Decision Protocol · AI Edition · Framework 01

AI Use & Control Framework

The AI Use Policy template — plus the operational framework that surrounds it.

Built around the AI Acceptable Use Policy — and the controls that operationalize it. Classification protocols, triage tools, literacy verification, Shadow AI disclosure, and rollout guidance. Every authorized use produces a contemporaneous record designed to hold under later scrutiny.

$247 · one-time purchase · 17 files

Including the AI Acceptable Use Policy, AI Use Case Triage Tool, AI Literacy Checklist, Shadow AI Disclosure Protocol, the Executed Example, and 12 supporting instruments.

Method developed by Lamberto Iezzi — 35+ years in European institutional banking, fiduciary governance, and regulatory risk. Read bio → · LinkedIn · Foundation

First Edition Currently in its first published edition. Adopting organizations form the early operator cohort.

What problem this solves

AI tools are being used across organizations without clear rules, without structured triage, without literacy verification, and without documented records of how use was authorized. Shadow AI is already in the workflow. If a review arrives — from a new board, an auditor, a regulator, or a claimant — the organization cannot show how AI use was governed, because nothing was recorded contemporaneously. This framework closes that gap before the review arrives.

What is included

Reference document at the center

AI Acceptable Use Policy — editable template

Defines what is allowed, who decides, and how each use is documented. Adopt as written, or edit to fit your organization. The framework's other instruments operationalize what the policy declares.

AI Acceptable Use Policy
AI Literacy Checklist
Shadow AI Disclosure Protocol
AI Use Case Triage Tool
AI Governance Rollout Memo
Control Ownership and Approval Matrix
AI Use Case Classification Guide
Executed Example: Marketing Content
3 editable HTML templates — customize and print to PDF
5 interactive tools — Literacy Checklist, Use Case Triage, AI Use Register, Enterprise Deployment Checklist, Approved Tool Whitelist
Framework Deployment Guide

Included: completed decision record

The Executed Example shows the framework applied to a real scenario — with classification, triage, data handling, review layers, trade-off documentation, and formal closure. Not a blank template: a completed record you can inspect before purchase.

Open the free sample →

Why this is not a generic policy pack

This framework is designed as an internal control layer, not as a loose collection of templates. It includes classification protocols, interpretation guidance, triage routing, escalation matrices, and a worked example showing the instruments applied to a real scenario with a completed decision record.

What you receive immediately

Immediate digital access after purchase. All framework documents, editable working files, and interactive tools delivered as a structured download. No consulting, implementation services, legal advice, certification, or post-purchase advisory support included.

Save $97 vs. buying separately

Complete AI Governance Suite — $397

Get both frameworks plus four exclusive components: Execution Library (20 case records), Library Navigator, Executive Briefing, and Deployment Roadmap.

Get the Complete Suite — $397

AI Use & Control Framework

$247 · one-time purchase · immediate digital access

Get the Framework — $247 Try the Interactive Preview

Or start small

Not ready for the full framework? The Starter Tool produces a single defensible decision record — for documenting one specific AI decision before scaling up.

Get the Starter Tool — $29 →

For advisors and consulting firms This framework can be applied within your own professional engagements with firm-branding permissions and broad-scope deployment terms. See the Agency License →

For compliance, legal, and risk evaluators Compliance teams comparing this method to NIST AI RMF, ISO/IEC 42001, the EU AI Act, or SR 11-7? See the full regulatory crosswalk →

Common questions

AI Use & Control Framework — FAQ

Is this an AI Acceptable Use Policy template?

Yes — and more than that. The framework includes the AI Acceptable Use Policy as its central document, fully editable. Around it sit the operational instruments needed to deploy it in practice: classification, triage, literacy verification, Shadow AI disclosure, and rollout. The policy defines what is allowed; the surrounding controls make it enforceable and produce a documented record each time it is applied.

What does this framework help an organization do?

It helps define acceptable use, classify internal AI use cases, surface unmanaged AI use, establish literacy expectations, and support initial rollout.

What files are included?

The framework includes core structured documents, supporting guidance, editable HTML files, interactive tools, an executed example, and a deployment guide.

Can this be used immediately after purchase?

Yes. It is designed for immediate internal review and deployment.

Is this legal advice?

No. Independent legal review remains the responsibility of the organization where required.

Does this include consulting or customization?

No. The framework is delivered as a downloadable product only. No consulting, implementation services, or post-purchase advisory support is included.

How long does deployment take?

Small teams can deploy in a single session. Mid-sized organizations typically deploy in 2–4 weeks. For organizations with 200+ employees, the included Enterprise Deployment Checklist provides a phased 6–8 week plan.

Do I need a lawyer to use this framework?

The framework is designed to be adopted and customized internally. For regulated sectors or organizations with specific compliance requirements, independent legal review of the adapted policy is recommended before formal adoption.

What industries is this designed for?

The framework is sector-agnostic. It applies to any organization using AI tools internally — financial services, healthcare, legal, technology, consulting, education, or any other sector where AI governance is needed.

How does this relate to the EU AI Act or ISO 42001?

This framework provides practical structured instruments — policies, triage, controls, and contemporaneous records — that support organizational readiness regardless of which regulatory standard applies. It is not a compliance certification tool, but the internal control layer it creates is aligned with the expectations of the EU AI Act and ISO 42001.

Can multiple departments use the same framework?

Yes. The framework is designed as an organization-wide control layer. The editable templates and interactive tools can be used by any department. The Approval Matrix and Triage Tool are specifically designed to route decisions across functions.

How do I customize the documents for my organization?

Open the editable HTML templates in any browser, click the highlighted fields, type your organization’s details (name, Approving Authority, dates, thresholds), and print to PDF. No special software required. The Deployment Guide walks you through the customization sequence step by step.

What if regulations change after I purchase?

The framework is designed to be version-controlled and updated internally. The policy includes a review cycle mechanism, and the editable templates allow ongoing adaptation. The underlying method is regulation-aware but not regulation-dependent — it provides the internal control layer that any regulatory framework requires.