AI vendor risk questionnaire

AI Vendor Risk Questionnaire

AI vendor risk review should identify whether third-party tools use AI, how data is handled, how models are controlled, and what evidence the vendor can provide.

Start the 5-Minute Assessment

Core vendor questions

Teams should ask whether AI is embedded in the product, what data is used, whether outputs affect customers, how performance is monitored, and what audit rights exist.

Is AI used in the product or service?
What data is used for training, tuning, or outputs?
Are customer-impacting decisions explainable?
How are changes, drift, and exceptions monitored?
What evidence can the vendor provide?

Find My Top Governance Gaps

Take the free assessment to turn this topic into a readiness score, domain-level results, and prioritized gap summary.

Get My Free AI Governance Score