100 Best ChatGPT Prompts for AI Ethics Compliance Auditing
A practical prompt library of 100 copyable ChatGPT prompts for AI Ethics Compliance Auditing.
Best For
Compliance professionals, AI governance leads, risk managers, data scientists
Prompt Use Cases
- Audit planning
- Data governance assessment
- Bias and fairness evaluation
- Regulatory compliance
- Model risk management
Introduction
This page is a practical prompt library for AI Ethics Compliance Auditing. It helps compliance teams, AI governance leads, and data scientists craft precise prompts to evaluate ethics, fairness, privacy, and governance in AI systems.
Use these prompts to run structured audits, identify gaps, and generate actionable remediation plans. The prompts are copyable, role-based, and include placeholders for your organization and system specifics.
Direct Answer
The best ChatGPT prompts for AI Ethics Compliance Auditing are a curated, copyable set of 100 prompts that cover scope, data governance, bias, transparency, incident response, and governance. They are designed to produce concrete artifacts (reports, maps, and roadmaps) you can act on now.
How to Use These ChatGPT Prompts
- Replace placeholders like [auditedSystem], [dataTypes], [jurisdiction], and [stakeholders] with your specifics.
- When useful, request outputs in a structured JSON format for easy automation and integration with audit dashboards.
- Add constraints or standards (e.g., GDPR, OECD AI Principles, ISO guidelines) in the Constraints field to tailor prompts to your regime.
- Ask for a deliverable summary after each prompt to verify outputs quickly.
100 Best ChatGPT Prompts for AI Ethics Compliance Auditing
- 1. Define audit scope and objectives — Role: AI Ethics Compliance Auditor. Task: Define the scope and objectives for auditing [auditedSystem]. Context: The system processes [dataTypes] for [audience] in [industry]. Constraints: Reference relevant standards (e.g., OECD AI Principles, ISO/IEC guidelines) and regulatory expectations; deliverable: a formal Audit Scope and Objectives document in JSON with sections: scope, objectives, stakeholders, timeframe, exclusions, success criteria. Output: JSON.
- 2. Map regulatory and standards alignment — Role: Compliance Analyst. Task: Map [auditedSystem] against applicable standards and regulations (e.g., OECD AI Principles, GDPR, sector-specific rules) and identify gaps. Context: System operates in [jurisdiction] with [data categories]. Output: a crosswalk table in JSON plus a 1-page narrative summary.
- 3. Identify ethically sensitive decision points — Role: AI Ethics Auditor. Task: Identify ethically sensitive decision points where automated outcomes impact users, workers, or society. Context: The system makes decisions in [domain] affecting [stakeholders]. Output: a list of decision points with risk rating and suggested mitigations in JSON.
- 4. Assess data governance and lineage — Role: Data Governance Auditor. Task: Assess data governance and lineage for [auditedSystem]. Context: Data flows from [source] to [model] with [transformation steps]. Output: data lineage map, data quality checks, and governance gaps in JSON.
- 5. Review data collection and consent controls — Role: Privacy and Ethics Auditor. Task: Review data collection methods and consent mechanisms for compliance with [regulatory requirements]. Context: Data collected from [dataSubjects] in [jurisdiction]. Output: Findings and remediation plan in JSON.
- 6. Evaluate data labeling and annotation quality — Role: ML Data Specialist. Task: Evaluate labeling accuracy, consistency, and bias risk in training data for [auditedSystem]. Context: Dataset [datasetName] contains [dataTypes]. Output: data quality report with metrics and recommendations in JSON.
- 7. Inspect model training data sourcing and provenance — Role: Compliance Auditor. Task: Inspect sourcing, licensing, and provenance of training data for [auditedSystem]. Context: Data used includes [types] from [suppliers]. Output: provenance verification report in JSON.
- 8. Analyze bias detection and mitigation controls — Role: Bias Auditor. Task: Analyze bias detection methods and mitigation controls in model development. Context: Model [modelName] trained on [dataTypes]. Output: bias analysis with metrics and mitigations in JSON.
- 9. Validate model explainability and transparency requirements — Role: Explainability Specialist. Task: Validate explainability and transparency requirements for [auditedSystem]. Context: Stakeholders require [explanationDepth] levels of explainability. Output: explainability assessment and recommended tools in JSON.
- 10. Review model risk management and governance framework — Role: Governance Lead. Task: Review the organization’s model risk governance framework for AI systems like [auditedSystem]. Context: Governance body [team] meets with cadence [cadence]. Output: governance gap analysis and a remediation plan in JSON.
