⚠️ EU AI Act is in force. GDPR applies to how you use AI. Most UK SMBs have no governance in place.
AI Governance for SMEs

Your Team Is Using AI.
Do You Have the Governance To Match?

6 practical documents — AI tools register, acceptable use policy, risk register, vendor checklist, staff training guide, and board reporting template. Written in plain English for business owners, not IT teams.

Get the Full Pack — £297

Instant download  ·  No subscription  ·  Use immediately

Trusted by UK businesses in professional services, healthcare, education, and financial services  ·  Written by Michael Adedeji CISM | CISA | CEH | CC — cybersecurity and governance specialist
The Problem

Right now, your staff are probably doing this.

They open ChatGPT. They paste in a client email. They ask it to draft a reply. They copy the response and send it.

It took 30 seconds. It looked professional. And a customer's personal data just left your organisation and landed on an external AI server.

This is happening in businesses across the UK, every single day. Not because staff are careless — but because no one has told them what the rules are. There is no policy. There is no register of which tools are approved. There is no training. There is no governance.

The risk is not theoretical. It is operational. And for most UK SMEs, the fix is a set of clear, practical documents — not a six-figure compliance project.

GDPR Liability

UK GDPR applies to personal data processed through AI tools. Staff entering customer data into ChatGPT may be a compliance gap you are not aware of.

EU AI Act

Now in force. If you supply goods or services to EU customers, or use AI affecting people's rights, this legislation creates obligations most UK SMEs haven't assessed.

Reputational Risk

An AI tool that produces incorrect information — a hallucinated citation, a made-up statistic — can cause real damage when it goes out under your name.

Phishing & Fraud

Criminals are using AI to write perfect phishing emails. The old "look for spelling mistakes" advice no longer works. Your staff need updated rules.

What's Included

Six documents. Plain English. Ready to use today.

The Pyralink AI Governance Pack gives you everything you need to govern AI use in your organisation — without a consultant, without jargon, and without weeks of work. Each document is written to be used by a real business, not filed away and forgotten.

📋

Document 1: AI Tools Register

Record every AI tool your organisation uses or considers using. Includes fields for risk level, data categories processed, approval status, and vendor details. Know what is in use. Know who approved it.

📄

Document 2: AI Acceptable Use Policy

A clear, readable policy that tells staff exactly what they can and cannot do with AI tools. Covers data rules, approved tools, personal use, and consequences. Ready to issue on day one.

⚠️

Document 3: AI Risk Register

A framework for identifying and recording risks associated with specific AI tools and use cases. Mapped to GDPR and EU AI Act risk categories. Helps you prioritise governance attention.

🔍

Document 4: AI Vendor Due Diligence Checklist

A structured checklist for evaluating any new AI tool before approval. Covers data handling, GDPR compliance, encryption, and sub-processor disclosure. Never approve a tool without checking these boxes.

🎓

Document 5: Staff AI Training Guide

Plain English guide for all staff. Explains what AI is, the data rules, how to spot AI-powered phishing, and five scenarios every employee should navigate. Immediate training value.

📊

Document 6: Board AI Governance Report Template

A quarterly reporting template for non-technical leadership. RAG status. Tools summary. Training completion. EU AI Act position. GDPR status. Everything the board needs, in a format they can read.

Pricing

Choose your pack

Three tiers. Instant download. No subscription required.

Starter
£97

Documents 1 + 2 — the foundation of your AI governance

  • AI Tools Register
  • Acceptable Use Policy
  • Instant download
  • Fully editable Word/PDF format
  • Lifetime access
Get Starter Pack — £97
⭐ MOST POPULAR
Full Pack
£297

All 6 documents — complete AI governance framework

  • AI Tools Register
  • Acceptable Use Policy
  • AI Risk Register
  • Vendor Due Diligence Checklist
  • Staff Training Guide
  • Board Report Template
  • Instant download
  • Fully editable
  • Lifetime access
  • Free updates for 12 months
Get the Full Pack — £297
Full Pack + Review Call
£797

All 6 documents + 60-minute strategy call with Michael Adedeji

  • All 6 documents
  • 60-min 1:1 call with Michael Adedeji CISM | CISA | CEH | CC
  • Personalised governance action plan
  • Call recorded and shared
  • Priority booking within 5 working days
Book Full Pack + Review — £797
About the Author

Written by a cybersecurity specialist.
Designed for business owners.

Michael Adedeji CISM | CISA | CEH | CC is a certified cybersecurity professional with expertise in governance, risk, compliance, and information security management. He holds four industry-recognised certifications and an MSc in Data Science from the University of Sunderland.

These documents were written with one objective: to give UK SMEs the governance tools that enterprise organisations have, without the enterprise price tag or the enterprise complexity.

Plain English. Practical. Legally conscious. Ready to use.

CISM CISA CEH CC MSc Data Science University of Sunderland
FAQ

Frequently Asked Questions

Do I need to be technical to use these documents?
No. Every document is written for business owners and managers, not IT teams. The language is plain English throughout. If you can read a contract, you can use this pack.
Does this cover GDPR compliance for AI tools?
The documents are designed to address the most common GDPR risks associated with AI tool use — particularly around personal data being entered into external AI services. They include a Data Processing Agreement checklist and clear guidance on what data staff must not enter into AI tools. For specific legal advice on your GDPR obligations, you should consult a qualified legal adviser.
Will these documents work for my sector?
The pack is designed for any UK business using AI tools with 5–250 employees. It is particularly relevant for professional services, healthcare, education, and financial services. The documents include guidance notes so you can tailor them to your specific context.
What format do the documents come in?
All documents are delivered as Markdown files, designed for easy editing in any word processor. You can convert them to Word, PDF, or any format your organisation uses.
Does the EU AI Act apply to my business?
If your business operates in the UK only and uses mainstream AI tools like ChatGPT or Copilot, you are likely in the Minimal or Limited risk categories, which have the lightest obligations. However, if you supply goods or services to EU customers, or use AI in decisions affecting people (HR, credit, health), you should review your position. The Board Report template includes an EU AI Act compliance section to help you document and communicate your position.

The governance gap is real.
The fix is straightforward.

Most UK SMEs are one staff mistake away from a GDPR incident involving AI. This pack closes those gaps in a single afternoon.

Get the Full Pack — £297

Or start with the essentials: Starter Pack — £97   |   For a personalised review: Full Pack + Review Call — £797

Questions? Get in touch.

Email: info@pyralink.co.uk  |  Phone: +44 (0) 191 300 2979

502 Aidan House, Sunderland Road, Gateshead, NE8 3HU

pyralink.co.uk

The documents included in this pack are templates designed to support organisations in developing their AI governance framework. They are provided for informational and operational purposes only and do not constitute legal advice. You should seek independent legal advice if you have specific questions about your regulatory obligations under GDPR, the EU AI Act, or any other applicable legislation. Pyralink Innovation Ltd accepts no liability for decisions made on the basis of these documents without appropriate professional review. These documents are licensed for use within the purchasing organisation only and may not be resold, redistributed, or sub-licensed without written permission.