- AI Integration Strategy Sprint
- MCP Server Implementation Sprint
- Agentic Payments (x402 + L402) Sprint

- **Bundled price:** 45,000 EUR
- **À-la-carte:** 51,000 EUR
- **Saves:** 6,000 EUR
- **Window:** 4–8 months across the three sprints
- **Audiences:** ceo, agency
- **Best fit:** Companies whose AI strategy needs all three layers - strategy, exposure to agents, monetization of agent traffic - and who are best served by doing them as one coherent program. Designed by the co-author of the WARRANT Standard.

### Trio - The Modernization Stack (id: modernization-stack)

**Components:**
- Tech Audit & Heritage Review
- Agentic DevOps Sprint
- End-of-Build Attestation Sprint

- **Bundled price:** 37,500 EUR
- **À-la-carte:** 42,500 EUR
- **Saves:** 5,000 EUR
- **Window:** 4–6 months across the modernization programme
- **Audiences:** ceo, agency
- **Best fit:** Companies modernizing a load-bearing 10-15+ year codebase who need the work de-risked, governed, and independently signed off - especially pre-raise, pre-sale, or pre-enterprise-procurement. Map the estate → move the debt with a governed agent pipeline → independently attest the modernized system. Distinct from the Agentic Stack: that builds the agent-native product layer; this applies agents to the engineering process of clearing legacy debt.

### Quartet - The Strategic Year (id: quartet)

**Components:**
- Any 4 sprint products, drawn down across a 12-month window

- **Bundled price:** 56,950 EUR
- **À-la-carte:** 67,000 EUR
- **Discount:** 15% off à-la-carte
- **Window:** 12 months from first sprint commencement
- **Audiences:** ceo, agency
- **Best fit:** Companies or agencies with concurrent strategic moments across the year (sprint mix may be mixed across core and agency-only).

### Agency Partner Annual - The Strategic Backbone (id: agency-annual)

**Components:**
- 6 sprints (any combination) drawn down across 12 months
- 4 pitch-support sessions (capped value)
- 12 monthly strategy calls (60 min)

- **Bundled price:** 70,000 EUR
- **À-la-carte:** 77,000 EUR
- **Saves:** 7,000 EUR
- **Window:** 12 months, billed quarterly (€17,500 / quarter)
- **Audiences:** agency
- **Best fit:** Agencies with serious annual deal flow who want reserved capacity and predictable cost rather than ad-hoc booking.

---

## Fractional Roles (continuing engagements)

### Strategic Tech Advisor (id: advisor)

> In the room when it matters. Not in the room when it doesn't.

- **Posture:** Pure advisory. Zero operational responsibility. Zero decision authority.
- **Time commitment:** ~2 days/month
- **Minimum term:** 6-month minimum, rolling thereafter
- **Price:** 4,500 EUR - 5,500 EUR per month
- **Capacity weight:** 0.1 (ceiling is 0.60 across all fractional)
- **Best fit:** Founders / CEOs / CTOs wanting a senior peer-grade thinking partner. Most engagements convert from a Foundation Sprint that closed well.

**Delivers:**
- Monthly 90-min strategy call with CEO/CTO
- Async strategic advisory via Slack/email - answers within 1 business day
- Quarterly half-day deep-dive on a topic the leadership team selects
- Direct mobile / Signal access for time-critical decisions

**Does not:**
- Internal team meetings, standups, sprint reviews
- Board meetings
- Written decision authority

### Tech Board Member / NED (id: ned)

> Independent senior tech voice on the board.

- **Posture:** Non-executive. Formal board role with fiduciary posture.
- **Time commitment:** ~10–12 days/year
- **Minimum term:** 12-month minimum, renewable annually
- **Price:** 36,000 EUR - 48,000 EUR per year
- **Capacity weight:** 0.05 (ceiling is 0.60 across all fractional)
- **Capacity cap:** Max 2 NED roles concurrently
- **Equity option:** Equity option in lieu of cash: 0.25%–0.75% vesting over 2 years. Combination structures (half cash + half equity) negotiable.
- **Best fit:** Series A+ companies, Series B candidates, companies approaching M&A. Particularly fitting for fintech / regulated.

