Build Your Defense: Risk Framework Essentials
Building an AI Risk Framework
It's a Tuesday afternoon. Your marketing director has just forwarded a complaint from a client, the AI tool your team has been using to draft customer communications sent a response that included a made-up statistic about the client's industry. Nobody caught it before it went out. The client is unhappy. Now your CEO wants to know: who approved using that tool, what data did it access, and what's the process for checking AI outputs before they reach customers? You have no good answers. Not because your team is careless, but because nobody built a framework before the tools were deployed.
This scenario plays out in organizations of every size, every week. AI tools are adopted fast, often tool by tool, team by team, with no central oversight. ChatGPT Plus accounts get expensed. Copilot rolls out with a Microsoft 365 upgrade. Someone discovers Notion AI and starts using it for meeting notes that contain sensitive HR discussions. The tools are genuinely useful. The risks are real. And the gap between the two is where an AI risk framework lives. This lesson gives you the structure to close that gap, without needing a legal team or a technology background.
What an AI Risk Framework Actually Is
An AI risk framework is a structured set of decisions, policies, and checkpoints that your organization uses to govern how AI tools are adopted and used. Think of it the way you think about a financial approval process. Before someone spends company money above a certain threshold, there's a process: who approves it, what it can be spent on, what gets documented. An AI risk framework does the same thing for AI tool usage. It answers four core questions: What AI tools are we using? Who is allowed to use them, and for what? What data can go into them? And who checks the outputs before they cause harm?
Frameworks don't have to be complex documents. A one-page policy with clear categories beats a 40-page document nobody reads. The goal is repeatability, so that when a new employee joins, or a new tool gets proposed, or something goes wrong, everyone knows what to do. Most organizations starting from scratch can build a functional first framework in a few weeks, not months. You don't need to solve every edge case upfront. You need a working structure that can be updated as your use of AI matures.
The three core components of any AI risk framework are: a risk register (a list of the AI tools you use and the specific risks each one carries), a usage policy (clear rules about what employees can and cannot do with AI tools), and an incident response process (what happens when something goes wrong, an AI error reaches a client, sensitive data gets submitted to a public AI system, or an AI-generated output causes a compliance issue). You'll build all three of these across this lesson and the next two parts.
Start With What's Already in Use
The Four Risk Categories You Need to Know
AI risks in professional settings fall into four categories. Data privacy risk is the most common: it occurs when employees paste sensitive information, client data, employee records, financial figures, legal documents, into a public AI tool like ChatGPT. That data may be used to train future models, stored on external servers, or simply exposed to a third-party system your organization never agreed to share data with. Accuracy risk is the second category: AI tools confidently produce incorrect information. The made-up statistic in our opening scenario is a classic example. Legal and compliance risk is third: using AI to generate contracts, HR decisions, or regulated communications without review can create liability. And reputational risk is fourth: AI outputs that are biased, inappropriate, or simply wrong, and reach the outside world, damage trust in ways that are hard to repair.
Each of these categories requires a different type of control. Data privacy risk is addressed through clear rules about what information can and cannot be submitted to AI tools, and which tools are approved for which data sensitivity levels. Accuracy risk is addressed through output review processes: who checks AI-generated content before it's used, and how. Legal and compliance risk is addressed by defining which use cases require human expert review before action is taken. Reputational risk is managed through approval workflows for any AI-generated content that reaches customers, partners, or the public. A practical framework maps your actual AI use cases to these four categories and assigns an owner to each.
Prompt
I'm an HR manager at a 200-person professional services firm. We've started using ChatGPT Plus for drafting job descriptions, summarising interview notes, and generating performance review templates. Help me create a risk register entry for this use case. Include: the tool name, use cases, risk category, specific risk description, likelihood (high/medium/low), impact (high/medium/low), and recommended controls. Format it as a table I can paste into a Word document.
AI Response
**AI Risk Register Entry. HR Use of ChatGPT Plus** | Field | Details | |---|---| | **Tool** | ChatGPT Plus (OpenAI) | | **Use Cases** | Drafting job descriptions; summarising interview notes; generating performance review templates | | **Risk Category** | Data Privacy; Legal & Compliance; Accuracy | | **Risk Description** | **Data Privacy:** Interview notes and performance data containing employee names, personal details, and assessment judgements submitted to a public AI system. OpenAI's data policies may allow use of inputs for model training unless Enterprise tier is used. **Legal & Compliance:** AI-generated job descriptions may include language that inadvertently discriminates by age, gender, or disability status, creating employment law exposure. Performance review language generated by AI may not meet your organization's HR policy standards. **Accuracy:** AI may generate plausible but inaccurate competency frameworks or misstate legal requirements (e.g., notice periods, protected characteristics). | | **Likelihood** | Data Privacy: High. Legal/Compliance: Medium. Accuracy: Medium. | | **Impact** | Data Privacy: High. Legal/Compliance: High. Accuracy: Medium. | | **Recommended Controls** | 1. anonymize all employee data before submitting to ChatGPT, replace names with codes. 2. All AI-generated job descriptions reviewed by HR lead for discriminatory language before posting. 3. Performance review templates reviewed by HR Director before distribution. 4. Consider upgrading to ChatGPT Enterprise, which does not use inputs for training. 5. Add AI tool usage to employee data privacy training. | **Next review date:** Quarterly, or following any OpenAI policy change.
