Answer ten questions about your visibility into employee AI-tool use and get an exposure score — low, medium, or high — plus the common unsanctioned AI tools in your industry and a sample AI acceptable-use-policy framework outline to build from.
This is a starting point to focus a shadow-AI conversation for a compliance, HR, or technology leader — not an audit and not a guarantee. Your team owns the decisions it raises.
This quiz scores your current visibility and controls over employee AI use and returns an exposure band, an industry common-tools list, and a sample acceptable-use-policy outline. It is a starting point, not an audit, not employee surveillance, and not legal, compliance, or security advice. Regulatory framing is kept generic — map each result to the supervisory expectations that govern you. Your team owns the decisions. No data leaves the browser.
·
Illustrative categories and widely used public tools — the real list is whatever is running in your environment.
A starting outline to adapt with your counsel — the structure a workable GenAI policy for employees needs.
A quiz is a self-assessment from the inside. The value is a bounded discovery from your actual environment: connected-app and OAuth review, SaaS-spend analysis, and voluntary interviews that produce an exposure map, a control roadmap, and a finalized acceptable-use policy. That is the Shadow AI Discovery + Policy Readiness Sprint.
·
This quiz is a structured starting point to focus a shadow-AI conversation. It is not an audit, not employee surveillance, and not legal, compliance, or security advice. Regulatory framing is kept generic — map each result to the supervisory expectations that govern you. The exposure bands, tool lists, and policy outline are structured heuristics, not certifications or benchmarks.
No data leaves the browser. Nothing you enter is sent to a server or retained.
Last reviewed: 2026-07-03 · Initial release. The questions, exposure bands, tool lists, and policy outline are a structured practitioner heuristic for shadow-AI readiness, re-checked quarterly. Accuracy is the point.
A quiz reads your own view from the inside. When you want the real picture, a principal runs a fixed-scope discovery of your actual environment and hands you an exposure map, a control roadmap, and an AI acceptable-use policy framework.
This quiz is a structured self-assessment to focus a shadow-AI conversation for a compliance, HR, or technology leader. It does not monitor employees, does not access your systems, and does not provide legal, compliance, or security advice. Regulatory framing is deliberately generic; map each result to the supervisory expectations that govern you.
DSE provides AI governance and security readiness work, including shadow AI discovery bounded to accessible systems and agreed data sources. We are not an accredited certification body and do not run covert surveillance, monitor employees, or guarantee any regulatory, examination, or litigation outcome, and we do not provide legal advice. We work alongside your counsel.