- 11. Assess privacy impact and DPIA alignment — Role: Privacy Officer. Task: Assess privacy impact and alignment with DPIA requirements for [auditedSystem]. Context: Data includes [sensitiveTypes]; jurisdictions include [jurisdictions]. Output: DPIA alignment report in JSON.
- 12. Audit access controls and RBAC/ABAC permissions — Role: Security Auditor. Task: Audit access controls and role-based permissions for [auditedSystem]. Context: Users include [roles] with [permissions]. Output: access control findings and remediation plan in JSON.
- 13. Evaluate data retention and deletion policies — Role: Compliance Analyst. Task: Evaluate data retention and deletion policies for compliance and minimize risk. Context: Data types [types], retention window [period], jurisdictions [jurisdictions]. Output: retention policy assessment and recommended changes in JSON.
- 14. Test system monitoring, logging, and ethics incident alerts — Role: Security and Ethics Monitor. Task: Test monitoring, logging, and alerting for ethics-related incidents in [auditedSystem]. Context: Alert threshold [threshold] and log retention [retention]. Output: monitoring test results and improvement plan in JSON.
- 15. Assess vendor risk and third-party integrations — Role: Third-Party Risk Auditor. Task: Assess vendor risk and third-party integrations affecting AI ethics.
- 16. Verify incident response and breach notification procedures — Role: Incident Response Lead. Task: Verify procedures for ethics-related incidents and data breaches in [auditedSystem]. Context: Incident types include [types], notification timelines [timeline]. Output: incident playbook validation in JSON.
- 17. Review algorithmic fairness metrics and thresholds — Role: Fairness Analyst. Task: Review fairness metrics and thresholds used in [auditedSystem]. Context: Subgroups [subgroups] and performance measures [metrics]. Output: fairness metric review and recommended adjustments in JSON.
- 18. Evaluate real-world impact assessment processes — Role: Impact Analyst. Task: Evaluate real-world impact assessment (RIA) processes for deployment contexts of [auditedSystem]. Output: RIA effectiveness report in JSON.
- 19. Inspect consent management and user rights fulfillment — Role: Rights Specialist. Task: Inspect consent management workflows and user rights fulfillment for data subjects of [auditedSystem]. Output: consent and rights fulfillment audit in JSON.
- 20. Validate auditing cadence and independent reviews — Role: Audit Program Manager. Task: Validate cadence of ethics audits and independence of reviews for [organization]. Output: audit cadence plan and independence assessment in JSON.
- 21. Check model updates and version control for ethics alignment — Role: DevOps/Compliance Auditor. Task: Check model versioning, update processes, and ethics alignment for [auditedSystem]. Output: version control and change-logging report in JSON.
- 22. Examine inadvertent leakage risks and prompt injection safeguards — Role: Security Auditor. Task: Examine data leakage risks and prompt injection safeguards in prompts used by [auditedSystem]. Output: risk assessment with mitigations in JSON.
- 23. Assess training-time data quality governance — Role: Data Quality Auditor. Task: Assess governance around training data quality for [auditedSystem]. Output: data quality governance report in JSON.
- 24. Review model red-teaming and stress-testing for ethics — Role: Red Team Lead. Task: Review red-teaming and stress-testing results focusing on ethical risk for [auditedSystem]. Output: red-team findings and remediation plan in JSON.
- 25. Validate decision traceability and explainability outputs — Role: Explainability Analyst. Task: Validate traceability of decisions and explainability outputs for critical outcomes in [auditedSystem]. Output: traceability map and explainability report in JSON.
- 26. Evaluate deployment context and risk expectation management — Role: Deployment Risk Manager. Task: Evaluate deployment context risks and expectations for ethics in [auditedSystem]. Output: deployment risk assessment in JSON.
- 27. Audit accessibility and inclusive design considerations — Role: Accessibility Auditor. Task: Audit accessibility and inclusive design features in [auditedSystem]. Output: accessibility compliance report in JSON.
- 28. Inspect multilingual support and cultural bias mitigation — Role: Localization Auditor. Task: Inspect multilingual capabilities and cultural bias mitigation in [auditedSystem]. Output: multilingual bias mitigation report in JSON.
- 29. Verify opt-out and data portability support — Role: Data Rights Specialist. Task: Verify opt-out and data portability workflows for users of [auditedSystem]. Output: rights management report in JSON.
- 30. Analyze impact on underrepresented groups — Role: Social Impact Auditor. Task: Analyze potential impact of [auditedSystem] on underrepresented groups and recommend mitigations. Output: impact analysis in JSON.
- 31. Check documentation completeness and policy mappings — Role: Documentation Auditor. Task: Ensure all ethics policies map to system components and controls in [auditedSystem]. Output: documentation completeness and mapping report in JSON.