Comparing AI Risk Framework Approaches
organizations take different approaches to building AI governance structures. There's no single right answer, the right approach depends on your size, sector, existing compliance infrastructure, and how widely AI is already being used. The table below compares the three most common approaches non-technical teams use in practice. Each has real trade-offs. The goal isn't to pick the most sophisticated option, it's to pick the one your organization will actually implement and maintain.
| Approach | What It Looks Like | Best For | Main Strength | Main Risk |
|---|---|---|---|---|
| centralized Policy Model | A single AI policy document owned by IT or Legal. All tool approvals go through one team. Employees request access; a central team approves. | Regulated industries (finance, healthcare, legal). organizations with existing compliance infrastructure. | Consistent standards. Clear accountability. Audit trail. | Slow to respond to new tools. Can create 'shadow AI' if employees feel blocked. |
| Team-Level Governance | Each department creates its own AI usage guidelines, within a light company-wide framework. Marketing, HR, Sales each own their rules. | Mid-size organizations (50–500 people). Companies where AI use varies significantly by department. | Faster adoption. Guidelines fit actual workflows. Teams feel ownership. | Inconsistent standards across teams. Risk of data policy gaps at department boundaries. |
| Lightweight Register + Review Cycle | A shared document listing approved tools and use cases, reviewed monthly or quarterly. Anyone can propose a new tool; a small review group (2–3 people) approves. | Small businesses and teams. Early-stage AI adoption. organizations without a dedicated compliance function. | Low overhead. Easy to maintain. Gets something in place fast. | Less rigorous. May not satisfy external audit requirements. Relies on good faith compliance. |
Putting a Framework Into Practice
The most common reason AI risk frameworks fail isn't poor design, it's that they get built once and never used again. A framework that lives in a SharePoint folder nobody visits does nothing. Effective implementation means embedding the framework into the workflows people already use. That means adding an AI tool check to your onboarding checklist. It means including a 'did AI generate any of this content?' question in your content approval workflow. It means putting a standing 15-minute AI review item on your monthly team meeting agenda. The framework has to touch real work, or it stays theoretical.
Start with the highest-risk workflows first, not the most common ones. In most organizations, that means any AI use that touches client-facing communications, personal data, financial figures, or regulated decisions. These are the use cases where an error has the most consequence. Once you have controls in place for high-risk workflows, you can address medium and low-risk use cases more quickly, because the muscle memory for risk thinking has already been built. Teams that try to govern everything at once usually govern nothing well.
Assign a named owner to each risk control, not a team, a specific person. 'The marketing team will review AI-generated content' is not an accountability structure. 'Priya, the content lead, signs off on all AI-generated copy before publication' is. Named ownership changes behavior. It also makes it possible to update the framework when people change roles, which happens constantly in real organizations. A risk register with named owners, review dates, and a version number is a living document. Without those three elements, it's just a file.
Goal: Create a working AI risk register for your team or organization that identifies current AI tool usage, maps risks to categories, and assigns ownership of controls.
1. Open a blank spreadsheet (Google Sheets or Excel) and create columns: Tool Name, Who Uses It, Use Cases, Risk Category, Specific Risk, Likelihood (H/M/L), Impact (H/M/L), Control Measure, Control Owner, Review Date. 2. Send a five-question survey to your team using Google Forms or Microsoft Forms asking: Which AI tools do you use at work? How often? What do you use them for? Do you ever paste client or employee data into them? Have you had any errors or concerns? 3. Using the survey responses, list every AI tool your team currently uses in the Tool Name column, include everything from ChatGPT to Grammarly AI to Canva AI to Copilot. 4. For each tool, write the specific use cases your team uses it for in the Use Cases column, be concrete (e.g., 'drafting client proposal introductions', not 'writing'). 5. Assign each use case to one or more of the four risk categories: Data Privacy, Accuracy, Legal & Compliance, Reputational. 6. Write a one-sentence specific risk description for each entry, what could actually go wrong? (e.g., 'Client revenue figures submitted to ChatGPT before contract signed'). 7. Rate Likelihood and Impact as High, Medium, or Low, then write one concrete control measure for each High-rated risk. 8. Assign a named control owner (a specific person, not a team) and set a review date three months from today. 9. Save the register as 'AI Risk Register v1.0, [Date]' and share it with your manager or team lead for review.
How This Applies to Different Roles
- Managers: Your priority is the survey and the named owner column. You're responsible for knowing what tools your team uses and making sure someone specific owns each control, not 'the team'.
