Loading…
Tag
vendor-risk
24 posts with this tag.
Other tags:All posts2026acceptable-useaccountabilityadministrative penaltiesAdobe FireflyAfrican musicage gatingagent oversightagentic AIai-acceptable-useai-adoptionAI Agent Safetyai-agentsai-apisai-behaviorai-code-governance
·8 min read
AI Vendor Contract Redline Template: 12 Clauses to Add or Fix (2026)
12 AI vendor contract clauses to add, fix, or reject before signing. Copy-paste redline language for: no training on your data, 72-hour breach notification, data deletion, sub-processor limits, audit rights, and model version control.
·7 min read
Anthropic vs OpenAI: GDPR Compliance Differences (2026)
Side-by-side comparison of Anthropic and OpenAI GDPR terms: DPA availability, data retention, EU hosting, sub-processors, breach notification, and training data opt-out. Which is safer for EU personal data?
·7 min read
AI Vendor DPA Tracker 2026: Which AI Tools Have GDPR Data Processing Agreements
25+ AI vendor DPA status in one table: which AI tools have GDPR data processing agreements, whether they train on your data, EU data residency options, and self-serve DPA links. Updated May 2026.
·10 min read
40 AI Prompts for Vendor Evaluation (Copy-Paste Ready)
40 copy-paste prompts to evaluate AI vendors on privacy, security, compliance, SLA, and contract terms. Use these in procurement meetings, RFPs, or security reviews.
·8 min read
AI Vendor Supply Chain Security: Checklist for Small Teams (2026)
AI supply chain attacks: contractor gets infected, tokens stolen, your systems hit. Checklist to map vendor exposure, scope access, and respond within 24 hours.
·8 min read
AI in Virtual Data Rooms: Compliance and Governance Guide (2026)
AI features in VDRs create data handling and compliance obligations. Access controls, training opt-outs, and audit log requirements before enabling VDR AI.
·9 min read
AI Vendor Due Diligence Checklist (2026): 30 Questions Before You Sign
30-question AI vendor due diligence checklist: security, data handling, compliance, and contract terms. Pass/fail criteria for each. Copy into your review.
·9 min read
ISO 27001 and AI Tools: What Auditors Now Ask (2026)
ISO 27001 auditors now check AI tools in Annex A reviews. Controls that apply, evidence required, and the minimum documentation set to pass audit.
·9 min read
AI Governance for Healthcare Startups: HIPAA, HITECH, and the EU AI Act
ChatGPT.com is not HIPAA compliant by default. Healthcare startups need a BAA, a PHI data boundary, and an EU AI Act plan for diagnostic tools.
·8 min read
How to Add AI Tools to Your SOC 2 Program
SOC 2 auditors now ask about ChatGPT, Copilot, and Claude. Which Trust Service Criteria AI affects, what evidence you need, and how to scope AI tools.
·7 min read
Notion AI vs Microsoft 365 Copilot: Compliance for Small Teams
Notion AI and Microsoft 365 Copilot handle data retention, training opt-out, and EU residency differently. Governance comparison for small teams in 2026.
·10 min read
Best AI Tools for Small Teams: Compliance and Governance Ratings (2026)
ChatGPT, Claude, Copilot, Notion AI, and Grammarly rated on GDPR posture, DPA availability, SOC 2, and audit logs. Safest AI tools for regulated small teams.
Showing 12 of 24 posts.