- 32. Evaluate governance committee effectiveness — Role: Governance Lead. Task: Evaluate effectiveness of ethics governance committee for [organization]. Output: governance effectiveness report in JSON.
- 33. Review documentation of ethical risk ratings — Role: Ethics Risk Analyst. Task: Review how ethical risk ratings are documented and tracked for [auditedSystem]. Output: risk rating documentation review in JSON.
- 34. Assess alignment with corporate values and code of ethics — Role: Compliance Auditor. Task: Assess alignment of AI ethics practices with corporate values and code of ethics for [organization]. Output: alignment report in JSON.
- 35. Audit model cataloging and metadata quality — Role: Cataloging Specialist. Task: Audit model cataloging and metadata quality for [auditedSystem]. Output: cataloging quality report in JSON.
- 36. Validate data scientist sign-off and accountability — Role: Governance Auditor. Task: Validate sign-off processes and accountability for data scientists involved in [auditedSystem]. Output: accountability report in JSON.
- 37. Analyse decision justification for critical outcomes — Role: Decision Analyst. Task: Analyze justification traces for high-stakes outputs of [auditedSystem]. Output: justification analysis in JSON.
- 38. Inspect anomaly handling and outlier management — Role: Data Steward. Task: Inspect anomaly handling and outlier management in models deployed in [auditedSystem]. Output: anomaly handling report in JSON.
- 39. Review model inversion and privacy leakage safeguards — Role: Privacy Engineer. Task: Review safeguards against model inversion and privacy leakage for [auditedSystem]. Output: privacy safeguards report in JSON.
- 40. Evaluate synthetic data usage controls — Role: Data Scientist. Task: Evaluate controls around synthetic data use in training and testing for [auditedSystem]. Output: synthetic data controls report in JSON.
- 41. Test export controls and export of model artifacts — Role: Compliance Officer. Task: Test export controls for model artifacts and data in [auditedSystem]. Output: export control test results in JSON.
- 42. Verify recourse for user complaints and redress options — Role: Customer Trust Lead. Task: Verify user complaint recourse mechanisms and redress options for ethics-related issues in [auditedSystem]. Output: recourse options report in JSON.
- 43. Assess training with synthetic data safety controls — Role: Data Governance Analyst. Task: Assess safety controls around synthetic data used for training in [auditedSystem]. Output: synthetic data safety report in JSON.
- 44. Check for data minimization and purpose limitation — Role: Privacy and Ethics Auditor. Task: Check data minimization and purpose limitation in data collection for [auditedSystem]. Output: minimization and purpose limitation report in JSON.
- 45. Audit AI system's impact on employment and labor rights — Role: Social Impact Auditor. Task: Audit potential impacts of [auditedSystem] on employment and labor rights. Output: impact audit in JSON.
- 46. Review explainability for high-stakes decisions — Role: Explainability Specialist. Task: Review explainability for high-stakes decisions in [auditedSystem]. Output: explainability findings in JSON.
- 47. Validate use-case scoping to prevent mission creep — Role: Ethics Architect. Task: Validate use-case scoping to prevent mission creep in [auditedSystem]. Output: scoping validation in JSON.
- 48. Inspect telemetry and tracking consent — Role: Data Consent Auditor. Task: Inspect telemetry collection and user tracking consent for [auditedSystem]. Output: telemetry consent report in JSON.
- 49. Evaluate governance of model re-use and transfer learning — Role: Model Governance Auditor. Task: Evaluate governance around model reuse and transfer learning for [auditedSystem]. Output: governance report in JSON.
- 50. Test data anonymization effectiveness — Role: Privacy Engineer. Task: Test effectiveness of data anonymization and de-identification for [auditedSystem]. Output: anonymization test results in JSON.
- 51. Audit cross-border data transfer controls — Role: Data Privacy Auditor. Task: Audit cross-border data transfer controls for [auditedSystem]. Output: cross-border transfer audit in JSON.
- 52. Verify bias testing across subgroups — Role: Bias Auditor. Task: Verify that bias testing covers key subgroups and distributions for [auditedSystem]. Output: bias test coverage report in JSON.
- 53. Review third-party model risk assessments — Role: Third-Party Risk Auditor. Task: Review external model risk assessments used in [auditedSystem]. Output: third-party risk assessment summary in JSON.
- 54. Assess security controls for data in transit and at rest — Role: Security Auditor. Task: Assess encryption and access controls for data in transit and at rest for [auditedSystem]. Output: security controls report in JSON.
- 55. Analyze feedback loops and user impact monitoring — Role: Feedback Analyst. Task: Analyze feedback loops and monitoring of user impact in [auditedSystem]. Output: feedback impact report in JSON.