- HR professionals: Focus on data privacy risks first. Any use of AI with employee names, performance data, or recruitment information needs immediate controls. The ChatGPT Enterprise tier (which doesn't train on your inputs) is worth evaluating.
- Marketers: Your highest risk is reputational. AI-generated content reaching clients or the public unchecked. Build a mandatory human review step into every content workflow that touches AI output.
- Salespeople: Watch for accuracy risk. AI-generated proposals may include incorrect pricing, wrong product specs, or made-up competitor comparisons. Every AI-drafted proposal needs a factual check before it leaves your hands.
- Consultants: You face both data privacy (client information in prompts) and accuracy (AI-generated analyzis presented as expert insight) risks. Create a personal prompt discipline: never paste identifiable client data into a public AI tool.
- Teachers and educators: Focus on academic integrity and accuracy. AI-generated lesson content may contain factual errors. Student data submitted to AI tools may violate your institution's data protection obligations.
- Small business owners: The Lightweight Register approach fits your context. Start with a one-page document listing your tools, what they're used for, and one rule for each. Review it every quarter.
Prompt
I'm an operations manager at a 75-person consulting firm. We want to create a simple, one-page AI usage policy for our staff. We use Microsoft Copilot (rolled out with our M365 subscription), ChatGPT Plus (several staff have personal accounts they use for work), and Canva AI (used by our marketing coordinator). Our main concerns are: client data being submitted to AI tools, AI errors in client deliverables, and staff not knowing what's allowed. Write a plain-English one-page policy I can send to staff next week. Use clear headings and avoid legal jargon.
AI Response
**AI Tool Usage Policy, [Firm Name]** *Effective date: [Date] | Owner: Operations Manager | Review date: [Date + 6 months]* --- **Why this policy exists** We use AI tools to work faster and better. This policy makes sure we use them in ways that protect our clients, our reputation, and our people. --- **Approved tools** - **Microsoft Copilot**, approved for internal use across all staff. Do not use for drafting final client deliverables without human review. - **Canva AI**, approved for marketing materials only. Marketing coordinator is the named user. - **Personal ChatGPT accounts**, currently not approved for client work. If you want to use ChatGPT for a work task, speak to your manager first. --- **What you must never do** - Paste client names, contact details, financial data, or project specifics into any AI tool not on the approved list. - Submit confidential internal documents (contracts, staff records, board materials) to any AI tool. - Send AI-generated content directly to a client without a human review step. --- **What you should always do** - Check AI-generated facts, statistics, and figures before including them in any document. - If an AI tool produces something that seems wrong, flag it, don't just delete it. We want to know. - If you're unsure whether a task is safe to use AI for, ask your manager before proceeding. --- **If something goes wrong** Contact [Operations Manager name] immediately. Do not attempt to fix or conceal an AI-related error. Early reporting limits damage. *This policy will be reviewed every six months or following any significant AI incident.*
Key Takeaways From Part 1
- An AI risk framework answers four questions: what tools are in use, who can use them for what, what data can go in, and who checks outputs before harm occurs.
- The four risk categories for professional AI use are: data privacy, accuracy, legal & compliance, and reputational risk, each requires a different type of control.
- Start your framework with a shadow AI audit, survey your team to discover tools leadership doesn't know about. You can't manage risks from invisible tools.
- Three governance approaches exist: centralized policy, team-level governance, and a lightweight register. Match the approach to your organization's size and existing compliance infrastructure.
- Named individual ownership of each control is non-negotiable. 'The team is responsible' is not accountability.
- Embed the framework into real workflows, onboarding checklists, content approval processes, meeting agendas, or it will never be used.
- Start with highest-risk workflows (client-facing, personal data, regulated decisions) before addressing lower-risk use cases.
- A one-page policy that staff actually read beats a comprehensive document nobody opens.
Mapping Risk to Real Workflows
Picture this: It's Wednesday afternoon. Your HR director has just forwarded a complaint from a hiring manager who used an AI tool to shortlist candidates for a senior role. Three finalists were selected. Someone noticed that all three came from the same two universities and that no candidates over 45 made the list, despite strong applications. Nobody did anything deliberately wrong. The AI tool was free, fast, and popular. Nobody asked whether it was appropriate for this use case. Now you have a potential discrimination issue, an angry hiring manager, and a compliance question you can't easily answer. This scenario plays out across organizations every week. The AI risk framework you started building in Part 1 exists precisely to stop this moment from happening, or to give you a clear path when it does.
Assigning Risk Levels to AI Use Cases
Not every AI task carries the same risk. Asking ChatGPT to tighten the language in a press release is low stakes. Using an AI tool to score job applications, generate patient-facing medical summaries, or automate loan eligibility decisions is a different category entirely. Your framework needs a consistent method for sorting use cases into risk tiers, and that method should be simple enough that a marketing manager or school administrator can apply it without legal training. The most practical approach borrows from existing risk management practice: ask two questions. First, what is the worst realiztic outcome if this AI output is wrong or biased? Second, how many people are affected, and how reversible is the harm? Those two dimensions, severity and scale, give you a working risk level for almost any AI application in under five minutes.
