How to use this checklist
Work through each section in order. Check each box when the control is verified — not when it is planned. Complete the AI Inventory Worksheet first; it is the foundation for every section that follows. This document constitutes a cybersecurity and AI governance assessment tool only. It does not constitute legal advice. Consult qualified legal counsel for regulatory compliance determinations.
Complete this section first. List every AI tool in use — approved by IT and shadow (unofficial). This is your compliance scope for all sections below.
Survey department heads, clinical leads, and IT. Ask specifically: (1) What AI tools does your team use for work, including personal subscriptions? (2) Has any AI tool been purchased or subscribed to without formal IT approval? (3) Does any staff member use a general AI assistant (ChatGPT, Copilot, Claude, Gemini) for work-related tasks involving patient data?
| AI Tool Name | Vendor | Dept / Owner | Data Access | BAA? | Encrypted? | Status |
|---|---|---|---|---|---|---|
| Y / N | Y / N | OK / Gap | ||||
| Y / N | Y / N | OK / Gap | ||||
| Y / N | Y / N | OK / Gap | ||||
| Y / N | Y / N | OK / Gap | ||||
| Y / N | Y / N | OK / Gap | ||||
| Y / N | Y / N | OK / Gap | ||||
| Y / N | Y / N | OK / Gap | ||||
| Y / N | Y / N | OK / Gap | ||||
| Y / N | Y / N | OK / Gap | ||||
| Y / N | Y / N | OK / Gap | ||||
| Y / N | Y / N | OK / Gap | ||||
| Y / N | Y / N | OK / Gap |
Data Access: PHI (Protected Health Info) | PII (Personal Info) | Financial | Operational | Clinical Decision Support
For every AI tool in Section 1 with PHI access, verify a signed BAA exists before any PHI flows.
Every vendor that accesses, stores, transmits, or processes PHI on your behalf requires a signed BAA before any PHI flows to their systems. Older BAAs may not cover AI-specific processing — verify coverage explicitly.
| AI Vendor / Tool | BAA Exists? | BAA Covers AI? | Expiry / Review Date | Action Required |
|---|---|---|---|---|
| Y / N | Y / N | |||
| Y / N | Y / N | |||
| Y / N | Y / N | |||
| Y / N | Y / N | |||
| Y / N | Y / N | |||
| Y / N | Y / N | |||
| Y / N | Y / N | |||
| Y / N | Y / N | |||
| Y / N | Y / N | |||
| Y / N | Y / N |
Immediate action: Any tool with PHI access and no BAA must be suspended until the BAA is executed. Document suspension and execution dates.
Verify encryption for every AI tool with PHI access. HIPAA 2026 mandatory encryption applies to all storage and transmission — including vendor-side logs, caches, and output stores.
HHS 2026 AI guidance requires documented human oversight procedures for clinical AI. Complete one row per system.
For every clinical AI system, document: (1) named human reviewer, (2) review frequency, (3) escalation path for unexpected outputs, (4) decision logging mechanism, (5) adverse event reporting process. A general policy statement does not satisfy this requirement.
Human Oversight Log — Complete one row per clinical AI system:
| Clinical AI System | Named Reviewer | Review Frequency | Logging Method | Procedure Date |
|---|---|---|---|---|
Self-assess across all four NIST AI RMF functions. Rate each control: Full / Partial / None.
Full = documented, implemented, and verifiable with evidence. Partial = policy exists but implementation is incomplete or evidence is missing. None = not in place. Use the Current State column to record your finding.
| NIST Function | Sub-Category | Control Description | Current State | Target | Gap? |
|---|---|---|---|---|---|
| GOVERN | GV-1.1 | AI governance policy established and approved | Full | ||
| GOVERN | GV-1.2 | AI oversight roles and responsibilities assigned | Full | ||
| GOVERN | GV-2.1 | AI risk tolerance defined and documented | Full | ||
| GOVERN | GV-4.1 | AI acceptable use policy distributed to staff | Full | ||
| MAP | MP-1.1 | Complete AI system inventory conducted | Full | ||
| MAP | MP-2.1 | PHI exposure classified per AI tool | Full | ||
| MAP | MP-3.1 | Regulatory obligations mapped per AI system | Full | ||
| MAP | MP-4.1 | Shadow AI tools identified and documented | Full | ||
| MEASURE | MS-1.1 | Encryption at rest verified per AI tool | Full | ||
| MEASURE | MS-1.2 | Encryption in transit verified per AI tool | Full | ||
| MEASURE | MS-2.1 | BAA confirmed for every AI vendor with PHI access | Full | ||
| MEASURE | MS-3.1 | Human oversight procedures documented | Full | ||
| MEASURE | MS-4.1 | AI output accuracy metrics established | Partial | ||
| MANAGE | MG-1.1 | Identified gaps remediated with documented evidence | Full | ||
| MANAGE | MG-2.1 | AI incident response procedure written and tested | Full | ||
| MANAGE | MG-3.1 | AI vendor risk reviews scheduled quarterly | Full | ||
| MANAGE | MG-4.1 | Regulatory monitoring process in place | Full |
Mandatory controls only. No risk-based alternatives apply.
Complete this section after finishing all six sections above.
| Section | Total Items | Completed | Gaps Identified | Priority Actions |
|---|---|---|---|---|
| 1 — AI Inventory | Worksheet | |||
| 2 — BAA Audit | Worksheet | |||
| 3 — Encryption | 8 | |||
| 4 — Human Oversight | 7 + Log | |||
| 5 — NIST Scorecard | 17 | |||
| 6 — HIPAA 2026 Controls | 12 | |||
| TOTAL |
30-Day Priority Action Plan
| Priority | Action Required | Owner | Due Date | Status |
|---|---|---|---|---|
| H / M / L | ||||
| H / M / L | ||||
| H / M / L | ||||
| H / M / L | ||||
| H / M / L | ||||
| H / M / L | ||||
| H / M / L | ||||
| H / M / L |