Risk Inventory (12–18 Risks)
Comprehensive catalogue of AI-specific risks tailored to your sector — including model failure, data quality, and third-party AI dependency risks.
AI Risk Register
Configure your context
AI drafts your output
Download and share
Review and refine
Supported frameworks include: EU AI Act, NIST AI RMF, ISO 42001, GDPR, UK GDPR, CCPA/CPRA, DPDPA, APPI, PIPL, PDPA, LGPD, POPIA
What you get
A single generation produces a complete, prioritised risk register — not a blank spreadsheet, but a structured document aligned to NIST AI RMF and ready for your risk committee.
Comprehensive catalogue of AI-specific risks tailored to your sector — including model failure, data quality, and third-party AI dependency risks.
Each risk scored on a 5×5 matrix (Impact × Likelihood), with colour-coded heat map and prioritisation ranking for your organisation.
Risks mapped to NIST AI RMF functions — Govern, Map, Measure, Manage — with applicable controls and testing requirements per function.
Three concrete mitigation actions per identified risk, with ownership assignment, implementation priority, and estimated effort rating.
Named risk owners from board to team level, with clear escalation thresholds, review cadence, and sign-off requirements.
Scheduled risk reassessment cadence, trigger events for unscheduled reviews, and a structured monitoring framework aligned to your risk appetite.
Fill in your organisation details below. The more context you provide, the more precisely calibrated your AI risk register will be.
Not ready to buy? See a sample first →
Want the jurisdiction cheat sheet first? Free →
Your generated document will appear here.
Fill in the form and click Generate to begin.
Each industry page combines the same ai risk register with sector-specific risks, regulator citations, and bias considerations drawn from the canonical overlay data.
Each bundle is anchored on a specific persona’s buyer journey. Standard sum-of-parts pricing — each tool is still purchased individually at its standard price (no subscription, no bundled checkout).
Your tool inputs — jurisdiction, industry, staff size, risk appetite, and an optional organisation name — plus a Stripe-processed payment. No account, no email required. Our hosting platform keeps minimal server logs (IP, timestamp) for security.
Tool inputs are used to generate your document and are not retained after your session. Payment transaction metadata (ID, amount, timestamp) is kept for seven years, the retention period required by financial-records law.
No. Your inputs are not used to train our AI models. Generation runs through Anthropic's API, which does not use API inputs for model training by default.
Frontend on Vercel, backend on Railway, AI generation via Anthropic's API, payment via Stripe's PCI-DSS certified infrastructure. All data in transit is TLS-encrypted.
These outputs support, rather than replace, your practitioners. Qualified human review is not optional — it is a core part of the process.
Full disclaimer
Built to amplify your in-house expertise
These documents support, and do not replace, qualified legal, clinical, or compliance practitioners. This output does not constitute legal advice. Consult your qualified in-house or external counsel before implementing or relying on any part of this document.
Regulation currency
Laws, regulations, and guidance cited are subject to change. Content reflects the position as at the date of generation and may not account for subsequent amendments, enforcement decisions, or judicial interpretations.
Proposed legislation
Where proposed or draft legislation is referenced — including the EU AI Liability Directive — such references describe legislation that has not been enacted. Its final form, scope, timing, and territorial application remain unconfirmed.
AI output limitations
AI output can contain errors or omissions. Do not rely on this document as a complete statement of your legal obligations or as a substitute for specialist compliance advice.
All 14 jurisdictions: European Union, United Kingdom, United States, Canada, Australia, Singapore, China, Japan, India, Brazil, UAE, Switzerland, South Africa, and Global/International. Each output is cited to the jurisdiction's actual laws and regulations.
All 14 industry sectors: Healthcare, Financial Services, HR & Recruitment, Legal & Professional Services, Education & EdTech, Retail & E-commerce, Manufacturing, Marketing & Advertising, Government, Energy, Transport, Insurance, Technology, and a Universal option for cross-sector use.
No. Pay once per generation, view the output online, and download immediately. No monthly fees, no account required, no recurring charges.
No. Every output is an AI-generated starting-point document that amplifies your in-house expertise — it is not a substitute for qualified legal review. We include explicit regulatory citations and review notes; you should have a qualified lawyer or compliance professional sign off before implementation.
We offer a 7-day money-back guarantee if the generated document fails to meet reasonable expectations for your stated jurisdiction and industry. See our refund policy for full details.
Each Risk Register ships with 12–18 sector-specific AI risks pre-populated, each scored on a 5×5 likelihood × impact matrix with documented residual risk after mitigations. The same data is delivered in both .docx (for board reading) and .xlsx (for ongoing operations).
Yes. The register maps each risk to NIST AI RMF Map / Measure / Manage functions and references the corresponding ISO/IEC 42001 control where applicable. Sector overlays add domain-specific risk categories (e.g. clinical safety risks for healthcare, model-drift risks for financial services).
Generate a complete, NIST-aligned AI risk register in minutes. No account needed. No commitment.
Generate Risk Register