Developing a Practical AI Use Policy: What Every Organisation Needs to Know

Introduction

AI tools are now embedded in the daily workflows of professional service firms and organisations of all sizes. Staff are using generative AI for drafting, research, data analysis, client communications, and much more - often without any formal organisational guidance in place. This creates significant risks around data protection, client confidentiality, intellectual property, regulatory compliance, and reputational harm.

This practical session provides a structured approach to developing a robust and workable AI use policy for your organisation. Rather than offering a one-size-fits-all template, it walks delegates through the key decisions, considerations, and stakeholder conversations needed to create a policy that reflects the specific risks, culture, and regulatory environment of their organisation. The session also addresses how to keep policies current as AI capabilities evolve rapidly and how to embed them into existing governance frameworks so they are actually followed in practice.

What You Will Learn

This live and interactive course will cover the following:

• Why a dedicated AI use policy is now essential - and why existing IT and data policies are not sufficient
• The key risk areas that an AI policy must address: data protection and confidentiality, intellectual property, accuracy and hallucinations, bias, regulatory compliance and reputational exposure
• How to conduct an AI audit to understand what tools staff are already using and how to assess the risks associated with each
• A practical framework for building your AI use policy, including approved tools, permitted use cases, prohibited activities and escalation procedures
• The regulatory landscape: key provisions of the EU AI Act, ICO guidance on AI and data protection and sector-specific expectations from bodies such as the SRA and FCA
• How to engage stakeholders across the organisation - from senior leadership to frontline staff - to ensure buy-in and compliance
• Practical approaches to training and awareness so that the policy translates into changed behaviour, not just a document on an intranet
• How to future-proof your policy with a review and update mechanism that keeps pace with rapidly evolving AI capabilities

Recording of live sessions: Soon after the Learn Live session has taken place you will be able to go back and access the recording - should you wish to revisit the material discussed.