Historical Record
EU AI Act
The EU AI Act took effect in 2024 and formalizes a tiered approach to AI risk into law for organizations operating in or selling into Europe, defining four risk categories including unacceptable risk and high risk.
This regulation establishes legal requirements for AI governance that organizations must follow when operating in European markets.
Start with Your Highest-Stakes Department
The Four Dimensions of AI Risk You Must Document
Risk tiering tells you how seriously to treat a use case. But documentation is where your framework becomes real and defensible. Every AI use case above minimal risk should be captured across four dimensions. The first is purpose: what specific task is the AI performing, and what decision or output does it inform? The second is data: what information is being fed into the AI tool, and does that include personal data, proprietary data, or regulated data? The third is accountability: which person or role is responsible for reviewing the AI output before it affects a real outcome? The fourth is audit trail: how do you know what the AI produced, and can you reconstruct that if challenged? These four dimensions, purpose, data, accountability, audit trail, form the spine of a risk register entry for any AI deployment, whether you're a solo consultant or a 5,000-person enterprise.
The accountability dimension deserves special attention because it's where most organizations are currently weakest. When an AI tool produces a flawed output, a biased shortlist, an inaccurate financial summary, a misleading client recommendation, the instinct is to blame the tool. But tools don't have legal liability. People and organizations do. Your framework must name a human decision-maker for every consequential AI output. This doesn't mean that person must manually check every word. It means they are the designated reviewer who signs off before the output affects a real-world decision. In practice, this is often the person who would have made the decision without AI, the hiring manager, the account director, the department head. Making this explicit in writing transforms a vague cultural expectation into a clear operational responsibility.
Prompt
I'm an HR manager building an AI risk register for my organization. We recently started using an AI-assisted recruitment tool that ranks job applications and highlights top candidates. Help me write a risk register entry for this use case covering: purpose, data inputs, potential risks, risk tier, required human oversight, and audit trail requirements. Write it in plain language suitable for a non-technical audience.
AI Response
**AI Risk Register Entry. Recruitment Screening Tool** **Purpose:** The tool automatically scores and ranks incoming job applications based on CV content, using criteria configured by the HR team. Its output is a ranked shortlist presented to hiring managers. It does not make final hiring decisions. **Data Inputs:** Candidate CVs (names, employment history, education, skills), job description criteria set by HR. No salary data or interview notes are processed at this stage. **Potential Risks:** Bias in rankings if historical hiring patterns are embedded in the tool's training data. Unlawful indirect discrimination by education institution, age, or gender. Over-reliance by hiring managers who do not review candidates outside the top-ranked list. GDPR implications if candidate data is retained by the vendor beyond the recruitment cycle. **Risk Tier:** High. This tool directly influences employment decisions affecting individuals' livelihoods and carries legal exposure under equality and data protection law. **Required Human Oversight:** A named HR team member must review the full ranked list before it is shared with hiring managers. A random sample of 10% of rejected applications must be manually reviewed each recruitment cycle to check for bias patterns. **Audit Trail Requirements:** Output rankings and scoring rationale must be saved for each recruitment cycle. Vendor data retention policy must be documented and reviewed annually. Any candidate complaints must be traceable to the specific ranking output produced.
Comparing AI Risk Assessment Approaches
Several structured approaches exist for assessing AI risk, and choosing between them depends on your organization's size, existing compliance infrastructure, and regulatory environment. The table below compares the four most commonly referenced frameworks that non-technical professionals are likely to encounter. None of them require technical expertise to apply at a basic level. Each has a different emphasis, some focus on ethics and bias, others on process and accountability, others on legal compliance. The right answer for most mid-sized organizations is to pick one as a primary structure and reference the others when a specific question arises. Trying to implement all four simultaneously is a common mistake that results in framework fatigue and no actual change in practice.
| Framework | Developed By | Primary Focus | Best For | Requires Technical Expertise? |
|---|---|---|---|---|
| NIST AI Risk Management Framework (AI RMF) | US National Institute of Standards and Technology | Governance, accountability, and lifecycle risk management | US-based organizations, federal contractors, large enterprises | No, designed for cross-functional teams |
| EU AI Act Compliance Model | European Union | Legal risk tiers and regulatory compliance | Organizations operating in or selling into Europe | No, tiering is use-case based, not technical |
| ISO/IEC 42001 (AI Management System) | International Organization for Standardization | Systematic AI management and continuous improvement | Organizations with existing ISO certification culture | No, mirrors ISO 9001 structure familiar to quality teams |
| Microsoft Responsible AI Standard | Microsoft | Fairness, reliability, privacy, and human oversight in AI products | Teams using Microsoft 365 Copilot or Azure AI tools | No, published as a public policy document with practical guidance |
Putting Your Framework Into Daily Practice
A risk framework that lives in a shared drive and gets reviewed once a year is not a framework, it's a document. The organizations that manage AI risk effectively make their framework operational through three habits. First, they embed a quick risk check into the process for adopting any new AI tool, no matter how small. Before a team starts using a new AI feature, even a free tool someone found online, a designated person answers five standard questions: What is it being used for? What data does it touch? Who reviews outputs before they affect decisions? What do we do if it produces something wrong? Is there a vendor agreement that covers our data? This takes fifteen minutes and prevents most of the scenarios that become compliance problems later.
