AI inventory

AI Act AI inventory: what should a company document?

An AI inventory is the basis for realistic governance: it shows which tools already exist, who uses them, and which use cases deserve review first.

Join the betaDownload the guide

Essential fields

Tool name, domain, vendor, category, declared usage, team, last detection, initial risk level and review status.

Why domain-only matters

Domain-only detection identifies a tool without collecting prompts, files, conversations or business content.

What it enables

Prepare DPO review, explain usage to management, prioritize risk and produce usable evidence.

Fields to include

Use this as a starting point before involving legal or compliance specialists.

  • Tool and main domain.
  • Usage category.
  • Team or department.
  • Data potentially entered.
  • Initial risk level.
  • Review status and owner.

FAQ

Is a spreadsheet enough?

Yes to start, but it becomes difficult to maintain as tools and teams change.

Should every AI tool be listed?

The goal is to cover real usage and sensitive use cases first.

Why automate the inventory?

To avoid relying only on one-off declarations and keep a more current baseline.

See what AIMapper produces

Explore a sample report, then join the beta to build your first AI inventory.

View sample reportJoin the beta