108,407 signals ingested
·Last updated Feb 27, 2026 · 09:14 AM
CIO

Technology & Change Governance Policy Register

Governed register of all active policies — ratification status, version control, owner accountability, and per-initiative compliance signals.

7

Total Policies

5

Ratified

2

Draft / Pending

3

Non-Compliant Signals

10

Partial Compliance

AI Copilot Programme·Responsible AI Use Policy

Policy not yet ratified — AI Copilot Programme cannot advance to Established gate without ratification

Org Restructure·Technology & Change Governance Framework

Governance Champion role vacant — Developing gate criteria cannot be enforced without a named champion

AI Copilot Programme·Acceptable Use Policy — Technology & AI Tools

AI Copilot Programme cannot advance without a ratified acceptable use policy

Status:
Category:

Responsible AI Use Policy

AI Governance

Establishes principles and controls for responsible AI use: fairness, explainability, human oversight, data governance, and robustness. Defines prohibited use cases and mandatory human-in-the-loop requirements for high-risk AI outputs.

Draft0.3 — DRAFT
James Okafor
Not yet ratified
Review due Mar 14, 2026(14d)
M365 CopilotPartial
AI CopilotNon-Compliant
ITSM MigrationN/A
Org RestructureN/A
1 non-compliant

Data Privacy & Protection Policy

Data Privacy

Governs the collection, storage, processing, and deletion of personal data in compliance with applicable privacy regulations. Defines data classification tiers, retention schedules, and breach notification requirements.

Ratified2.1
Priya Nair
Ratified Sep 15, 2025
Review due Sep 15, 2026
M365 CopilotPartial
AI CopilotPartial
ITSM MigrationCompliant
Org RestructureCompliant
2 partial

Information Security Policy

Security

Establishes the information security framework including access controls, vulnerability management, incident response, and security review requirements for new technology deployments.

Ratified3.0
Priya Nair
Ratified Jun 1, 2025
Review due Jun 1, 2026
M365 CopilotCompliant
AI CopilotPartial
ITSM MigrationPartial
Org RestructureCompliant
2 partial

Technology & Change Governance Framework

Change Governance

Defines the governance operating model for technology and change initiatives: decision rights, RACI requirements, lifecycle gate criteria, escalation paths, and the role of the Technology Governance Review Board.

Ratified1.2
James Okafor
Ratified Oct 30, 2025
Review due Oct 30, 2026
M365 CopilotPartial
AI CopilotPartial
ITSM MigrationCompliant
Org RestructureNon-Compliant
1 non-compliant

Technology Risk Management Policy

Risk Management

Defines the risk classification taxonomy (Low / Medium / High / Critical), standard controls per risk tier, risk assessment requirements at each lifecycle gate, and the risk appetite statement for technology investments.

Ratified2.0
Priya Nair
Ratified Aug 1, 2025
Review due Aug 1, 2026
M365 CopilotCompliant
AI CopilotPartial
ITSM MigrationCompliant
Org RestructureCompliant
1 partial

Technology Lifecycle Management Policy

Technology Lifecycle

Defines standard lifecycle stages (Intake → Design → Build → Pre-Go-Live → Operate → Retire), required artefacts and sign-offs at each stage, and the criteria for advancing through lifecycle gates.

Ratified1.1
David Park
Ratified Jul 15, 2025
Review due Jul 15, 2026
M365 CopilotCompliant
AI CopilotPartial
ITSM MigrationCompliant
Org RestructureCompliant
1 partial

Acceptable Use Policy — Technology & AI Tools

Acceptable Use

Defines acceptable and prohibited uses of technology tools, with specific provisions for AI-generated content: what can be published without review, what requires human sign-off, and what is prohibited entirely.

Pending Ratification0.1 — DRAFT
James Okafor
Not yet ratified
Review due Mar 7, 2026(7d)
M365 CopilotPartial
AI CopilotNon-Compliant
ITSM MigrationN/A
Org RestructureN/A
1 non-compliant