Colorado AI Act in · EU AI Act (High-Risk) in · ISO 42001 + NIST AI RMF + OpenClaw + Agentic AI — unified in one toolkit

Estimated time: ~4 minutes · 12 questions · 6 control domains

UC Berkeley Agentic AI Risk Profile Assessment

A focused 12-question executive screen that translates the UC Berkeley CLTC Agentic AI Risk-Management Standards Profile into practical governance checks. It is written in plain English for CISO, CRO, legal, compliance, risk, product, and technology leaders assessing autonomy, authority, tool access, containment, and post-deployment oversight.

In-browser processing
No data stored or transmitted
No login required
UC Berkeley CLTCAgentic AI ProfileBounded AutonomyDefense-in-Depth
Start the Assessment Browse All Assessments

Privacy-first design. This assessment runs entirely in your browser. Your answers never leave your device. We do not transmit, sync, or store a single byte of your responses. Once you close this page, all data is gone.

Live Assessment Dashboard
Score
0/36
Answered
0/12
Posture
Not assessed
Gaps Found
0

Assessment Complete

0/36

Top Priority Gaps

Questions scored No or Partly - highest impact first.

Domain Breakdown

Move from screening to control design

Use this result to decide whether you need a formal agent register, bounded-autonomy policy, runtime containment, stronger third-party control, or immediate escalation to legal, risk, security, or executive review. AI Controls Starter and Professional provide the control and documentation path.

Compare toolkit tiers Open agentic AI security assessment

Data sovereignty confirmation. This assessment ran entirely in your browser. Your answers never left your device. We did not transmit, sync, or store a single byte of your responses. Once you close this page, all data is gone.

Frequently asked questions

Who should use this?
This assessment is intended for CISO, CRO, legal, compliance, risk, security, product, and technology leaders translating the UC Berkeley CLTC Agentic AI Risk-Management Standards Profile into practical enterprise controls.
What does it cover?
It emphasizes the UC Berkeley profile's distinctive levers: degrees of agency, bounded autonomy, authority and environment access, multi-agent system effects, defense-in-depth, containment, shutdown, and post-deployment oversight.
Is this tied to one vendor or platform?
No. It is a practical executive screen based on the UC Berkeley CLTC profile and related risk-management concepts. It helps management identify gaps and decide where deeper review, control design, or legal analysis is needed.
Does this store my answers?
No. Everything runs in your browser. Nothing is transmitted or stored.

Informational only. Not legal advice. This assessment does not determine compliance with any law, regulation, or standard.