🇨🇦 Canada · AI Vendor Assessment

AI Vendor Assessment for CA

Name: AI Vendor Assessment for Canada
Price: 29 USD
Availability: InStock

A three-artifact deliverable: an Executive Summary Word document for sign-off (recommendation, top risk flags, top strengths, sign-off block), a 30-question scored Excel workbook with auto-summing category totals and an Evidence Request List tab, and a companion Procurement Checklist with foundational readiness items. Aligned to ISO/IEC 42001:2023 Annex A or the NIST AI Risk Management Framework — your choice at form time.

CA-specific obligations covered

The output is anchored on the regulations that apply to AI deployments in CA. The top frameworks cited:

Consumer Privacy Protection Act (Bill C-27 — Part 1) — LAPSEDproposed_federal_legislation · Lapsed
LAPSED — Bill C-27 (including CPPA) died when Parliament prorogued 6 January 2025 and has not been reintroduced. Do NOT cite CPPA as active or pending law. Cite PIPEDA instead.
Artificial Intelligence and Data Act (Bill C-27 — Part 3) — LAPSEDproposed_federal_legislation · Lapsed
LAPSED — Bill C-27 (including AIDA) died when Parliament prorogued 6 January 2025 and has not been reintroduced. Do NOT cite AIDA as active or pending law. Cite PIPEDA and OPC voluntary AI guidance instead.
Personal Information Protection and Electronic Documents Act (PIPEDA)federal_legislation · In force
Organisations must obtain meaningful consent before collecting personal information, limit collection to stated purposes, implement safeguards appropriate to the sensitivity of the information, and cooperate with OPC investigations.
Quebec Act to Modernise Legislative Provisions on Personal Information (Law 25)provincial_legislation · In force
Organisations using personal information to render a decision based exclusively on automated processing must inform the affected individual, who may then request human review and present observations to have the decision reconsidered.

How the AI Vendor Assessment approaches this

You describe the vendor (name and product or service) and your organisation's context — jurisdiction, industry, staff size, risk appetite — and choose your alignment framework: ISO/IEC 42001:2023, NIST AI RMF, or both. The tool produces a structured, evidence-based assessment ready to hand to your procurement, legal, and information-security teams.

The Executive Summary Word document is a one-page sign-off artifact — recommendation (Approved / Conditional / Rejected), top three risk flags, top three strengths, sign-off block. The detailed Excel workbook is the working assessment instrument: 30 questions across six weighted categories, with evidence guidance, regulatory call-outs, and an auto-summing scoring sheet. Both are AI-assisted drafting aids intended to accelerate review by qualified practitioners.

What you get

✓ Four deliverables, three jobs: Executive Summary (.docx) for board sign-off, Detailed Workbook (.xlsx) for the working scoring (with the Evidence Request List on a dedicated tab inside it), Procurement Checklist (.xlsx) for foundational readiness — no overlap, no confusion.
✓ Aligned to ISO/IEC 42001:2023 Annex A or NIST AI Risk Management Framework — your choice. Every question carries the framework reference and (where applicable) jurisdiction-critical regulatory call-outs.
✓ Excel formulas auto-sum each category total, calculate the weighted overall percentage, and surface Pass / Conditional / Reject thresholds — procurement teams don't have to re-key or re-calculate.
✓ Tailored to the vendor's product category, your industry, jurisdiction, and organisation size — not a generic checklist. Designed for review and sign-off by qualified procurement, legal, or information-security practitioners.

Ready to generate?

$29 · one-time — answer a 6-question intake (including jurisdiction = CA), and download your tailored document immediately.

Assess Vendor →

Also available framed for your sector → see industry-specific pages