# Responsible AI Use Policy: The 30-Minute Template

From zero to compliant in one working session.

## Product Promise
A plain-language AI use policy template for service firms, consultancies, and nonprofits built around five compliance pillars.

## Intended Buyer
Small teams that need an immediate, understandable AI-use policy before client, funder, or board review.

## Included Deliverables
- Editable policy template
- 5-pillar framework guide
- Implementation checklist
- Staff FAQ insert
- Annual review trigger checklist

## Practitioner Workflow
1. Permitted uses: define the decision, evidence, owner, and acceptance threshold before use.
2. Prohibited uses: define the decision, evidence, owner, and acceptance threshold before use.
3. Confidential information: define the decision, evidence, owner, and acceptance threshold before use.
4. Human review: define the decision, evidence, owner, and acceptance threshold before use.
5. Annual review: define the decision, evidence, owner, and acceptance threshold before use.

## Operating Standard
Use this product as a practical governance aid, not as legal advice. For legal, regulatory, medical, financial, or employment decisions, require qualified human review and preserve the evidence trail.

## Evidence Rules
- Prefer primary sources over AI-generated summaries.
- Keep the raw AI output, prompts, model name, date, and reviewer identity.
- Separate verified claims from inferred, plausible, and unsupported claims.
- Do not cite AI output as a substitute for a real source.
- For volatile law, policy, science, or market claims, re-check the source close to publication.

## Official Source Anchors
- Quebec Act respecting the protection of personal information in the private sector, CQLR c P-39.1: https://www.legisquebec.gouv.qc.ca/en/document/cs/p-39.1/20240701
- NIST AI Risk Management Framework 1.0: https://www.nist.gov/itl/ai-risk-management-framework
- ISO/IEC 42001:2023 AI management systems: https://www.iso.org/standard/42001