This document provides feature-level transparency into Auditelligence AI functionality and identifies what data is transmitted to OpenAI for each AI-assisted feature. It is intended to support informed customer decision-making, internal governance, and regulatory review.
AI features are optional and can be disabled at the organization level.
No data sent to OpenAI is used to train public models.
Why This Disclosure Exists
This document exists to:
- Provide transparency
- Support security and compliance reviews
- Help customers decide which AI features to enable
- Maintain trust while using AI responsibly
Global Rules (Apply to All AI Features)
For every AI feature listed below:
- Organization names are never sent to OpenAI
- Email addresses or contact information are never sent to OpenAI
- Standards and requirement details are never sent to OpenAI; the system relies on inherent knowledge already existing in that infrastructure
- AI only receives data explicitly required for the requested function at that moment
- AI does not have access to full databases or unrelated records
- AI does not determine what data it can access
ITAR Data Management
If information is ITAR-controlled:
- It must not be entered into any fields which link to AI features while those features are active
- Generic statements may be substituted
Acceptable example:
"An ITAR-restricted component was reviewed in accordance with applicable requirements."
Not acceptable:
- Part numbers
- Drawings or specifications
- Program identifiers
Auditelligence AI Features
1. Ask AVA (General AI Assistance)
Feature purpose
Provides general guidance, explanations, and assistance related to standards and auditing concepts.
Data sent to OpenAI
- Text entered into the chat field
Additional controls in place
A content and output filter is applied so the chat will only address content applicable to guidance, explanations, and assistance related to standards and auditing concepts.
ITAR suitability
Allowed only for non-ITAR content.
2. Suggest Clause-Process Relationships
Feature purpose
Assists in identifying relationships between standard clauses and organizational processes.
Data sent to OpenAI
- Standard identifier
- Clause identifiers
- Process list
- Process name only; does not include owner names or other process details
ITAR suitability
Allowed provided a process name does not reference an ITAR part.
Example: "Assembly" is ok, "101-345-AE Assembly" would not be ok, assuming 101-345-AE is an ITAR-restricted part number.
3. Audit Requirement Assessment Write-Up
Feature purpose
Assists auditors in drafting requirement-level assessment narratives.
Data sent to OpenAI
- Process identifier
- Requirement reference
- Requirement title
- Objective evidence entered into input fields
- Selected conformance levels
- Resulting from information entered into input fields
ITAR suitability
Allowed provided ITAR-controlled information is not entered into the fields sent to OpenAI.
4. Organization Requirements Write-Up
Feature purpose
Assists in drafting narratives describing organizational requirement fulfillment.
Data sent to OpenAI
- Sub-process names entered into input fields
- Requirement references entered into input fields
- Requirements entered into input fields
- Objective evidence entered into input fields
- Selected conformance levels
- Resulting from information entered into input fields
ITAR suitability
Allowed provided ITAR-controlled information is not entered into the fields sent to OpenAI.
5. Corrective Action Process Assessment Write-Up
Feature purpose
Assists in drafting corrective action process assessment narratives based on auditor input.
Data sent to OpenAI
- Corrective Action numbers entered into input fields
- Selected status levels
- Issues entered into input fields
- Corrective Actions entered into input fields
- Timely action selections
- Effectivity selections
ITAR suitability
Allowed provided ITAR-controlled information is not entered into the fields sent to OpenAI.
6. Audit Summary Write-Up
Feature purpose
Generates high-level audit summaries based on provided inputs.
Data sent to OpenAI
- All data sent to OpenAI identified in the Audit Requirement Assessment Write-Up section
- All data sent to OpenAI identified in the Organization Requirements Write-Up section
- All data sent to OpenAI identified in the Corrective Action Process Assessment Write-Up section
- Process effectiveness data
- Key performance indicators entered into input fields
- Goals entered into input fields
- Results entered into input fields
- Selected results statuses
- Selected Action Assessments
- Selected Process realization rating
- Selected Process results rating
- System calculated process risk level
ITAR suitability
Allowed provided ITAR-controlled information is not entered into the fields sent to OpenAI.
7. Process Owner Closure Email Draft
Feature purpose
Assists in drafting closure emails related to audit activities.
Data sent to OpenAI
- All data sent to OpenAI identified in the Audit Summary Write-Up section
- Process Owner's name
- Auditor's names
- Audit closure date
ITAR suitability
Allowed provided ITAR-controlled information is not entered into the fields sent to OpenAI.
8. Administrator Closure Email Draft
Feature purpose
Assists in drafting administrator-facing audit closure communications.
Data sent to OpenAI
- All data sent to OpenAI identified in the Process Owner Closure Email Draft section
- Administrator's name
ITAR suitability
Allowed provided ITAR-controlled information is not entered into the fields sent to OpenAI.
Customer Control Summary
- AI features can be enabled or disabled at the organization level
- Customers are responsible for ensuring regulated data is not entered into AI-assisted features
- AI is intended to assist drafting and analysis, not replace compliance responsibility
Auditelligence