What you can expect
These are implementation-ready policies, standards, and procedures written for business and technical teams to actually follow. Clear scope. Clear responsibilities. Clean exception handling. Document control is built in.
How it works
Select a single document or a recommended bundle.
Complete purchase and download instantly.
Tailor to your tools, vendors, data types, jurisdictions, and operating model.
Documents include document control elements (scope, roles, exceptions, review cadence) and are designed to integrate into an existing governance program.
Shop individual policies and standards
Buy exactly what you need. Add more later. Each document stands alone.
Core governance and security
Existing offerings. Foundational governance and cyber controls.
Access Control Policy
Defines access rules, approval, least privilege, and review cadence.
AI Governance Policy
Establishes governance structure, decision rights, and oversight.
AI Risk Management Policy
Sets risk principles, controls expectations, and accountability for AI.
Asset Management Policy
Controls for asset inventory, ownership, and protection.
Change Management Policy
Defines approvals and safeguards for system/process change.
Data Backup Policy
Backup requirements, testing cadence, and recovery expectations.
Data Governance Policy
Rules for data ownership, quality, lifecycle, and stewardship.
Incident Response Policy
Defines incident response roles, escalation, and handling.
Information Security Policy
Core security requirements and control expectations.
Third Party Risk Policy
Sets standards for vendor risk management and oversight.
AI operational guardrails
Day-to-day rules that make AI governance real inside the business.
AI Acceptable Use Policy
Approved vs prohibited AI use; restricted data rules; enforcement.
AI Data Handling Standard for AI Tools
What can/can’t go into AI tools; how outputs are handled.
AI Logging, Monitoring & Record Retention Standard
Logging and retention requirements to support oversight and investigations.
AI Output, Intellectual Property & Attribution Policy
Rules for AI-generated content, attribution, and IP safeguards.
Human Oversight & Validation Standard
When humans must review; validation expectations; prohibited automation.
Procedures and toolkits
Audit-friendly workflows with supporting artifacts.
AI System Inventory & Use-Case Intake Procedure
AI registry + intake workflow to control and document AI use.
AI Use-Case Risk & Impact Assessment Procedure
Tiered assessment method with approval thresholds and evidence.
Vendor risk tools
Procurement-ready tools focused on AI vendor risks.
Vendor AI Due Diligence Checklist
Procurement-ready checklist focused on AI vendor risks.
Recommended bundles
Optional bundles for buyers who want a clear starting point and better value.
AI Workplace Starter Bundle
Includes: AI Acceptable Use ($299), AI Data Handling Standard ($349), Human Oversight & Validation ($299)
AI Governance Operations Bundle
Includes: AI Inventory & Intake ($499), AI Risk & Impact Assessment ($699), AI Logging/Monitoring/Retention ($349)
Vendor AI Risk Bundle
Includes: Third Party Risk Policy ($299) Vendor AI Due Diligence Checklist ($249), AI Data Handling Standard ($349)
Audit-Ready AI Bundle
Includes: AI Governance Policy ($249), AI Risk Management Policy ($299), AI Inventory & Intake ($499), AI Risk & Impact Assessment ($699), AI Logging/Monitoring/Retention ($349), Human Oversight & Validation ($299)
Prefer individual purchases? Scroll up to Shop Individual Policies.
Licensing and use terms
License: Single-entity internal-use license. No resale or redistribution. Materials must be tailored to your environment. Purchase does not create a legal or consulting relationship and is not legal advice. Full terms are included with your download.
Not sure what to buy?
Still unsure? Email [email protected] and we’ll point you to the right starting point.