Second, effective organizations build a regular review cadence into existing meetings rather than creating new ones. A quarterly agenda item in a senior leadership meeting, 'AI tool review: any new additions, any incidents, any changes to vendor terms?', takes twenty minutes and keeps the framework alive. It also signals to staff that AI governance is a real organizational priority, not a one-time project. Third, they maintain a living AI inventory: a simple spreadsheet or shared document listing every AI tool currently in use, the department using it, its risk tier, and the named human accountable for its outputs. When something goes wrong, this inventory tells you immediately where to look. When a regulator asks what AI tools you use, you have a clear, current answer.
The practical payoff of these habits is not just compliance, it's operational confidence. When your sales director wants to deploy an AI tool that summarizes customer calls, you have a clear process for evaluating it. When a new employee asks whether they can use ChatGPT for client-facing work, you have a policy answer ready. When a client asks whether you use AI in their account, you can answer honestly and specifically. Organizations with working frameworks spend less time in reactive crisis management and more time using AI effectively. The framework is not a constraint on AI adoption, it's the structure that makes broader, faster, more confident adoption possible.
Goal: Create a working risk register that documents and tiers the AI tools currently in use across at least one department, with named accountability for each.
1. Open a blank spreadsheet or table in Word, Google Docs, or Notion. Create seven column headers: Tool Name, Department, Use Case Description, Data Inputs, Risk Tier (Minimal / Limited / High / Unacceptable), Named Accountable Person, Audit Trail Method. 2. Identify one department in your organization where AI tools are currently being used, or where you know adoption is happening informally. 3. List every AI tool or AI-powered feature that department uses, including built-in features in existing software (e.g., Copilot in Microsoft 365, Grammarly suggestions, AI summarization in Zoom or Teams). 4. For each tool, write a one-sentence description of the specific use case, not just the tool name, but what it is actually being used to do. 5. Identify what data inputs are involved. Note specifically if any entry involves personal data (employee or customer), financial data, or health-related information. 6. Assign a risk tier to each entry using the EU AI Act four-tier model as your guide. If unsure, apply the two-question test: severity of worst-case error + scale of people affected. 7. Name a specific person or role, not a team or department, who is accountable for reviewing outputs before they affect real decisions. 8. For each high-risk entry, write one sentence describing how you would reconstruct what the AI produced if challenged (e.g., saved outputs, version history, vendor logs). 9. Share the draft register with one colleague from the department for a ten-minute review. Note any tools or use cases they identify that you missed, these gaps are the most valuable finding.
How Risk Responsibilities Differ by Role
- Managers and Team Leads: Your primary responsibility is knowing which AI tools your team uses and ensuring a named human reviewer exists for every consequential output. You are the first line of accountability, not IT, not legal.
- HR Professionals: Any AI touching recruitment, performance review, or workforce planning sits in the high-risk tier. You need documented bias-checking procedures and must understand your vendor's data retention practices before signing any agreement.
- Marketers and Communications Teams: Most AI writing and creative tools are minimal or limited risk, but customer-facing personalization tools that use behavioral data require transparency disclosures and a clear data handling policy.
- Sales and Account Teams: AI tools summarizing client calls or generating proposals may process confidential client information. Check your client contracts for AI use clauses before feeding client data into any external tool.
- Finance and Operations: AI tools generating forecasts, budget summaries, or supplier risk assessments influence real financial decisions. These require human sign-off and a clear record of what data the AI used to produce its output.
- Teachers and School Administrators: AI tools used in student assessment or learning recommendations affect minors and may be subject to specific regulations around student data. Parental transparency and data minimization are non-negotiable requirements.
- Consultants and Advisors: When you use AI to generate client deliverables, you carry professional liability for the output. Your risk framework must include a step where you verify AI-generated analyzis against source data before it leaves your desk.
- Senior Leaders and Executives: Your role is to ensure the framework exists, that someone owns it, that it has a budget and a review cadence, and that AI incidents are escalated to you, not buried in a department.
Prompt
I'm an operations manager and I want to create a simple one-page checklist that any team member must complete before adopting a new AI tool in their workflow. It should take no more than 15 minutes to fill out, require no technical knowledge, and flag whether the tool needs formal review before use. Make it practical and direct, not a lengthy policy document.
