AI tools are in use across most businesses — whether IT knows about it or not. Without clear policies, training, and governance, the same tools that make your team more productive can expose client data, breach GDPR, and create serious regulatory and legal risk. Aursec's AI training gives your team the knowledge to use AI ambitiously — and compliantly.
Most businesses have moved fast on AI adoption. Most haven't moved nearly as fast on the governance needed to make that adoption safe.
When businesses don't provide approved AI tools, staff find their own. Personal ChatGPT accounts, consumer AI tools, browser extensions — none of them covered by a Data Processing Agreement, all of them a potential GDPR breach.
Without training and clear classification rules, staff routinely input client data, financial information, and personal data into AI tools. One incident can trigger a 72-hour ICO notification requirement.
The EU AI Act introduces risk-based obligations for businesses using AI systems. UK businesses supplying EU clients or using EU-based AI tools need to understand what applies to them now — not later.
Every session is tailored to your business — the tools you use, the data you handle, and the clients you serve. Practical, relevant, and delivered in plain English.
How large language models work, why they hallucinate, what context blindness means in practice, and why human review is always required. Staff who understand the technology make better decisions about when and how to use it.
The four classification levels — Public, Internal, Confidential, and Restricted — and how to apply them before inputting anything into an AI tool. The most important habit your team needs to build.
Why approved tools are different from consumer AI, what a Data Processing Agreement actually protects, and the specific rules that apply to each tool your business uses. Including what happens when staff go off-list.
Why client data rules vary by contract, how to check before processing any client data with AI, and what to do when the answer is no. Based on real scenarios including drafting responses, summarising contracts, and analysing client-provided data.
How GDPR applies to AI use — including the 72-hour breach notification clock, lawful basis for AI-assisted processing, and individual rights. Plus a plain-English overview of EU AI Act obligations relevant to UK SMBs and their EU clients.
What constitutes an AI-related data incident, why immediate reporting matters, and what not to do — including why staff should never try to contain an incident themselves before reporting. Practical scenarios included.
Every session teaches your team a repeatable five-step process for every AI task. Simple enough to remember. Robust enough to keep you compliant.
Find the task where AI adds genuine value. Repetitive, time-consuming, or creative work where AI can act as a highly capable assistant.
Before inputting anything, determine the classification of the data involved. Public, Internal, Confidential, or Restricted. Classification is determined by the nature of the data — not how it was provided.
Check the Approved Tool List. If client or third-party data is involved, check the relevant client permissions before proceeding. When in doubt — stop and ask.
Use your company account, not a personal account. Follow the tool-specific guidance. Do not input Restricted data under any circumstances.
Verify the output for accuracy, suitability, and compliance before acting on it, sending it, or submitting it. Human accountability is not optional. The AI is not responsible — you are.
Every Aursec AI training engagement includes the tools your business needs to maintain compliant AI use after the session ends.
A complete, customisable AI Usage Policy covering approved tools, data classification, client data rules, incident reporting, and staff responsibilities. Drafted for your business and ready to implement.
Review of the AI tools your business currently uses — or wants to use — against GDPR and data protection requirements. Clear guidance on what's safe to approve, what needs conditions, and what should be restricted.
Attendance records for every session in the format required for GDPR accountability obligations. Evidence that your organisation has taken appropriate steps to train staff on AI use.
The tools your business uses, the clients you serve, and the data you handle all shape how AI governance applies to you. Every Aursec AI training session is built around your specific situation.
Ideal for: Initial AI governance training for all staff, or a focused session for a specific team or tool rollout.
Per-person pricing available — contact us for a quote.
Ideal for: All-staff foundations followed by role-specific sessions for teams handling sensitive data, or sessions timed to tool rollouts.
Series pricing available — contact us for a quote.
Ideal for: Businesses needing documented annual AI governance training — for GDPR accountability purposes or as part of a broader security awareness programme.
Annual pricing available — contact us for a quote.
The foundation — how AI works, what the approved tools are, data classification, and the five-step process. Delivered in plain English that engages non-technical staff and builds the habits that keep your business compliant.
Strategic AI governance, EU AI Act obligations, board-level accountability, and how to build an AI governance framework that scales as adoption grows. Includes AI Usage Policy development.
The specific rules and scenarios that apply when client data is involved. Sales, account management, and customer service teams who regularly handle client information alongside AI tools.
AI governance for developers and technical staff — agentic tools, coding assistants, credential exposure risks, and the heightened obligations that apply when AI tools have access to systems and data stores.
Could not be happier with the services provided by Aursec in supporting the IT of my Business. From initial engagement, Aursec worked with me to understand my requirements and ensured an efficient rollout of my Company's IT solution. They took the stress out of achieving CyberEssentials Plus certification and now are fully embedded with my organisation as a partner to deliver long term IT Service Support. Aursec would be a great option for any size business but are particularly valuable for smaller businesses that require that additional hands-on knowledge and experience.
Tell us about the AI tools your team uses, your sector, and what's driving the need for training. We'll come back to you within one working day.