**Delivers:**
- Attendance at all board meetings (4/year typical)
- Independent review of board materials before each meeting
- 2 × annual strategy sessions with the exec team (full-day)
- Formal NED governance: minutes review, conflict-of-interest discipline, fiduciary protocol
- Independent voice on technical strategy, M&A, hire-of-CTO decisions

**Does not:**
- Day-to-day operations
- Direct engineering-team engagement (without CEO/CTO request)
- Management authority

### Fractional CTO (Strategic) (id: fcto)

> The CTO role, stripped of operational theatre. Strategy, architecture, hiring, vendors, board - yes. Standups - no.

- **Posture:** Borderline operational. Sits in executive cadence; does not sit in delivery cadence.
- **Time commitment:** ~4–6 days/month
- **Minimum term:** 6-month minimum
- **Price:** 9,000 EUR - 13,000 EUR per month
- **Capacity weight:** 0.3 (ceiling is 0.60 across all fractional)
- **Best fit:** Companies between 15–80 engineers where permanent CTO isn't yet justified, is in transition, or where the founder has been carrying the CTO role unsustainably.

**Delivers:**
- Weekly 90-min working session with CEO and engineering leadership
- Active ownership: technology roadmap, architecture decisions, build-vs-buy, vendor selection >£10k/yr
- Hiring partner for the engineering leadership layer
- Executive presence: board, investor calls, customer escalations requiring CTO-level interface
- Monthly written tech update for the board
- Dedicated Slack channel; 1-business-day response cadence

**Does not:**
- Daily standups, retrospectives, sprint planning
- Individual engineers' performance reviews
- On-call pager
- Production code

### Fractional CIO (id: fcio)

> IT strategy and governance, executive-grade, for companies whose product engineering is healthy but whose IT operation needs senior leadership.

- **Posture:** Borderline operational. Owns IT and platform-governance domain; does not own product engineering.
- **Time commitment:** ~4–6 days/month
- **Minimum term:** 6-month minimum
- **Price:** 8,000 EUR - 11,000 EUR per month
- **Capacity weight:** 0.3 (ceiling is 0.60 across all fractional)
- **Best fit:** Companies with healthy product engineering but where the IT, platform, security, and compliance side has out-grown ad-hoc. Regulated-industry / post-Series-B scale-ups.

**Delivers:**
- Ownership of IT strategy, vendor portfolio, infrastructure governance
- SOC 2 / DORA / FCA OR / sector-specific compliance leadership
- GDPR programme ownership (ROPA, DPIA cadence, vendor DPA register, DSR operating model, breach-response readiness)
- Executive interface for procurement, supplier negotiations, contract management >£10k/yr
- IT budget definition and enforcement
- Internal IT team leadership (typically 3–8 people)
- Quarterly board reporting on IT posture, risk register, compliance status

**Does not:**
- Product engineering / product roadmap (that's the CTO's lane)
- Hands-on infrastructure-engineering work
- Application-development lifecycle

### Fractional Chief AI Officer (id: fcaio)

> AI strategy, governance, and integration design - frontier-grade, for companies where 'we need AI' has become 'we need AI responsibly and competitively'.

- **Posture:** Borderline operational. Owns AI strategy and governance.
- **Time commitment:** ~4–6 days/month
- **Minimum term:** 6-month minimum
- **Price:** 12,000 EUR - 16,000 EUR per month
- **Capacity weight:** 0.3 (ceiling is 0.60 across all fractional)
- **Capacity cap:** Max 2 Fractional CAIO roles concurrently
- **Best fit:** Companies whose AI ambitions exceed what their existing engineering leadership has seen. Companies with regulated customers or serious agent-deployment plans.

