Colorado AI Act in · EU AI Act (High-Risk) in · ISO 42001 + NIST AI RMF + OpenClaw + Agentic AI — organized into editable implementation artifacts
Home / Downloads / Shadow AI Discovery Workbook
Shadow AI

Shadow AI Discovery Workbook

A discovery workbook for finding unmanaged AI use across teams, vendors, browser tools, plugins, and informal workflows.

Download WorkbookSee ACT-2 Professional
XLSX workbookNo login requiredNot legal advice

Download the free implementation artifact

This file is a public preview of the Move78 implementation evidence model. It is designed to create useful evidence structure before a team buys ACT-2 Professional.

Download Workbook

What is inside

The package is intentionally narrow. It gives you a concrete artifact, not a generic whitepaper.

Included artifacts

  • Department discovery worksheet
  • AI tool inventory starter
  • Unsanctioned-use interview guide
  • Data exposure prompts
  • Remediation priority scoring
  • Owner and action tracker

Useful for

  • IT and security teams mapping unmanaged AI use
  • Governance leads starting an AI inventory
  • SMEs that need a practical discovery process before full implementation

Where it fits

ACT-1 Starter can establish the baseline inventory and risk register. ACT-2 Professional turns the discovery output into a fuller operating and evidence model.

Use it with the relevant Move78 diagnostic path

Run the related free tool first if you want a diagnosis before using the artifact.

Need the full implementation evidence pack?

ACT-2 Professional contains the full workbook, policy, evidence, board-reporting, vendor-risk, FRIA, agentic AI, MCP, and implementation-planning layer. Purchase is handled by direct invoice and bank transfer.

View ACT-2 ProfessionalHow purchase works

Frequently Asked Questions (FAQs)

Is this legal advice?

No. This free artifact is implementation support only. It is not legal, tax, regulatory, or certification advice and does not provide compliance assurance or safe-harbor outcomes.

Do I need to log in or submit an email?

No. The artifact is intended as a direct download. If you later request ACT-2 access, that purchase is handled separately by direct invoice and bank transfer.

How does this relate to ACT-2 Professional?

ACT-1 Starter can establish the baseline inventory and risk register. ACT-2 Professional turns the discovery output into a fuller operating and evidence model.

Source and review note: This page was last reviewed on 6 May 2026 against the current Move78 public site baseline and relevant official or authoritative sources where laws, standards, frameworks, cybersecurity controls, product scope, pricing, support policy, or implementation guidance are discussed. It provides operational implementation guidance and product information only; it is not legal advice, tax advice, audit assurance, certification assurance, conformity-assessment advice, buyer-approval assurance, or security assurance. Validate legal, regulatory, contractual, tax, audit, and security decisions with qualified professionals.