- 56. Validate safety constraints in prompts and outputs — Role: Safety Engineer. Task: Validate safety constraints embedded in prompts and outputs of [auditedSystem]. Output: safety constraint validation in JSON.
- 57. Review model copyright and licensing compliance — Role: Legal Compliance Auditor. Task: Review copyright and licensing compliance for models used in [auditedSystem]. Output: licensing compliance report in JSON.
- 58. Inspect training data copyright handling — Role: Data Rights Specialist. Task: Inspect how training data copyright is handled for [auditedSystem]. Output: copyright handling report in JSON.
- 59. Confirm accessibility of audit results to stakeholders — Role: Communications Lead. Task: Confirm that audit results are accessible to stakeholders in [organization]. Output: stakeholder accessibility report in JSON.
- 60. Evaluate resilience to adversarial inputs — Role: Security Analyst. Task: Evaluate resilience of [auditedSystem] to adversarial inputs and prompt manipulation. Output: adversarial resilience report in JSON.
- 61. Validate policy alignment for synthetic media — Role: Content and Policy Auditor. Task: Validate policy alignment for synthetic media usage by [auditedSystem]. Output: synthetic media policy alignment in JSON.
- 62. Review data minimization in data collection forms — Role: Data Entry Policy Auditor. Task: Review data collection forms for data minimization and privacy compliance in [auditedSystem]. Output: form review in JSON.
- 63. Audit escalation paths for ethical concerns — Role: Ethics Escalation Lead. Task: Audit escalation paths for reporting and addressing ethical concerns in [organization]. Output: escalation pathway report in JSON.
- 64. Verify model card completeness and transparency — Role: Model Steward. Task: Verify model cards for completeness and transparency in [auditedSystem]. Output: model card completeness report in JSON.
- 65. Assess human-in-the-loop governance and override procedures — Role: Governance Lead. Task: Assess HIL governance and override procedures for critical outputs of [auditedSystem]. Output: HIL governance report in JSON.
- 66. Check data stewardship roles and responsibilities — Role: Data Steward. Task: Check roles and responsibilities for data stewardship in [auditedSystem]. Output: stewardship role map in JSON.
- 67. Evaluate consent revocation handling — Role: Privacy Officer. Task: Evaluate how consent revocation is handled in data processing for [auditedSystem]. Output: consent revocation handling report in JSON.
- 68. Inspect model deployment monitoring dashboards — Role: Operations Analyst. Task: Inspect deployment monitoring dashboards for ethics indicators in [auditedSystem]. Output: dashboard inspection report in JSON.
- 69. Validate data quality metrics and thresholds — Role: Data Quality Analyst. Task: Validate data quality metrics and acceptance thresholds used in [auditedSystem]. Output: data quality validation in JSON.
- 70. Review regulatory filings and audit trails — Role: Compliance Auditor. Task: Review regulatory filings and audit trails for [auditedSystem]. Output: filings and audit trail report in JSON.
- 71. Examine fairness tests for demographic subgroups — Role: Fairness Analyst. Task: Examine fairness tests across demographic subgroups for [auditedSystem]. Output: subgroup fairness report in JSON.
- 72. Validate nondiscrimination protections and safeguards — Role: Equality Compliance Auditor. Task: Validate nondiscrimination protections and safeguards in [auditedSystem]. Output: safeguards validation in JSON.
- 73. Audit product impact assessments and risk registers — Role: Product Ethics Auditor. Task: Audit product impact assessments and risk registers for [auditedSystem]. Output: assessment and risk register in JSON.
- 74. Review training data documentation and sources — Role: Data Documentation Specialist. Task: Review training data documentation and sources for [auditedSystem]. Output: data source documentation report in JSON.
- 75. Verify consent scope for data used in testing — Role: Testing Consent Auditor. Task: Verify consent scope for data used in testing and evaluation of [auditedSystem]. Output: testing consent report in JSON.
- 76. Assess misrepresentation risks and safeguards — Role: Risk Analyst. Task: Assess misrepresentation risks and safeguards within [auditedSystem]. Output: misrepresentation risk report in JSON.
- 77. Inspect model behavior under shift and drift conditions — Role: Drift Analyst. Task: Inspect model behavior under data drift and distribution shift for [auditedSystem]. Output: drift analysis report in JSON.
- 78. Audit incident post-mortem and learning actions — Role: Post-Mortem Lead. Task: Audit incident post-mortem reports and learning actions for ethics incidents in [auditedSystem]. Output: post-mortem findings in JSON.
