MAP-4 — Map 4: Technology and Legal Risk Mapping
11 requirements in the Map 4: Technology and Legal Risk Mapping function
MAP 4.1Approaches for mapping AI technology and legal risks of its components -- including the use of
MP-4.1-001Conduct periodic monitoring of AI-generated content for privacy risks; address any possible
MP-4.1-002Implement processes for responding to potential intellectual property infringement claims or other
MP-4.1-003Connect new GAI policies, procedures, and processes to existing model, data, software development
MP-4.1-004Document training data curation policies, to the extent possible and according to applicable laws
MP-4.1-005Establish policies for collection, retention, and minimum quality of data, in consideration of the
MP-4.1-006Implement policies and practices defining how third-party intellectual property and training data
MP-4.1-007Re-evaluate models that were fine-tuned or enhanced on top of third-party models
MP-4.1-008Re-evaluate risks when adapting GAI models to new domains
MP-4.1-009Leverage approaches to detect the presence of PII or sensitive data in generated output text
MP-4.1-010Conduct appropriate diligence on training data use to assess intellectual property, and privacy