AI Response
**AI Tool Adoption Checklist. Complete Before First Use** *Estimated time: 10–15 minutes. Submit to [Operations Manager / Compliance Lead] before using the tool with real work data.* **1. What is the tool?** Name and website of the tool. Is it a free tool, a paid subscription, or a feature inside software we already use? **2. What will you use it for?** Describe the specific task in one or two sentences. Be concrete, not 'writing help' but 'drafting first versions of client proposal sections.' **3. What data will you put into it?** Check all that apply: ☐ Internal documents with no personal data ☐ Customer or client names / contact details ☐ Employee information ☐ Financial figures ☐ Health or sensitive personal data ☐ Confidential strategy or IP **4. Who will review the output before it affects a decision or goes external?** Name a specific person. If the answer is 'nobody' or 'it goes straight out,' stop and escalate. **5. Does the vendor agreement cover our data?** Check: Does the tool's privacy policy state that your inputs are not used to train their models? If you can't find this information in under five minutes, flag for review. **Automatic escalation triggers, stop and request formal review if:**. Any box in question 3 is ticked beyond internal documents. The tool will influence hiring, performance, or financial decisions. You cannot identify a human reviewer for outputs. The tool is free with no clear business model
Key Takeaways from Part 2
- Risk tiering, sorting AI use cases by severity and scale of potential harm, is the practical core of any working AI risk framework, and non-technical professionals can apply it without specializt training.
- Every AI use case above minimal risk needs four things documented: its purpose, its data inputs, a named accountable human, and a describable audit trail.
- The EU AI Act's four-tier model (unacceptable, high, limited, minimal) is a free, publicly available template that works for internal risk classification even if your organization is not legally subject to EU regulation.
- The NIST AI RMF, EU AI Act, ISO/IEC 42001, and Microsoft Responsible AI Standard are the four frameworks most relevant to non-technical professionals, choose one as your primary structure rather than trying to implement all four.
- A framework only works if it's operational: embed a quick risk check into new tool adoption, maintain a living AI inventory, and add AI review to an existing quarterly meeting.
- Risk responsibilities are role-specific. HR owns bias risk in recruitment tools. Sales owns confidential client data exposure. Managers own accountability for their team's AI outputs. Executives own the existence and resourcing of the framework itself.
- An AI tool adoption checklist, a simple one-page document any employee completes before using a new tool, is the highest-leverage, lowest-effort intervention most organizations are not yet doing.
It's Thursday afternoon. Your company just signed a contract with a vendor whose platform uses AI to screen job applications. HR is excited, fewer hours reviewing CVs. Legal hasn't seen the contract. Your CHRO asks you to 'make sure it's compliant.' You have no framework, no checklist, and no clear owner for AI risk in your organization. You spend two hours sending emails that go nowhere. This is the moment an AI risk framework stops being a theoretical exercise and becomes something you desperately wish you'd built last month.
From Principles to an Actual Framework
An AI risk framework is not a policy document that lives in a shared drive. It is an operating system for how your organization makes decisions about AI, who approves new tools, who monitors existing ones, what triggers a review, and what happens when something goes wrong. The best frameworks are short enough to be used and specific enough to be useful. Three components make any framework functional: a risk register that catalogs every AI tool in use, an approval workflow for new tools, and a review cadence that checks whether risk levels have changed. Without all three, you have a policy, not a framework.
The risk register is your foundation. It is simply a list of every AI tool your organization uses, mapped against four dimensions: what data it touches, what decisions it influences, who is accountable for it, and what the consequence of failure looks like. A marketing team using Canva AI to generate social images sits at low risk. An HR team using an AI screening tool that filters candidates sits at high risk. The same framework applies to both, the register just assigns them different review frequencies and oversight requirements. Building this register takes one afternoon with the right prompt and a spreadsheet.
The approval workflow is your gate. Before any team adopts a new AI tool, a short checklist runs: Does it process personal data? Does it influence a consequential decision, hiring, lending, medical, legal? Is the vendor transparent about how the model works? Has legal reviewed the terms? This does not need to be bureaucratic. A one-page form reviewed by a designated AI lead takes fifteen minutes. The alternative, discovering six months later that a tool has been ingesting customer data into a third-party model, takes considerably longer to resolve.
The review cadence closes the loop. AI tools change. A vendor updates their model. Regulations shift. A team starts using a tool in a way it was not originally approved for. Quarterly check-ins on high-risk tools and annual reviews on low-risk ones catch these changes before they become incidents. Assign a named owner to each tool in the register. Ownership without a name is not ownership, it is a gap waiting to become a problem.
Start with what you already have
Using AI to Build Your AI Risk Framework
There is a productive irony in using AI tools to build your AI risk framework. ChatGPT, Claude, and Microsoft Copilot can generate first drafts of risk registers, approval checklists, incident response protocols, and vendor assessment questions in minutes. You supply the context, your industry, your team size, the specific tools you use, and the AI returns structured, editable output you can adapt. This is not outsourcing your governance thinking. It is compressing the time between 'we should build this' and 'here is a working draft.'