- 79. Validate user feedback integration into governance — Role: Feedback Governance Lead. Task: Validate how user feedback is integrated into governance and policy updates for [auditedSystem]. Output: governance update plan in JSON.
- 80. Review vendor access and data sharing agreements — Role: Vendor Compliance Auditor. Task: Review vendor access and data sharing agreements for [auditedSystem]. Output: vendor access report in JSON.
- 81. Check explainability in regulated markets — Role: Regulatory Explainability Auditor. Task: Check explainability compliance for regulated markets of [auditedSystem]. Output: explainability compliance report in JSON.
- 82. Audit notification and opt-in processes for data subjects — Role: Data Subject Rights Lead. Task: Audit notification and opt-in workflows for data subjects of [auditedSystem]. Output: notification and opt-in audit in JSON.
- 83. Evaluate algorithmic accountability reporting — Role: Accountability Analyst. Task: Evaluate the reporting of algorithmic accountability measures for [auditedSystem]. Output: accountability report in JSON.
- 84. Inspect data labeling quality assurance processes — Role: Labeling QA Lead. Task: Inspect QA processes for data labeling quality in [auditedSystem]. Output: labeling QA report in JSON.
- 85. Validate red-team findings remediation tracking — Role: Remediation Coordinator. Task: Validate remediation tracking for red-team findings in [auditedSystem]. Output: remediation tracking report in JSON.
- 86. Review ethical risk scoring methodology — Role: Risk Scoring Analyst. Task: Review the methodology used to score ethical risk in [auditedSystem]. Output: risk scoring methodology report in JSON.
- 87. Assess cross-functional ethics training effectiveness — Role: Training Program Manager. Task: Assess the effectiveness of ethics training across functions for [organization]. Output: training effectiveness report in JSON.
- 88. Verify consent metadata accuracy — Role: Data Steward. Task: Verify accuracy of consent metadata attached to data used by [auditedSystem]. Output: consent metadata verification in JSON.
- 89. Audit model retraining triggers and justifications — Role: ML Ops Auditor. Task: Audit retraining triggers and justifications for [auditedSystem]. Output: retraining triggers report in JSON.
- 90. Check for data leakage in deployment pipelines — Role: Deployment Security Auditor. Task: Check for data leakage risks within deployment pipelines of [auditedSystem]. Output: leakage risk assessment in JSON.
- 91. Validate privacy-by-design considerations — Role: Privacy-by-Design Auditor. Task: Validate privacy-by-design considerations are embedded in the lifecycle of [auditedSystem]. Output: privacy-by-design validation in JSON.
- 92. Audit compliance with accessibility standards — Role: Accessibility Auditor. Task: Ensure compliance with accessibility standards (e.g., WCAG) for [auditedSystem]. Output: accessibility compliance report in JSON.
- 93. Review data retention schedules per jurisdiction — Role: Data Governance Auditor. Task: Review data retention schedules by jurisdiction for [auditedSystem]. Output: jurisdictional retention schedule report in JSON.
- 94. Evaluate model safety in edge cases — Role: Safety Engineer. Task: Evaluate model safety in edge cases and rare scenarios for [auditedSystem]. Output: edge-case safety report in JSON.
- 95. Inspect bias mitigation in pre-processing steps — Role: Data Preprocessing Auditor. Task: Inspect bias mitigation in pre-processing steps for [auditedSystem]. Output: preprocessing bias report in JSON.
- 96. Verify independence of audit findings — Role: Audit Independence Officer. Task: Verify independence of findings and reporting for [organization]. Output: independence verification in JSON.
- 97. Assess transparency of decision outputs for end users — Role: UX/Explainability Lead. Task: Assess end-user transparency of decision outputs in [auditedSystem]. Output: user-facing transparency report in JSON.
- 98. Analyze post-deployment monitoring for ethics — Role: Monitoring Analyst. Task: Analyze post-deployment ethics monitoring results for [auditedSystem]. Output: post-deployment ethics monitoring report in JSON.
- 99. Prepare executive summary of ethics audit findings — Role: Audit Lead. Task: Prepare a concise executive summary of ethics audit findings for leadership in [organization]. Output: executive summary in JSON.
- 100. Deliver actionable remediation plan and risk-based roadmap — Role: Program Director. Task: Deliver a remediation plan and a risk-based roadmap for ethics improvements in [auditedSystem]. Output: remediation roadmap in JSON.
