We suggest the following action plan
- Due Diligence
Product/service due diligence and gap analysis - Analysing the product/service and identifying which regulations will have an impact on the UX/UI, customer documentation and internal policies, and then drafting a gap analysis document (if AI tools are involved, this phase must include risk assessment)
- Compliance plan
Identifying and defining the corrective actions to be implemented on the basis of the gap analysis document. This is the most difficult step, as it is necessary has to keep in mind all the obligations arising from the different regulations, rationalise and prioritise them.
- Technology Review
Technical updating of the product/service. For example, working on source codes, updating UX and UI, figuring out how to make personal and non-personal data available to users, making sure we havethat instruments are in place that willto explain the decisions taken through AI tools, etc.
- Preparing and updating documents
Updating customer-facing documentation. In particular, updating general terms and conditions, privacy policies and internal policies, drafting AI policies, data sharing agreements, etc.
We will be happy to help you define your action plan
