Plain-English AI Use Rules
What staff can and cannot use AI for, written for people, not lawyers.
Proof
Clear enough to be used on Monday.
Your staff are already using AI. Some of it is useful. Some of it is risky. One month to build the governance layer before a problem becomes a liability.
Staff are using AI tools nobody approved, sharing data nobody vetted, in workflows nobody documented. The governance gap is not a future risk. It is a current exposure.
This service builds the governance layer the business needs before AI use gets ahead of you. I work with your team to understand how AI is currently being used, where the real risks sit, and what rules will actually work in practice, not just on paper.
Every output is aligned to the Australian Government's Voluntary AI Safety Standard (10 guardrails) and the National AI Centre's AI6 essential practices. This is practical governance designed for your business, built to be used, not filed away.
Plain-English rules, a named internal owner, and a framework aligned to the Australian Government's Voluntary AI Safety Standard.
This layout is for explaining a service as a repeatable operating shape: who it is for, how the work moves, and what the client leaves with.
Staff are using AI tools in daily work, but nobody has defined which tools are approved, what data can be used, or where human review is required.
The business handles confidential client information. AI tools are being used in that context without clear rules about what can and cannot be shared.
A board, partner group, or executive team wants to know the business has its house in order on AI, and can point to the policies that prove it.
Identify every AI tool in use across the business, who is using it, in what context, and what data is being shared with it.
Week 01Assess each tool and use case against client data exposure, confidentiality obligations, and operational risk. Name the gaps that need rules.
Week 02Draft the approved tool list, data-sharing rules, human review requirements, risk categories, AI use register, and accountability assignments.
Week 03Review the governance framework with leadership and relevant staff. Assign the internal owner. Confirm the operating cadence for governance review.
Week 04What staff can and cannot use AI for, written for people, not lawyers.
Clear enough to be used on Monday.
A clear register of tools, not a vague principle.
Staff know what is allowed and what is not.
Specific guidance on what data must not go into AI platforms.
Protects client, financial, and confidential business material.
Where AI output must be checked before it is used.
Keeps judgement and accountability inside the business.
A live record of how AI is being used in the business.
Gives leadership a single view of AI exposure.
A practical summary staff can read and understand.
Turns governance from policy into behaviour.
Someone is accountable, and everyone knows who.
Accountability does not fall into a gap between teams.
Mapped against the Voluntary AI Safety Standard and NAIC AI6 guidance.
Gives boards, clients, and auditors a credible answer.