Prompt
I'm an operations manager at a 200-person professional services firm. We use the following AI tools: Microsoft Copilot (integrated into our M365 suite), ChatGPT Plus (used by consulting and marketing teams), an AI-powered recruitment screening tool called HireVue, and Grammarly Business. Create a risk register table for these four tools. For each tool, include: tool name, primary use case, data types processed, risk level (low/medium/high), key risk factors, accountable role, and recommended review frequency. Format it as a table I can copy into a spreadsheet.
AI Response
| Tool | Primary Use Case | Data Processed | Risk Level | Key Risk Factors | Accountable Role | Review Frequency | |---|---|---|---|---|---|---| | Microsoft Copilot | Drafting emails, summarising meetings, generating reports | Internal emails, meeting transcripts, documents, potentially client data | Medium | Data residency in Microsoft cloud; model trained on tenant data; confidential client content exposure | IT Director / Data Protection Officer | Quarterly | | ChatGPT Plus | Research, content drafting, brainstorming, client proposals | User-inputted text; risk of staff entering confidential client or personal data | Medium-High | No enterprise data agreement on standard Plus plan; data may be used for training; no audit trail | Operations Manager / Team Leads | Quarterly; policy review bi-annually | | HireVue | Candidate screening, video interview analyzis | Candidate personal data, facial expressions, voice patterns, biometric indicators | High | Automated decision-making on employment; potential bias in scoring algorithms; GDPR Article 22 obligations; EU AI Act high-risk classification | HR Director / Legal Counsel | Monthly monitoring; formal review bi-annually | | Grammarly Business | Writing assistance, tone suggestions | Email content, document drafts, potentially confidential communications | Low-Medium | Text processed on Grammarly servers; enterprise plan includes data privacy protections; staff may use personal accounts without enterprise controls | IT Manager | Annual | **Immediate actions recommended:** - Upgrade ChatGPT Plus accounts to ChatGPT Enterprise to obtain a data processing agreement and disable training on your data. - Conduct a DPIA (Data Protection Impact Assessment) for HireVue before next hiring cycle. - Audit whether staff are using personal Grammarly accounts rather than the business plan.
Comparing Framework Approaches
| Approach | Best For | Time to Build | Key Strength | Key Weakness |
|---|---|---|---|---|
| Spreadsheet Risk Register | SMBs, teams under 100 people | Half a day | Simple, no new tools needed | Hard to keep updated at scale |
| Notion or Confluence Wiki | Mid-size teams with existing intranet | 1–2 days | Searchable, linkable, collaborative | Requires someone to maintain it |
| Microsoft Purview (built into M365) | organizations already on Microsoft 365 | 2–5 days with IT | Automated data classification, audit logs | Requires IT involvement to configure |
| Dedicated GRC Platform (e.g., OneTrust, LogicGate) | Enterprises with compliance teams | Weeks to months | Comprehensive, audit-ready, reportable | Expensive; overkill for small teams |
| AI-generated draft + manual refinement | Any size, fastest start | 2–4 hours | Immediate working draft to react to | Requires human review and customization |
Making the Framework Work on Monday
A framework only works if people use it. That means two things: it has to be easy to find, and it has to be easy to follow. Put your risk register and approval checklist in the one place your team already goes, your intranet, your shared drive, your project management tool. A governance document that requires three clicks and a password reset will not be consulted. One that lives in your Teams channel or Notion workspace will.
Communicate the framework as a service, not a restriction. The message is not 'you need approval to use AI tools.' The message is 'we have a fast-track process so you can use AI tools confidently, knowing legal and data risks have been checked.' Most employees want to do the right thing. A clear, quick process removes the excuse of not knowing what to do. Frame it that way and adoption follows.
Finally, schedule the first review before you launch the framework. Put a calendar invite in place for 90 days out. Assign one person to own the agenda. The review should answer three questions: Are all current tools still at their assessed risk level? Have any new tools been adopted outside the approval process? Has anything in the regulatory environment changed that affects our risk assessments? That 60-minute meeting, held quarterly, is what separates a living framework from a document that ages in a folder.
Goal: Create a working AI risk register for your organization using a free AI tool, producing a document you can share with your team or manager this week.
