Where do you really stand on AI governance?

Ten questions, three minutes, scored against the EU AI Act and ISO/IEC 42001. You'll get an instant readiness band and a sense of what to fix first. No sign-up to take it.

01 We keep an up-to-date inventory of every AI system and AI-enabled vendor we use.

Yes Partly No

02 We know which of our AI uses fall under the EU AI Act — and at what risk level.

Yes Partly No

03 We can explain, in writing, how each significant AI system reaches its decisions.

Yes Partly No

04 AI-generated content and chatbots are clearly disclosed to the people using them.

Yes Partly No

05 There is a named person accountable for AI governance and risk.

Yes Partly No

06 We assess and document the risks of an AI system before it goes live.

Yes Partly No

07 We control and monitor staff use of public AI tools (shadow AI).

Yes Partly No

08 Personal or sensitive data used to train or prompt AI is governed and lawful.

Yes Partly No

09 We have an AI acceptable-use policy that staff actually follow.

Yes Partly No

10 We could show evidence of our AI governance if a customer, auditor or regulator asked tomorrow.

Yes Partly No

Your readiness

Want the detailed breakdown and what to fix first?

Leave your details and we'll send a short, tailored read — no sales blast.

Book a 30-minute call → See the full AI Governance Review

Enigma Partners Global

Cyber & digital trust · Digital workplace · Fractional IT/CIO

Edinburgh, United Kingdom

Book a meeting →

Site

About
Services
Approach
Book
Contact

Direct

hello@enigmapartnersglobal.com
LinkedIn

British-founded · Working internationally