Skip to content
Company

dezotech is led by André Queiroz — a builder with 16 years inside a regulated bank, shipping the compliance-evidence software those institutions need before the auditor calls.

dezotech exists for a specific, uncomfortable gap: the one between wanting AI today and being able to prove, when the auditor calls, that you adopted it safely.

Every company we talk to is having the same quiet argument with itself. One side sees what LLMs and autonomous agents can do right now — the productivity is real, the competitors are already moving. The other side has watched what happens when you bolt fast-moving technology onto a decades-old, regulated system and skip the legal questions: data leaving the building, models nobody approved, a breach nobody can explain. dezotech started in that argument.

dezotech is led by founder André Queiroz. For sixteen years he worked inside banking and government systems at Banco do Brasil — places where "move fast and break things" is a great way to end up explaining yourself to a regulator. He learned modernization the slow, safe way: strangler-fig migrations that cut over one slice at a time, with a rollback at every step, so the business never stops while the old system quietly retires. He is also the builder: he wrote shadow-scan — dezotech's offline AI-discovery engine, field-validated on a live network — himself, and previously led development of Medrix, a real-time AI platform. The architecture is the founder-market fit, already in the code.

When LLMs and agents arrived, we watched capable teams freeze — not because the technology was hard, but because nobody could answer the audit questions:

  • Where does the data go?
  • Who signed off on this model?
  • What happens when it's confidently wrong?

"Shadow AI" isn't really a tooling problem. It's people shipping value faster than governance can keep up, and hoping nobody asks. We're building the software and the path that let them stop hoping — shadow-scan today, and an AML examination-evidence platform in development for compliance teams that answer to FINTRAC.

What we bring

Four disciplines, grounded in years inside regulated systems.

Process automation

Hybrid RPA and AI agents that run inside your controls, with audit trails built in from day one — not bolted on later.

Legacy modernization

Strangler-fig migrations across COBOL, .NET and Java systems: incremental cutover, rollback-safe, zero big-bang.

AI governance

Work mapped to EU AI Act, NIST AI RMF and ISO 42001 — applied as practical controls, not a certificate on the wall.

Secure AI adoption

Turning shadow AI into a governed advantage: find what's already in use, contain the risk, give people a safe fast path.

How we work

Govern first. Ship in slices. Prove it as you go.

You work directly with our founder — no hand-off to a junior, no bait-and-switch, no year-long lock-in. Remote, in English or Portuguese. We document every decision and prove every change before it ships — the standard we hold ourselves to, because the only version of "fast" that counts is the one still standing after the audit.

Have a decision you can't afford to get wrong?