**Delivers:**
- AI strategy definition - investment priority, sequencing, what's deliberately not pursued
- Architecture decisions for LLM/RAG/agent integration
- Vendor strategy across model providers (OpenAI, Anthropic, open-source, gateway routing)
- AI governance framework: agent authorisation, eval pipelines, audit trails, human-in-the-loop boundaries
- EU AI Act and NIST AI RMF alignment - interpreted, applied, defended
- Cost / latency budgeting per workflow stage
- Board / investor interface for AI strategy questions
- Hiring partner for senior AI engineering hires
- Quarterly AI posture review for leadership

**Does not:**
- Building, deploying, or maintaining models
- Writing prompts, evals, or production AI code
- Day-to-day AI engineer management

### Fractional VP Engineering (id: fvpe)

> The engineering leadership layer, on tap, for companies whose team has out-grown the founder-engineering-lead model.

- **Posture:** Borderline operational. Engages with engineering leadership cadence.
- **Time commitment:** ~6–8 days/month
- **Minimum term:** 6-month minimum
- **Price:** 10,000 EUR - 14,000 EUR per month
- **Capacity weight:** 0.4 (ceiling is 0.60 across all fractional)
- **Best fit:** Companies at the 15–50 engineer mark where the engineering culture is being formed and the cost of getting people-and-process wrong now is high.

**Delivers:**
- Engineering leadership coaching: 1:1s with EMs, squad leads, senior engineers
- Process design: OKR / KPI / SLA / SLO framework, hiring pipeline, performance management, on-call discipline
- Talent strategy: hiring plan, interview architecture, calibration, retention
- Quarterly engineering all-hands narrative and execution
- Board / executive interface for engineering health metrics
- Direct support for CEO/CTO on people-related escalations

**Does not:**
- Delivery ceremonies (standups, retros, sprint planning)
- Individual comp conversations as manager
- Hiring decisions in isolation (advisory + calibration, not final call)

### Interim CTO (Transitional) (id: interim-cto)

> Bridge between two permanent CTOs. Time-bound. Designed-out within six months.

- **Posture:** Operational. Carries the CTO role with a stated handover endpoint.
- **Time commitment:** ~8–10 days/month
- **Minimum term:** Capped at 6 months (max 9 months by mutual exception)
- **Price:** 18,000 EUR - 25,000 EUR per month
- **Capacity weight:** 0.5 (ceiling is 0.60 across all fractional)
- **Capacity cap:** Max 1 Interim CTO engagement at any time
- **Best fit:** Companies with a known CTO transition coming (departure, retirement, planned change). Also fits acquisition scenarios needing interim leadership.

**Delivers:**
- Full CTO operational duties for the engagement window: roadmap, hiring, architecture, board, exec
- Active hiring of the permanent CTO replacement (this is the success metric)
- Clean handover: documented runbook, named owner for every decision, transition memo for the incoming CTO
- Public face of CTO at board, investors, customers

**Does not:**
- Indefinite continuation. The cap is binding. If no permanent hire by month 6, the engagement reframes to Fractional CTO - not extended on interim terms.

---

## Specialty Mini-Engagements (Appendix A)

Sub-sprint, named, fixed-price units. Each converts upward to a numbered sprint when the need scales.