Markdown Template
100 Best ChatGPT Prompts for AI Ethics Compliance Auditing
# 100 Best ChatGPT Prompts for AI Ethics Compliance Auditing
**1. Define audit scope and objectives**: Role: AI Ethics Compliance Auditor. Task: Define the scope and objectives for auditing [auditedSystem]. Context: The system processes [dataTypes] for [audience] in [industry]. Constraints: Reference relevant standards (e.g., OECD AI Principles, ISO/IEC guidelines) and regulatory expectations; deliverable: a formal Audit Scope and Objectives document in JSON with sections: scope, objectives, stakeholders, timeframe, exclusions, success criteria. Output: JSON.
**2. Map regulatory and standards alignment**: Role: Compliance Analyst. Task: Map [auditedSystem] against applicable standards and regulations (e.g., OECD AI Principles, GDPR, sector-specific rules) and identify gaps. Context: System operates in [jurisdiction] with [data categories]. Output: a crosswalk table in JSON plus a 1-page narrative summary.
**3. Identify ethically sensitive decision points**: Role: AI Ethics Auditor. Task: Identify ethically sensitive decision points where automated outcomes impact users, workers, or society. Context: The system makes decisions in [domain] affecting [stakeholders]. Output: a list of decision points with risk rating and suggested mitigations in JSON.
**4. Assess data governance and lineage**: Role: Data Governance Auditor. Task: Assess data governance and lineage for [auditedSystem]. Context: Data flows from [source] to [model] with [transformation steps]. Output: data lineage map, data quality checks, and governance gaps in JSON.
**5. Review data collection and consent controls**: Role: Privacy and Ethics Auditor. Task: Review data collection methods and consent mechanisms for compliance with [regulatory requirements]. Context: Data collected from [dataSubjects] in [jurisdiction]. Output: Findings and remediation plan in JSON.
**6. Evaluate data labeling and annotation quality**: Role: ML Data Specialist. Task: Evaluate labeling accuracy, consistency, and bias risk in training data for [auditedSystem]. Context: Dataset [datasetName] contains [dataTypes]. Output: data quality report with metrics and recommendations in JSON.
**7. Inspect model training data sourcing and provenance**: Role: Compliance Auditor. Task: Inspect sourcing, licensing, and provenance of training data for [auditedSystem]. Context: Data used includes [types] from [suppliers]. Output: provenance verification report in JSON.
**8. Analyze bias detection and mitigation controls**: Role: Bias Auditor. Task: Analyze bias detection methods and mitigation controls in model development. Context: Model [modelName] trained on [dataTypes]. Output: bias analysis with metrics and mitigations in JSON.
**9. Validate model explainability and transparency requirements**: Role: Explainability Specialist. Task: Validate explainability and transparency requirements for [auditedSystem]. Context: Stakeholders require [explanationDepth] levels of explainability. Output: explainability assessment and recommended tools in JSON.
**10. Review model risk management and governance framework**: Role: Governance Lead. Task: Review the organization’s model risk governance framework for AI systems like [auditedSystem]. Context: Governance body [team] meets with cadence [cadence]. Output: governance gap analysis and a remediation plan in JSON.
**11. Assess privacy impact and DPIA alignment**: Role: Privacy Officer. Task: Assess privacy impact and alignment with DPIA requirements for [auditedSystem]. Context: Data includes [sensitiveTypes]; jurisdictions include [jurisdictions]. Output: DPIA alignment report in JSON.
**12. Audit access controls and RBAC/ABAC permissions**: Role: Security Auditor. Task: Audit access controls and role-based permissions for [auditedSystem]. Context: Users include [roles] with [permissions]. Output: access control findings and remediation plan in JSON.
**13. Evaluate data retention and deletion policies**: Role: Compliance Analyst. Task: Evaluate data retention and deletion policies for compliance and minimize risk. Context: Data types [types], retention window [period], jurisdictions [jurisdictions]. Output: retention policy assessment and recommended changes in JSON.
**14. Test system monitoring, logging, and ethics incident alerts**: Role: Security and Ethics Monitor. Task: Test monitoring, logging, and alerting for ethics-related incidents in [auditedSystem]. Context: Alert threshold [threshold] and log retention [retention]. Output: monitoring test results and improvement plan in JSON.
**15. Assess vendor risk and third-party integrations**: Role: Third-Party Risk Auditor. Task: Assess vendor risk and third-party integrations affecting AI ethics.
**16. Verify incident response and breach notification procedures**: Role: Incident Response Lead. Task: Verify procedures for ethics-related incidents and data breaches in [auditedSystem]. Context: Incident types include [types], notification timelines [timeline]. Output: incident playbook validation in JSON.
**17. Review algorithmic fairness metrics and thresholds**: Role: Fairness Analyst. Task: Review fairness metrics and thresholds used in [auditedSystem]. Context: Subgroups [subgroups] and performance measures [metrics]. Output: fairness metric review and recommended adjustments in JSON.
