Creating Compliance Policies

Policies document how your organization handles AI governance. Create policies for data handling, training, access control, incident response, etc. Link policies to compliance controls as evidence.

How to Create a Policy

1. Go to Compliance > Policies > New Policy
2. Define:
   • Name (e.g., “AI Model Update Policy”)
   • Scope (applies to which systems/teams)
   • Effective Date (when policy starts)
   • Approval (who must approve)
3. Write policy content:
   • Purpose (why this policy exists)
   • Scope (what it covers)
   • Requirements (specific rules/steps)
   • Responsibilities (who does what)
   • Exceptions (when policy can be waived)
4. Link to controls (which compliance requirements does this address?)
5. Click Create

Policy becomes visible to staff via dashboard. Compliance AI tracks version history.

Policy Templates

Pre-built templates for:

• Data protection policy
• Model update & change management
• Training requirement
• Incident response
• Access control
• Vendor management

Copy template and customize for your organization.

Next Steps

• Create your first policy: Go to Policies > New Policy
• Handle policy exceptions: Policy Exceptions
• Set up review reminders: Policy Reminders
• Manage versions: Policy Versioning