With the launch of ChatGPT, and now GPT-4, the buzz around generative AI has been deafening.

I have heard of organizations taking a variety of positions when it comes to the security implications of this incredibly powerful new tool, ranging from doing nothing to banning it completely.

Neither approach is correct.

While there are potential risks posed by using generative artificial intelligence (AI) tools, the productive power they unleash more than compensates.

So I have provided a free policy template that can help your organization use these tools as securely as possible. Obviously it will require customization (at the very least replacing ORGANIZATION_NAME) based on your circumstances and risk tolerances, but it should give you a place to start.

The policy is an evergreen document that I will update as things evolve.

Get the template