**18. Evaluate real-world impact assessment processes**: Role: Impact Analyst. Task: Evaluate real-world impact assessment (RIA) processes for deployment contexts of [auditedSystem]. Output: RIA effectiveness report in JSON.
**19. Inspect consent management and user rights fulfillment**: Role: Rights Specialist. Task: Inspect consent management workflows and user rights fulfillment for data subjects of [auditedSystem]. Output: consent and rights fulfillment audit in JSON.
**20. Validate auditing cadence and independent reviews**: Role: Audit Program Manager. Task: Validate cadence of ethics audits and independence of reviews for [organization]. Output: audit cadence plan and independence assessment in JSON.
**21. Check model updates and version control for ethics alignment**: Role: DevOps/Compliance Auditor. Task: Check model versioning, update processes, and ethics alignment for [auditedSystem]. Output: version control and change-logging report in JSON.
**22. Examine inadvertent leakage risks and prompt injection safeguards**: Role: Security Auditor. Task: Examine data leakage risks and prompt injection safeguards in prompts used by [auditedSystem]. Output: risk assessment with mitigations in JSON.
**23. Assess training-time data quality governance**: Role: Data Quality Auditor. Task: Assess governance around training data quality for [auditedSystem]. Output: data quality governance report in JSON.
**24. Review model red-teaming and stress-testing for ethics**: Role: Red Team Lead. Task: Review red-teaming and stress-testing results focusing on ethical risk for [auditedSystem]. Output: red-team findings and remediation plan in JSON.
**25. Validate decision traceability and explainability outputs**: Role: Explainability Analyst. Task: Validate traceability of decisions and explainability outputs for critical outcomes in [auditedSystem]. Output: traceability map and explainability report in JSON.
**26. Evaluate deployment context and risk expectation management**: Role: Deployment Risk Manager. Task: Evaluate deployment context risks and expectations for ethics in [auditedSystem]. Output: deployment risk assessment in JSON.
**27. Audit accessibility and inclusive design considerations**: Role: Accessibility Auditor. Task: Audit accessibility and inclusive design features in [auditedSystem]. Output: accessibility compliance report in JSON.
**28. Inspect multilingual support and cultural bias mitigation**: Role: Localization Auditor. Task: Inspect multilingual capabilities and cultural bias mitigation in [auditedSystem]. Output: multilingual bias mitigation report in JSON.
**29. Verify opt-out and data portability support**: Role: Data Rights Specialist. Task: Verify opt-out and data portability workflows for users of [auditedSystem]. Output: rights management report in JSON.
**30. Analyze impact on underrepresented groups**: Role: Social Impact Auditor. Task: Analyze potential impact of [auditedSystem] on underrepresented groups and recommend mitigations. Output: impact analysis in JSON.
**31. Check documentation completeness and policy mappings**: Role: Documentation Auditor. Task: Ensure all ethics policies map to system components and controls in [auditedSystem]. Output: documentation completeness and mapping report in JSON.
**32. Evaluate governance committee effectiveness**: Role: Governance Lead. Task: Evaluate effectiveness of ethics governance committee for [organization]. Output: governance effectiveness report in JSON.
**33. Review documentation of ethical risk ratings**: Role: Ethics Risk Analyst. Task: Review how ethical risk ratings are documented and tracked for [auditedSystem]. Output: risk rating documentation review in JSON.
**34. Assess alignment with corporate values and code of ethics**: Role: Compliance Auditor. Task: Assess alignment of AI ethics practices with corporate values and code of ethics for [organization]. Output: alignment report in JSON.
**35. Audit model cataloging and metadata quality**: Role: Cataloging Specialist. Task: Audit model cataloging and metadata quality for [auditedSystem]. Output: cataloging quality report in JSON.
**36. Validate data scientist sign-off and accountability**: Role: Governance Auditor. Task: Validate sign-off processes and accountability for data scientists involved in [auditedSystem]. Output: accountability report in JSON.
**37. Analyse decision justification for critical outcomes**: Role: Decision Analyst. Task: Analyze justification traces for high-stakes outputs of [auditedSystem]. Output: justification analysis in JSON.
**38. Inspect anomaly handling and outlier management**: Role: Data Steward. Task: Inspect anomaly handling and outlier management in models deployed in [auditedSystem]. Output: anomaly handling report in JSON.
**39. Review model inversion and privacy leakage safeguards**: Role: Privacy Engineer. Task: Review safeguards against model inversion and privacy leakage for [auditedSystem]. Output: privacy safeguards report in JSON.
**40. Evaluate synthetic data usage controls**: Role: Data Scientist. Task: Evaluate controls around synthetic data use in training and testing for [auditedSystem]. Output: synthetic data controls report in JSON.
