# AI Integration Risk Register

Use this before giving an AI workflow access to email, calendar, CRM, documents, chat, or other business tools.

## Integration Inventory

| Integration | Account or workspace | Access level | Allowed actions | Forbidden actions | Owner |
| --- | --- | --- | --- | --- | --- |
| Calendar | | Read / write | | | |
| Email | | Read / draft / send | | | |
| CRM | | Read / create / update | | | |

## Risk Assessment

| Risk | Likelihood | Impact | Control | Residual risk | Decision |
| --- | --- | --- | --- | --- | --- |
| Wrong customer record updated | Medium | High | Human approval for updates | Low | Accept / reduce / reject |

## Permission Rules

- Use service accounts where possible.
- Use least-privilege OAuth scopes or API keys.
- Prefer read-only access first.
- Enable write access one action at a time.
- Rotate credentials on schedule.
- Revoke unused integrations.

## Human Gate

Choose one for each write action:

- Approve before act.
- Act with cancellation window.
- Approve by exception.

## Required Logs

- Timestamp.
- Agent or workflow name.
- Trigger.
- Input record ID.
- Tool called.
- Arguments, redacted where needed.
- Result.
- Human approver if applicable.
- Error or warning.

## Stop Conditions

Pause the workflow immediately if any of these occur:

- Wrong recipient, contact, customer, or account.
- Duplicate business action.
- Missing approval.
- Sensitive data sent to an unapproved destination.
- Authentication or permission error.
- Unexpected cost or rate-limit spike.

## Launch Decision

- Approved by:
- Date:
- First review date:
- Rollback path: