AU
AI Usage Policy
🔵 Stable🕐 updated 2026-07-02
🔷 SkillSpec L3
pm-aiwork
Write an AI usage policy people can actually follow — approved tools, data rules, disclosure duties, and review obligations, in one page instead of legal fog. Use when asked for a company AI policy, acceptable-use rules for ChatGPT/Claude/Copilot at work, guidance on what data may go into AI tools, or to fix a policy nobody reads. Produces a one-page usable policy plus the decision log behind it. Not a substitute for legal advice; pairs with compliance-checklist for regulatory mapping and ai-ethics-review for system-level assessments.
What to give it
▸The org — size, industry, regulatory exposure (health, finance, gov contracts change the answers)
▸Current reality — which AI tools are already in use — officially and (honestly) unofficially
▸Data landscape — what sensitive classes exist (customer PII, PHI, source code, financials, client-confidential)
▸Enterprise agreements in place — which tools have zero-retention/no-training terms signed vs consumer accounts
▸Risk appetite — enable-with-guardrails or restrict-hard? (Get the sponsor's one-word answer.)
✅ The bar it holds itself to
Every skill in this library self-verifies — these are this skill's own quality checks, straight from its definition.
✓A stressed employee can answer "can I paste X into Y?" from the page in under a minute
✓Every data-class row carries examples from this org's real work
✓The sanctioned path is genuinely easier than shadow use (tools listed, approval lane fast)
✓Disclosure rules are specific lines for specific cases, not a value statement
✓The policy names its owner, review cadence, and question channel
✓The decision log exists — counsel reviews reasoning, not just conclusions
⚠️ What it refuses to do
Do not ban broadly and enforce never — that policy trains people to hide usage you most need to see
Do not write rules per-tool as primary structure — tools churn; data classes are the stable spine
Do not require human review of *everything* — undifferentiated duty guarantees zero real review
Do not copy another company's policy without the data-class mapping — the table is the policy
Do not present this as legal advice — it's the draft counsel refines, and the page says so
Install
npx pm-claude-skills add --agent claude # or codex · cursor · gemini · hermes
# or one-line MCP (every skill, any client):
claude mcp add pm-skills -- npx -y pm-claude-skills-mcp
Related skills
🔌 Embed this skill
Drop this on your blog, docs, or site — it renders a "Run this skill" card:
<div data-pm-skill="ai-usage-policy"></div>
<script src="https://mohitagw15856.github.io/pm-claude-skills/embed.js" async></script>
💬 Discussion
AI Usage Policy is one of 599 open-source professional AI agent skills — all SkillSpec L3.
Try them all in the browser · ⭐ Star on GitHub · Browse the full catalog