2 Kav AI Document Portfolio — Reference Index
This is the master map for Kav AI’s external- and internal-facing document portfolio. It exists so the team can build each document against a known best-practice reference instead of from a blank page, and so nothing is duplicated across folders.
How to use it: find the document you need to write, read its purpose, study the reference source and the public example to emulate, then draft it in the location shown. Update the status as you go.
2.1 The one rule worth repeating
There is no single reference to copy. Y Combinator’s canon is excellent for fundraising and early company-building, but it is tuned for consumer / self-serve SaaS — not for Kav AI’s motion (enterprise deep-tech selling into industrial OT with long procurement cycles, security reviews, and pilots). Use YC where it is strong; for technical, security, and client-facing docs, learn from enterprise B2B sources and from the real, public documents of comparable companies.
Status legend: Done · Draft · Stub (skeleton exists in repo) · Todo
2.2 Investor documents
| Document | Purpose | Reference / best-practice source | Public example to emulate | Location | Status |
|---|---|---|---|---|---|
| Pitch deck | The fundraising narrative: problem → wedge → traction → moat → ask | Sequoia pitch deck template; YC “How to design a better pitch deck”; a16z enterprise decks | C3.ai S-1 deck; Samsara investor day decks | investor/pitch-deck-outline.md |
Stub |
| One-pager / teaser | Cold-outreach summary for investors | YC Startup Library (intros); First Round Review | — | investor/one-pager.md |
Stub |
| Financial model | Revenue model, CAC/payback, burn, runway, raise + use of funds | Bessemer (BVP) cloud metrics; SaaStr; Tomasz Tunguz on SaaS metrics | C3.ai & Samsara 10-K metric definitions | investor/financial-model-notes.md |
Stub |
| Data-room checklist | What a Series A diligence room must contain | YC Series A guide; Carta data-room guides | — | investor/data-room-checklist.md |
Stub |
2.3 Client documents
| Document | Purpose | Reference / best-practice source | Public example to emulate | Location | Status |
|---|---|---|---|---|---|
| Security / trust whitepaper | Pre-answer the OT/IT security review that gates every oil & gas deal | Cloud Security Alliance CAIQ; Shared Assessments SIG; AICPA SOC 2; Vanta/Drata/Secureframe trust-center examples | Palantir, Samsara public trust centers | client/security-trust-whitepaper.md |
Stub |
| ROI / business-case one-pager | Turn avoided-cost framing into a buyer-ready financial case | SaaStr value-selling; Force Management / MEDDICC value framing | Augury, Tractian ROI calculators & case studies | client/roi-one-pager.md |
Stub |
| Case study | Reference story from the European refinery campaign / MVP v0.2 CUI finding | First Round Review case-study format; B2B case-study structure (challenge → solution → result) | Augury, Cognite, Samsara customer stories | client/case-study-template.md |
Stub |
| DPA / privacy addendum | Data-processing terms that sit alongside the MSA | IAPP DPA templates; standard GDPR Art. 28 structure | — | client/dpa-notes.md |
Stub |
| Pilot proposal / SOW | Per-client instance of the 90-day pilot framework | Built from PRD Appendix G | — | ../proposals/ (existing folder) |
Todo |
| User & admin documentation | Onboarding/operation of the live platform | Diátaxis documentation framework | Stripe, Twilio docs (structure) | ../handbooks/ (existing folder) |
Todo |
2.4 Technical documents
| Document | Purpose | Reference / best-practice source | Public example to emulate | Location | Status |
|---|---|---|---|---|---|
| Security architecture & threat model | Back the read-only OT/SCADA claims; foundation for SOC 2 | IEC 62443; OWASP threat-modeling; STRIDE; MITRE ATT&CK for ICS | Palantir deployment/security docs | technical/security-architecture-threat-model.md |
Stub |
| Model cards / ML governance | Document each detection model’s scope, eval, calibration, drift | Google “Model Cards for Model Reporting”; partnership-on-AI practices | Hugging Face model cards (format) | technical/model-cards.md |
Stub |
| Validation & benchmarking methodology | Make the TPR/FPR/ΔT/Solomon claims defensible (ground-truth NDT protocol, eval datasets) | ML eval best practices; metrology / NDT validation standards | — | ../evaluation/ (existing folder) |
Todo |
| Architecture & design docs / ADRs | Capture system design and key decisions | ADR conventions (Michael Nygard format) | — | ../adr/ (existing folder) |
Todo |
| API & data-schema specs | The build-from contract behind the PRD’s FR table | OpenAPI; AsyncAPI | Stripe API reference (quality bar) | ../api_standards/ (existing folder) |
Todo |
The PRD already absorbs several documents that startups usually keep separate: pilot framework (Appendix G), MSA positions (Appendix H), technical integration spec (Appendix F), market/competitive analysis, and roadmap. Don’t recreate these — link to the PRD from the relevant client/ investor doc instead.
2.5 Reference source directory
Grouped so you can go deep on a source rather than skim a link list. Search by name; ask Claude to attach verified current URLs if useful.
Fundraising & early company-building - Y Combinator — Startup Library, Startup School, Series A guide, SAFE legal docs - Paul Graham essays - Sequoia Capital — pitch deck template / “Writing a Business Plan”
Enterprise B2B GTM & metrics (more relevant to Kav AI than YC) - First Round Review — enterprise sales & company-building playbooks - SaaStr (Jason Lemkin) — enterprise SaaS GTM and economics - a16z — enterprise + “American Dynamism” (industrial/deep-tech) content - Bessemer (BVP) — “State of the Cloud”, cloud metrics benchmarks - Tomasz Tunguz (Theory Ventures) — SaaS metrics
Security, trust & compliance (client + technical) - Cloud Security Alliance — CAIQ (the questionnaire your clients will send) - Shared Assessments — SIG questionnaire - AICPA — SOC 2 Trust Services Criteria - IEC 62443 — industrial/OT cybersecurity - MITRE ATT&CK for ICS; OWASP threat modeling - Vanta / Drata / Secureframe — trust-center & whitepaper examples
ML governance & documentation - Google “Model Cards for Model Reporting” (paper) - Diátaxis — documentation framework for user/admin docs
2.6 Companies to study (real, public documents)
Public companies file their documents, so these are the best free templates — they survived investor and enterprise scrutiny.
| Company | Why study it | Best artifacts to pull |
|---|---|---|
| Samsara | Closest GTM analog — connected industrial operations, enterprise motion | Investor decks, S-1, public trust/security center |
| C3.ai | Enterprise/industrial AI | S-1, investor decks, 10-K metric definitions |
| Palantir | The hard enterprise + gov + air-gapped/security sales motion | Deployment & security materials, S-1 |
| Augury | Industrial predictive-maintenance — close product analog | Solution briefs, ROI calculators, case studies |
| Tractian | Industrial maintenance AI (went through YC) | Case studies, GTM collateral |
| Cognite | Direct competitor (in the PRD) | Industrial trust & solution briefs |
For enterprise sales collateral in your exact domain, also mirror the incumbents you benchmark against in the PRD — AspenTech, AVEVA, Hexagon ALI, GE Vernova (Meridium) — for the format of security whitepapers, solution briefs, and SLAs your buyers already expect.