A defensible inventory of the AI in your organization underpins SSPA, EU AI Act registration, ISO 42001, board reporting, and shadow-AI control. This kit gives you the registry, a way to classify by risk, an intake for new AI, and a playbook to find what you missed.
Anyone who needs a defensible record of their AI systems, whether for an audit, a regulator, a buyer, the board, or to get shadow AI under control.
Whatever you already use: a spreadsheet, a database such as Supabase or Airtable, or your GRC tool. The kit gives you the schema and workflow, not a locked-in tool.
Yes. A classified inventory is the starting point for EU AI Act classification and evidence for a Microsoft SSPA assessment.
The discovery playbook walks expense review, network and app controls, browser extensions, and direct surveys, then brings each finding into the registry.
Editable Word and PDF, yours to keep, with a 14-day guarantee.