| Code | Name | Days | Price | White-label | Converts to |
|---|---|---|---|---|---|
| A1 | DPIA (standard) | 5 days | 5,500 EUR | 7,150 EUR | GDPR Technical Compliance Sprint |
| A2 | DPIA (complex) | 8–10 days | 7,500–8,500 EUR | 9,750–11,050 EUR | GDPR Technical Compliance Sprint |
| A3 | DPIA Bundle (×3) | 12–15 days | 14,000 EUR | 18,200 EUR | GDPR Technical Compliance Sprint |
| A4 | ROPA Build | 5 days | 5,500 EUR | 7,150 EUR | GDPR Technical Compliance Sprint |
| A5 | Vendor DPA Review | 4 days | 3,500 EUR | 4,550 EUR | GDPR Technical Compliance Sprint |
| A6 | Breach Response Runbook | 4 days | 4,500 EUR | 5,850 EUR | GDPR Technical Compliance Sprint |
| A7 | Postmortem Facilitation | 2 days | 2,500 EUR | 3,250 EUR | Engineering Health Check / Performance & Goals |
| A8 | Single Senior Interview Round | 0.5 days | 1,500 EUR | 1,950 EUR | Senior Engineering Hire Sprint |
| A9 | Vendor Selection (single decision) | 3 days | 3,500 EUR | 4,550 EUR | Foundation Sprint / Tech Audit |
| A10 | Customer Compliance Questionnaire Response | 2 days | 2,500 EUR | 3,250 EUR | Compliance & DD Readiness Sprint |
| A11 | On-Call Health Check | 3 days | 3,500 EUR | 4,550 EUR | Engineering Health Check / Performance & Goals |
| A12 | LLM Vendor / Routing Decision | 3 days | 4,000 EUR | 5,200 EUR | AI Integration Strategy Sprint |
| A13 | Data-Room Tech Section Audit | 3 days | 4,500 EUR | 5,850 EUR | Acquisition Tech DD Sprint |
| A14 | ADR Facilitation | 3 days | 3,500 EUR | 4,550 EUR | Foundation Sprint |
| A15 | Vendor Portfolio Cost Review | 4 days | 4,500 EUR | 5,850 EUR | Tech Audit / Engineering Health Check |
| A16 | Annual Tech Budget Advisory | 5 days | 5,500 EUR | 7,150 EUR | Fractional CIO |
| A17 | Cloud Cost Architecture Review | 3 days | 4,000 EUR | 5,200 EUR | Tech Audit / Engineering Health Check |
| A18 | SBOM & License Audit | 4 days | 4,500 EUR | 5,850 EUR | Acquisition Tech DD / Tech Audit |
| A19 | MCP Server Scaffold | 5 days | 5,500 EUR | 7,150 EUR | MCP Server Implementation sprint |
| A20 | x402 Integration Pilot | 4 days | 4,500 EUR | 5,850 EUR | Agentic Payments sprint |
| A21 | Agentic Modernization Pilot | 5 days | 5,500 EUR | 7,150 EUR | Agentic DevOps sprint |


Mini descriptions:

