A clear, usable policy and real controls — before "just AI" becomes a breach a regulator won't excuse.
Your people already use AI far more than leadership thinks — often pasting client, patient, or member data into public tools with no policy stopping them. Regulators and licensing boards won't care that it was "just AI" when it becomes a breach. Waiting for an incident to force the policy is the most expensive way to write one.
I use AI to make good people faster, sharper, and harder to beat — never to replace them. Better, faster, stronger: the goal is a business that grows and hires more humans, not fewer.