← All resources
LM-22 · Consult · 8 items
Shadow AI & Copilot Readiness Checklist
Before AI tools touch customer data
Quick checklist for ad-hoc ChatGPT use and M365 Copilot rollouts — pairs with FC-07 AI Reality Check and FC-19 Copilot Readiness.
No email required for direct download. Privacy policy.
Preview
Work through each section at your pace.
Shadow AI
- Staff pasting customer PII into public chat tools
- No written policy on what data can enter AI tools
- Customer contracts silent on AI subprocessors
- No approval path for AI-generated customer content
Copilot rollout
- SharePoint sites with open external sharing before Copilot
- Over-privileged M365 admins still on daily driver accounts
- No data boundary map for which sites Copilot may index
- Licence rollout before security baseline review
Email me the PDF
Optional — we will send a link to your inbox. Direct download stays available above.