Template Catalogue
Browse the library
Professional governance documentation mapped to the Veridio AI Governance Framework.
Loading…
Professional governance documentation mapped to the Veridio AI Governance Framework.
Loading…
46 templates
Per-system register with 15+ fields including system ID, name, description, owner, risk classification, purpose, lifecycle status, deployment date, third-party flag, data types, review date. Guidance row per column. 4 worked examples. Discovery checklist. Dashboard with auto-calculating coverage metrics and governance gap indicators.
EU AI Act 4-tier classification (Prohibited, High-Risk, Limited Risk, Minimal Risk) with decision tree. 10-criteria scoring matrix. Per-tier governance requirements. Classification register with 4 worked examples. Dashboard tracking classification coverage.
Per-system purpose documentation: intended purpose, permitted/prohibited uses, target population, deployment context, scope boundaries, scope change triggers. 4 worked examples. Dashboard.
Ownership assignment: named owner, accountability scope, 8 decision authorities, governance obligations, review cadence. Ownership register. Succession planning. 4 worked examples. Dashboard.
System-level change control: 4-tier classification (Substantial/Material/Minor/Emergency), change request form, impact classification matrix, approval workflow, EU AI Act Art. 23 substantial modification assessment, change log register. Dashboard.
Dependency register: supplier, system, dependency type, data flows, contractual obligations, risk rating, vendor governance assessment, exit strategy. 20-question supplier assessment questionnaire. 4 worked examples. Dashboard.
Complete framework document: scope, objectives, 9-domain structure reference, governance structure, roles summary, ERM integration section, review cycle. Framework adoption checklist. Senior leadership endorsement. Dashboard.
RACI matrix mapping 20+ governance activities to 8 standard roles. Role description templates. Decision rights matrix. Dashboard with unassigned activity tracking.
Terms of reference: purpose, authority, 9 specific powers, membership criteria, quorum, meeting frequency, agenda framework, reporting requirements, escalation authority. Meeting minute template. Annual review checklist. Dashboard.
Three foundational policies: AI Acceptable Use, AI Risk Management, AI Data Governance. Each 4–6 pages with scope, policy statements, roles, compliance, review schedule, approval page. Cross-references throughout.
Eight policies: all 3 Starter policies plus Transparency & Disclosure, Human Oversight, Incident Management, Model Governance, Procurement & Third-Party AI. Complete policy framework.
Accountability register: AI-assisted decision categories mapped to accountable individuals, decision authority levels, escalation paths, review frequency, override authority. Decision log. 4 worked examples. Dashboard.
Quarterly governance report: risk dashboard section, incident summary, compliance status, AI system portfolio overview, regulatory horizon, key decisions, upcoming actions. Executive summary format. Dashboard.
Risk identification guide: 8 AI-specific risk categories (bias, drift, hallucination, data poisoning, privacy, safety, operational, reputational), identification workshop facilitation guide, risk statement writing guidance, per-category example risks. Risk taxonomy reference.
15-column risk register: risk ID, system, category, description, likelihood, impact, inherent score, controls, residual risk, owner, acceptance status, review date. 4 worked examples. Auto-calculating risk scores and heatmap conditional formatting. Dashboard.
Four-dimension assessment: legal & regulatory, ethical & societal, operational & technical, affected population analysis. Per-dimension scoring with 5-level scale. Deployment decision framework (proceed/conditions/halt). Stakeholder impact matrix. Dashboard.
Full GDPR-compliant DPIA: processing description, necessity & proportionality assessment, 7-category risk assessment, risk mitigation measures, DPO consultation record, data subject rights assessment. ICO-aligned format. Dashboard.
Acceptance register: risk description, residual risk level, business justification, approving authority, conditions, time limit, review date. Escalation triggers. Exception handling procedure. Dashboard with expiry tracking.
Disclosure policy: regulatory, contractual, public, and internal audiences. Disclosure register per system. Privacy policy AI addendum text. 4 worked examples showing different disclosure obligations. Dashboard.