- **A1 - DPIA (standard)**: One DPIA on a well-bounded processing activity, single-system, with existing data-flow documentation.
- **A2 - DPIA (complex)**: One DPIA on cross-system, multi-vendor, special-category, or novel ML/AI processing - including supervisory-authority consultation prep.
- **A3 - DPIA Bundle (×3)**: Three DPIAs across distinct processing activities, sequenced and cross-referenced.
- **A4 - ROPA Build**: Article 30-compliant Record of Processing Activities for a single business unit or product line, structured for ongoing maintenance.
- **A5 - Vendor DPA Review**: Sub-processor inventory + DPA gap-list + Standard Contractual Clauses status + transfer-impact assessment scoping.
- **A6 - Breach Response Runbook**: 72-hour notification clock, decision tree, supervisory-authority drafting templates, internal communication plan, one tabletop exercise.
- **A7 - Postmortem Facilitation**: Independent facilitator for a high-stakes incident postmortem; structured write-up; remediation register with owners.
- **A8 - Single Senior Interview Round**: One senior-round technical interview (panel participation + structured write-up + calibration debrief).
- **A9 - Vendor Selection (single decision)**: One vendor decision (observability / IAM / CDP / search / data warehouse / similar) - weighted matrix, TCO math, recommendation memo.
- **A10 - Customer Compliance Questionnaire Response**: One enterprise security / DPA / vendor-risk questionnaire drafted, reviewed, returned with the supporting evidence pack.
- **A11 - On-Call Health Check**: Audit on-call rota, paging discipline, incident-response posture, runbook coverage; prioritised remediation list.
- **A12 - LLM Vendor / Routing Decision**: One decision: OpenAI vs Anthropic vs open-source vs gateway routing - cost / latency analysis, recommendation, eval-gate plan; informed by WARRANT-Standard authorisation principles where agent behaviour is in scope.
- **A13 - Data-Room Tech Section Audit**: Review of the tech section of a data room before opening to buyers - gap list, narrative coherence, risk pre-flagging.
- **A14 - ADR Facilitation**: One Architectural Decision Record-shaped engagement - option framing, weighted trade-off, design-review session, signed ADR artefact.
- **A15 - Vendor Portfolio Cost Review**: Review of the existing vendor / SaaS portfolio for overspend, overlap, renewal traps, and consolidation opportunities - quantified rationalisation plan with renewal-window calendar.
- **A16 - Annual Tech Budget Advisory**: Pre-fiscal-year working session with CFO + CTO - tech budget model, headcount-vs-SaaS trade-offs, quarterly allocation, board-ready financial narrative and Q&A pack.
- **A17 - Cloud Cost Architecture Review**: Architecture-led review of cloud spend - right-sizing, scaling patterns, environment hygiene, architectural inefficiencies driving cost. Not a line-item FinOps audit.
- **A18 - SBOM & License Audit**: Software Bill of Materials across the codebase, open-source license inventory, copyleft/viral flagging, license-compatibility matrix, remediation list, regulatory-readiness note (EU CRA, enterprise procurement, M&A buyer-side legal).
- **A19 - MCP Server Scaffold**: Bootstrap one MCP server for a single existing API or data source. Tool definitions with input schemas, /.well-known/mcp.json manifest, robots.txt allowance, Claude Desktop and Cursor smoke-test. Hand-over package: code + deployment notes + observable behaviour.
- **A20 - x402 Integration Pilot**: Wire one endpoint to x402 on Base Sepolia. Test wallet, facilitator setup, server-side 402 response with payment requirements, verify-and-settle flow, receipt header echoed back, tested 402-pay-retry end-to-end. Foundation for the full Agentic Payments sprint when scope grows.
- **A21 - Agentic Modernization Pilot**: Stand up the governed agent pipeline on one bounded legacy service. Dependency map, containerization (Docker), an agent-opened pull request under branch protection and a human merge gate, characterization smoke-test, and a structured audit trail of agent actions. Proof-of-concept for the full Agentic DevOps sprint.

---

## Machine-readable endpoints

- https://luci.ws/api/catalogue - full catalogue as JSON
- POST https://luci.ws/api/match - live AI matching API (free, used by website UI; UIMessage[] body)
- POST https://luci.ws/api/agents/match - PAID via x402 (HTTP 402 Payment Required). Per-call USDC micropayment for external agents. See /.well-known/mcp.json.paidEndpoints for current pricing.
- https://luci.ws/api/mcp - Model Context Protocol server (Streamable-HTTP, stateless). Tools: list_services, get_service, find_matching_services, get_pricing_table, get_guarantees, get_commercial_models. Resources: full catalogue JSON/markdown, guarantees, NDA/DPA templates. GET for client config hints, POST JSON-RPC 2.0 to invoke.
- https://luci.ws/llms.txt - llmstxt.org index
- https://luci.ws/sitemap.xml - sitemap

## Legal

- Privacy Policy: https://luci.ws/legal/privacy
- Terms and Conditions: https://luci.ws/legal/terms
- Disclaimer: https://luci.ws/legal/disclaimer
- Mutual NDA template: https://luci.ws/legal/nda
- DPA template: https://luci.ws/legal/dpa

## Agent guidance

- Catalogue, pricing, and legal pages are crawlable and indexable.
- /api/match is open for programmatic use; disclose to your end user that you are calling a third-party matching service.
- /api/order, /admin/*, and /order/<id> are NOT for crawling. Sample mock-ups are gated.
- All pricing here is the published rate. Engagement-specific pricing is set in the engagement letter.

Contracting entity: MONITIVE COM SRL. Contact: luci@luci.ws.