Answer the questions below to generate a customized AI policy tailored to your organization.
What industry are you in? *
Select all that apply.
Approximately how many employees do you have? *
Do you operate in Québec, or serve Québec residents? *
This triggers specific language obligations under Quebec's Law 25 (Act respecting the protection of personal information in the private sector).
Are you subject to any specific compliance frameworks?
Which AI tools does your organization currently use or permit?
Do employees use personal AI accounts for work purposes? *
Do you have AI tools embedded in existing software? *
For example: Salesforce Einstein, Notion AI, Adobe Firefly, Microsoft 365 Copilot.
Which embedded AI tools or platforms?
List the software products that include AI features your employees use.
What categories of data do employees regularly work with? *
Does your organization have a formal data classification scheme? *
For example: Public, Internal, Confidential, Restricted.
Are employees currently inputting any sensitive or confidential data into AI tools? *
Is there a designated person or team responsible for AI governance today? *
Do you want the policy to designate an AI owner or committee going forward? *
Will different rules apply to different roles or departments? *
For example: stricter rules for HR or legal teams who handle sensitive data.
How would you describe your organization's current approach to AI risk? *
Should the policy permit AI use by default with exceptions, or restrict it by default with approved exceptions? *
What consequences should apply for policy violations? *
Do you want to include a process for requesting approval of new AI tools? *
How frequently should the policy be reviewed? *