Design a workable AI policy for your organisation in one working day.
AI is already being used on your shop floor today. Often without policy, without oversight and without security. In one working day KODIFY designs the foundation together with you: a workable AI policy that facilitates innovation within safe boundaries.
Copilot, ChatGPT, Claude, Gemini — fantastic innovations, but they hallucinate, aren't always critical and the output is only as good as the prompt or data used. Employee knowledge levels vary, and are on average too low to use these tools wisely. Two real-world examples:
An employee asked ChatGPT for help and uploaded the personnel file containing personal data. This type of data breach almost always occurs because individual employees use AI models on their own initiative without any framework.
The privacy watchdog received dozens of reports of data breaches in the workplace through the use of AI chatbots such as ChatGPT, Claude and Gemini over two years. Most cases arise from employee initiatives.
Employees are insufficiently trained on the safe use of IT applications and AI tools.
Uncontrolled AI use leads to serious risks: from board liability and fines under the EU AI Act to reputational damage and exclusion from the chain. Without policy, you lose grip on your business-critical data.
The EU AI Act obliges organisations to invest in AI literacy. Not facilitating this knowledge is seen as a lack of governance and compliance.
Data breaches through AI use are under a magnifying glass from citizens, clients and supervisors. Trust is difficult to restore.
Direct fines from the Data Protection Authority and heavy sanctions under the EU AI Act for irresponsible use of AI models.
Organisations that cannot demonstrate their data integrity and AI safety are excluded from modern data networks and ecosystems.
Without central policy, employees use unsafe tools on their own initiative, causing business-critical information to end up outside the organisation unmanaged.
The AI Act comes into force in phases. AI literacy has been a hard obligation since February 2025. Waiting until 2026 is not an option: supervision and enforcement are already underway. Policy is your proof of preparation.
The European AI Regulation has been officially adopted. The legal framework is a fact.
Employees working with AI must demonstrably be AI-literate. Prohibited applications take effect.
NOW VALIDObligations for providers of general-purpose AI models — transparency, documentation, copyright.
All provisions — incl. high-risk AI in HR, credit granting and medical context — apply.
Good AI policy is not a list of prohibitions. It is a translation of what characterises your organisation — vision, values, customer promise — into concrete frameworks within which people can work freely and responsibly with AI. AI is already being used, today.
KODIFY supports as a strategic partner. Our "Route 1" focuses on fast and responsible organisation: we embrace tools like Microsoft Copilot, but safely. And we don't stop there: we take you on the journey towards AI maturity.
Data maturity and AI adoption are not resolved in one year.
An effective AI policy stands or falls with its practical application. Employees not only need to know what is and is not permitted, but also understand how to use AI responsibly, safely and effectively in their daily work.
Our programmes comply with the EU AI Act and strengthen AI literacy at all levels — from operational teams to management and board.
Six pitfalls we see time and again and how an experienced partner avoids them before they let policy disappear into a drawer.
A policy that prohibits everything is ignored. Shadow AI grows.
AI policy touches HR, legal, finance and the shop floor. It is not purely a tech issue.
Policy from six months ago is outdated. Tools and legislation move faster.
A developer needs different AI rights than a receptionist or HR manager.
A list of prohibitions without opportunities misses the whole point — and slows productivity gains.
Without vision and values, your policy is an arbitrary collection of do's and don'ts.
Via proven KODIFY templates you go through all themes and make sharp choices immediately — IT and Security involved from day one.
We scan current AI use, involve IT and Security and align templates to your context.
One working day, all themes. We make concrete choices per pillar and record them immediately.
Policy is translated into communication, technical guardrails and AI literacy sessions.
Logging, audit trail and periodic recalibration. Your AI policy keeps moving with law and practice.
Sharp choices on all 7 pillars in one working day — delivered as a ready-made policy document with implementation roadmap.
30 minutes, no pitch deck — just a whiteboard and your question. We immediately share where most organisations get stuck.
info@kodify.eu →
Nederlands