ponens

← Policy gallery

CMS: External AI Data-Use Agreement

warning

cms_external_ai_data_agreement

ai-risk-management security pure_temporal ai-governancecmsfederalhealthcaredata-protectionrag-amber

External AI tools that can access non-public CMS data have appropriate data-use agreements in place beforehand.

Formula

G(external_ai → P(data_use_agreement))

Why it matters

CMS Data Rights: ensure data-use agreements are in place before incorporating external AI that can access non-public CMS data; beware terms enabling training/sharing of CMS data.

Examples

passes the CMS AI rule's evidence is present

fails the required control is absent

Use it

ponens policies add cms_external_ai_data_agreement --into ./trace.json
ponens trace check ./trace.json