1. Open ChatGPT (free version at chat.openai.com) or Claude (free at claude.ai), no account upgrade needed for this task. 2. List every AI tool your team currently uses. Include anything with 'AI', 'smart', or 'auto' in the feature name, check your email client, CRM, HR platform, and any browser extensions. 3. Paste your list into the AI tool with this prompt: 'I work at a [your industry] organization with [team size] staff. Here are the AI tools we currently use: [your list]. Create a risk register table with these columns: Tool Name, Primary Use Case, Data Types Processed, Risk Level (Low/Medium/High), Key Risk Factors, Accountable Role, and Recommended Review Frequency.' 4. Copy the output into a Google Sheet or Excel spreadsheet. Review each row and correct anything that does not match your actual usage. 5. Add a fifth column called 'Current Status' and mark each tool as either Approved, Under Review, or Unapproved. 6. Identify the one tool with the highest risk level and ask the AI: 'What are the three most important governance steps I should take for [tool name] in a [your industry] context?' 7. Draft a one-paragraph summary of your findings to share with your manager or team lead, noting your highest-risk tool and the immediate action you recommend. 8. Save the register with today's date in the filename and schedule a 30-minute calendar reminder in 90 days to review and update it. 9. Share the register with at least one colleague and ask them to add any tools you may have missed.
How This Applies Across Roles
- HR Managers: You are likely operating the highest-risk AI tools in the organization, recruitment screening, performance analytics, engagement surveys. Build your register first and flag any tool that influences hiring or termination decisions for immediate legal review.
- Marketing Teams: Your risk is primarily data privacy (customer data in AI tools) and brand risk (AI-generated content published without review). Add a content approval step for any AI-generated external communications.
- Sales Leaders: CRM-embedded AI (Salesforce Einstein, HubSpot AI) often processes customer personal data. Check your vendor's data processing agreements and confirm your team is not pasting prospect data into public AI tools.
- Finance and Operations: Budget forecasting and operational planning tools with AI features may influence significant business decisions. Document the human review step that sits above any AI recommendation.
- People Managers at Any Level: Your immediate role is to know what AI tools your team uses and to channel adoption through whatever approval process exists, or to flag that no process exists and escalate.
Prompt
I'm an HR director at a healthcare organization. We're considering adopting an AI tool called Paradox (Olivia) to automate initial candidate screening conversations. Create a one-page approval checklist I can use to evaluate this tool before we commit. Include sections on data privacy, bias and fairness, regulatory compliance, vendor accountability, and internal governance. Write it so a non-technical HR professional can complete it without needing IT support.
AI Response
**AI Tool Approval Checklist. Paradox (Olivia) Candidate Screening** *Complete before any pilot or procurement decision* **1. Data Privacy** - [ ] Does the tool process personal data of candidates? (Yes, names, contact details, responses) - [ ] Has the vendor provided a Data Processing Agreement (DPA)? Request before signing. - [ ] Is candidate data stored in your country or region? Ask vendor for data residency documentation. - [ ] Are candidates informed they are interacting with an AI, not a human? (GDPR and EU AI Act requirement) - [ ] Can candidates request deletion of their data? Confirm vendor process. **2. Bias and Fairness** - [ ] Has the vendor published a bias audit or fairness assessment for this product? - [ ] Does the tool score or rank candidates in any way? If yes, request documentation of the scoring criteria. - [ ] Have you consulted legal on compliance with the EU AI Act (high-risk category: employment decisions)? **3. Regulatory Compliance** - [ ] Healthcare sector: Does candidate data interact with any patient data systems? (If yes, HIPAA/IG review required) - [ ] Is this tool classified as high-risk under the EU AI Act? (Automated employment screening = yes) - [ ] Has your Data Protection Officer (DPO) been notified? DPIA likely required. **4. Vendor Accountability** - [ ] Can the vendor explain how the AI makes decisions in plain language? - [ ] What is the vendor's incident response process if bias or errors are discovered? - [ ] Does the contract include SLA terms covering AI performance and accuracy? **5. Internal Governance** - [ ] Who is the named accountable owner for this tool post-adoption? - [ ] What human review step exists above any AI recommendation? - [ ] Has this tool been added to the AI risk register? **Approval Decision:** Proceed to pilot / Defer pending review / Do not proceed **Signed:** _______________ **Date:** _______________
Key Takeaways
- An AI risk framework has three working components: a risk register, an approval workflow, and a regular review cadence. All three are required for the framework to function.
- Start by cataloguing what AI tools your organization already uses. Most teams discover more touchpoints than expected before any formal governance exists.
- Risk level is determined by what data a tool processes and what decisions it influences, not by how well-known the vendor is.
- AI tools like ChatGPT and Claude can generate your first risk register and approval checklist in under an hour. Use them to compress build time, then apply human judgment to refine the output.
- High-risk tools, particularly those influencing hiring, lending, healthcare, or legal decisions, require formal human oversight, documented review processes, and in many jurisdictions, a Data Protection Impact Assessment.
- A framework only works if it is easy to find and easy to follow. Place it where your team already works. Frame it as a fast-track approval service, not a bureaucratic barrier.
- Assign named owners to every tool in the register. Unowned tools accumulate risk silently.
- Schedule your first framework review before you launch. Governance that is never revisited becomes compliance theater.
This lesson requires Pro+
Upgrade your plan to unlock this lesson and all other Pro+ content on the platform.
You're currently on the Free plan.