12 standard contract clauses: supplier agreements, client contracts, partnership agreements, employment contracts. Drafting guidance per clause. Clause selection matrix by contract type. Dashboard.
Per-system explainability register: decision stakes, explanation approach, technical method, audience, delivery mechanism, individual explanation capability, EU AI Act Art. 13 and GDPR Art. 22(3) applicability. Explanation delivery process. Limitation disclosure framework. Dashboard.
User-facing AI disclosure templates: chatbot interaction notice, automated decision notification, AI-assisted recommendation disclaimer, rights information notice. Plain language versions. Communication testing framework. Dashboard.
25-control AI-specific catalogue across 6 categories. Risk-to-control mapping register. Control effectiveness testing register. Dashboard.
Validation methodology: acceptance criteria framework, test coverage matrix (accuracy, robustness, fairness, edge cases), pre-deployment validation report template, post-deployment monitoring setup. Validation register. Dashboard.
4-tier change classification. 8-row revalidation trigger matrix. 12-column change log. EU AI Act Art. 3(23) substantial modification assessment. Dashboard.
Comprehensive model documentation: model identity, technical specification, training data description, performance metrics, fairness analysis, intended use, limitations, ethical considerations. Maintenance schedule. 4 worked examples. Dashboard.
Fairness methodology: 6 fairness metric definitions, protected characteristic assessment, training data representativeness analysis, output fairness testing framework, bias mitigation options register. Per-system fairness register. Dashboard.
Fallback register per system. 15-step decommissioning checklist across 3 phases. Decommissioning record for audit trail. Dashboard.
Version standards (MAJOR.MINOR.PATCH convention). Version register. Rollback testing register. Governance linkage requirements. Dashboard.
Complete data governance framework: scope, data classification for AI, quality standards, roles & responsibilities, lifecycle management. Data inventory register. Data quality requirements. Dashboard.
11-column lineage register tracking data from source through transformations to model version. Provenance record with 3 sections. Dashboard with lineage coverage and gap indicators.
Per-processing-activity lawful basis assessment: 6 GDPR lawful bases, legitimate interest assessment, consent management, data subject rights impact, special category data assessment. Assessment register. Dashboard.
12-column AI-specific security register. 8-threat AI Threat Catalogue. Dashboard.
12-column retention schedule with regulatory basis and minimisation tracking. Disposal record with authorisation and evidence. Model Data Position framework for GDPR Art. 17 erasure requests. Dashboard.
Per-system oversight mechanisms: oversight type, trigger conditions, override capability, override testing schedule. Override test register. Intervention log. Oversight mechanism design guidance. Dashboard.
Role-specific training requirements matrix. Training record register. Competence assessment framework. Dashboard with training currency and overdue tracking.
6 pre-defined escalation pathways. Challenge mechanism covering GDPR Art. 22 and EU AI Act Art. 86 rights. Escalation log. Dashboard.
11-column oversight activity log. 50-row capacity. Dashboard.
11-column per-system monitoring plan. 7-category reassessment trigger matrix. Quarterly governance risk report template. Dashboard.
11-column record requirements register. Integrity controls framework. Retrieval procedure. Dashboard.
Complete incident lifecycle: AI-specific definition, 4-level severity classification matrix, response procedures, regulatory notification register, notification templates, tabletop exercise guide. Incident log. Dashboard.
3 AI-adapted RCA methods. Investigation template. Corrective action register. Post-incident review template.
8 pre-defined improvement input sources with guidance. Improvement register. Dashboard with high-priority outstanding metric.
8-section policy including EU AI Act Art. 50 labelling. 12-column provenance register. Dashboard.
9-domain evidence inventory. Governance documentation checklist. Integrity control requirements. Retention schedule (EU AI Act 10-year aligned). Audit exercise guide. Dashboard.
58-principle checklist with evidence status tracking, traffic-light formatting, evidence location, gap description, action owner. Dashboard with overall coverage percentage and 9-domain breakdown.