AI Governance

AI Governance Kit (City/County)

NIST AI RMF-aligned starter artifacts for policy, acceptable use, and oversight.

Executive Summary (1 page)

Responsible use: do not enter sensitive data into public AI tools; validate policy language with counsel and governance stakeholders as appropriate.

What this does

Creates clear rules for staff using AI tools
Reduces data exposure risk from prompts/uploads
Establishes human accountability + review for high-impact uses
Improves vendor/procurement guardrails

What leadership should care about

Public records/retention implications
Legal/compliance risk from incorrect AI output
Procurement terms (data use, logging, breach notice)

What’s included

AI policy template (NIST AI RMF-aligned)
1-page cheat sheet for staff/supervisors
AI Use Case Register (CSV template)

Recommended 30–60 minute rollout

Fill the Use Case Register for any AI already in use.
Adopt the cheat sheet as an interim acceptable-use memo.
Route the full policy through governance/legal and procurement.

Links (download/edit)

Policy template: AI_POLICY_CITY_COUNTY_NIST_AI_RMF.md
Cheat sheet: AI_POLICY_CHEAT_SHEET_1P.md
Use case register (CSV): AI_USE_CASE_REGISTER_TEMPLATE.csv
NIST AI RMF: nist.gov/itl/ai-risk-management-framework

Hosted index: Public Sector Playbooks — Hosted Tools