Policy Guidelines

Appoint a designated AI owner or AI Governance Committee responsible for approving tools, reviewing incidents, and maintaining your AI policy.

Create and maintain a central registry of all AI tools in use: vendor, plan tier, approved use cases, and documented risk assessment.

Establish a formal approval process for adopting new AI tools — require risk review before any tool is used with business data.

Document your risk acceptance decisions — if you choose to use a tool with known limitations, record the rationale.

Review your governance framework at least annually, and immediately following any significant AI incident or major vendor policy change.

Implement a four-tier data classification: Public, Internal, Confidential, and Regulated/Restricted.

Public data: usable with any AI tool. Internal data: business/team plan required. Confidential data: enterprise plan or on-premises only. Regulated data: only with BAA/DPA in place.

Create a clear, accessible reference for employees showing which tools are approved for which data classifications.

Require data owners to classify datasets before any AI-assisted processing begins.

Prohibited at all times: raw PHI, financial account numbers, SSNs, authentication credentials, unpublished M&A data, and attorney-client communications.

Require a Data Processing Agreement (DPA) or equivalent before using any AI tool for EU personal data (GDPR) or UK personal data (UK GDPR).

For healthcare data: obtain a HIPAA Business Associate Agreement (BAA) from every vendor that may process PHI.

For financial services: verify GLBA compliance and document your vendor due diligence.

Contract checklist: data retention limits, deletion rights, training opt-out, sub-processor list, security incident notification (< 72 hours for GDPR), and data residency.

Ensure contracts explicitly state that your data will not be used to train the vendor's models without your written consent.

Review and renegotiate contracts annually — or immediately when a vendor updates its terms.

Publish a written AI Usage Policy covering: approved tools, prohibited data types, how to report incidents, and disciplinary consequences for policy violations.

Require all employees to complete AI policy training before using any AI tool for business purposes.

Establish a "default deny" posture: employees must use only approved tools — unapproved tools require a formal exception process.

Provide practical guidance: how to anonymise inputs, when to use AI vs. when to seek human expertise, and how to verify AI-generated outputs.

Create a non-punitive incident reporting mechanism — early reporting of accidental data exposure significantly reduces harm.

Update the policy within 30 days of any material change to vendor terms or regulations.

Deploy enterprise AI platforms with SSO (single sign-on) and MFA (multi-factor authentication) — never consumer accounts with individual credentials.

Use SCIM for automated user provisioning and de-provisioning to ensure access is revoked promptly when employees leave.

Implement RBAC (role-based access controls) to restrict access to sensitive AI workflows to only those who need it.

Enable audit logging for all AI platform usage and integrate logs into your SIEM for centralised monitoring.

Deploy DLP (data loss prevention) rules to detect when sensitive data patterns (e.g., SSNs, credit card numbers) are sent to AI tools.

For high-risk workflows, consider browser isolation or dedicated endpoints to prevent data leakage.

Test your controls regularly — run tabletop exercises and simulate accidental disclosure scenarios.

Create a specific AI incident response playbook covering: accidental PHI input, prompt injection attacks, unauthorised tool use, and vendor data breaches.

Define clear escalation paths: who is notified first, who makes the call on regulatory notification, and who communicates with affected individuals.

GDPR/UK GDPR: notification to the supervisory authority within 72 hours of becoming aware of a breach.

HIPAA: notification to HHS and affected individuals within 60 days of discovery.

After any incident: conduct a root-cause analysis, update controls, and circulate learnings to prevent recurrence.

Run a simulation exercise at least annually to validate your playbook before you need it.