AI Risk Management Policy
Sets risk principles, controls expectations, and accountability for AI.
Description
Defines how AI-specific risks are identified, assessed, treated, and monitored. Covers risk categories (privacy, security, bias, explainability, legal/regulatory, operational), risk ownership, risk acceptance thresholds, required controls by risk tier, monitoring expectations, and remediation requirements.
Related Products
Access Control Policy
Defines access rules, approval, least privilege, and review cadence.
AI Governance Policy
Establishes governance structure, decision rights, and oversight.
Asset Management Policy
Controls for asset inventory, ownership, and protection.
Change Management Policy
Defines approvals and safeguards for system/process change.
Data Backup Policy
Backup requirements, testing cadence, and recovery expectations.
Data Governance Policy
Rules for data ownership, quality, lifecycle, and stewardship.