**41. Test export controls and export of model artifacts**: Role: Compliance Officer. Task: Test export controls for model artifacts and data in [auditedSystem]. Output: export control test results in JSON.
**42. Verify recourse for user complaints and redress options**: Role: Customer Trust Lead. Task: Verify user complaint recourse mechanisms and redress options for ethics-related issues in [auditedSystem]. Output: recourse options report in JSON.
**43. Assess training with synthetic data safety controls**: Role: Data Governance Analyst. Task: Assess safety controls around synthetic data used for training in [auditedSystem]. Output: synthetic data safety report in JSON.
**44. Check for data minimization and purpose limitation**: Role: Privacy and Ethics Auditor. Task: Check data minimization and purpose limitation in data collection for [auditedSystem]. Output: minimization and purpose limitation report in JSON.
**45. Audit AI system's impact on employment and labor rights**: Role: Social Impact Auditor. Task: Audit potential impacts of [auditedSystem] on employment and labor rights. Output: impact audit in JSON.
**46. Review explainability for high-stakes decisions**: Role: Explainability Specialist. Task: Review explainability for high-stakes decisions in [auditedSystem]. Output: explainability findings in JSON.
**47. Validate use-case scoping to prevent mission creep**: Role: Ethics Architect. Task: Validate use-case scoping to prevent mission creep in [auditedSystem]. Output: scoping validation in JSON.
**48. Inspect telemetry and tracking consent**: Role: Data Consent Auditor. Task: Inspect telemetry collection and user tracking consent for [auditedSystem]. Output: telemetry consent report in JSON.
**49. Evaluate governance of model re-use and transfer learning**: Role: Model Governance Auditor. Task: Evaluate governance around model reuse and transfer learning for [auditedSystem]. Output: governance report in JSON.
**50. Test data anonymization effectiveness**: Role: Privacy Engineer. Task: Test effectiveness of data anonymization and de-identification for [auditedSystem]. Output: anonymization test results in JSON.
**51. Audit cross-border data transfer controls**: Role: Data Privacy Auditor. Task: Audit cross-border data transfer controls for [auditedSystem]. Output: cross-border transfer audit in JSON.
**52. Verify bias testing across subgroups**: Role: Bias Auditor. Task: Verify that bias testing covers key subgroups and distributions for [auditedSystem]. Output: bias test coverage report in JSON.
**53. Review third-party model risk assessments**: Role: Third-Party Risk Auditor. Task: Review external model risk assessments used in [auditedSystem]. Output: third-party risk assessment summary in JSON.
**54. Assess security controls for data in transit and at rest**: Role: Security Auditor. Task: Assess encryption and access controls for data in transit and at rest for [auditedSystem]. Output: security controls report in JSON.
**55. Analyze feedback loops and user impact monitoring**: Role: Feedback Analyst. Task: Analyze feedback loops and monitoring of user impact in [auditedSystem]. Output: feedback impact report in JSON.
**56. Validate safety constraints in prompts and outputs**: Role: Safety Engineer. Task: Validate safety constraints embedded in prompts and outputs of [auditedSystem]. Output: safety constraint validation in JSON.
**57. Review model copyright and licensing compliance**: Role: Legal Compliance Auditor. Task: Review copyright and licensing compliance for models used in [auditedSystem]. Output: licensing compliance report in JSON.
**58. Inspect training data copyright handling**: Role: Data Rights Specialist. Task: Inspect how training data copyright is handled for [auditedSystem]. Output: copyright handling report in JSON.
**59. Confirm accessibility of audit results to stakeholders**: Role: Communications Lead. Task: Confirm that audit results are accessible to stakeholders in [organization]. Output: stakeholder accessibility report in JSON.
**60. Evaluate resilience to adversarial inputs**: Role: Security Analyst. Task: Evaluate resilience of [auditedSystem] to adversarial inputs and prompt manipulation. Output: adversarial resilience report in JSON.
**61. Validate policy alignment for synthetic media**: Role: Content and Policy Auditor. Task: Validate policy alignment for synthetic media usage by [auditedSystem]. Output: synthetic media policy alignment in JSON.
**62. Review data minimization in data collection forms**: Role: Data Entry Policy Auditor. Task: Review data collection forms for data minimization and privacy compliance in [auditedSystem]. Output: form review in JSON.
**63. Audit escalation paths for ethical concerns**: Role: Ethics Escalation Lead. Task: Audit escalation paths for reporting and addressing ethical concerns in [organization]. Output: escalation pathway report in JSON.
**64. Verify model card completeness and transparency**: Role: Model Steward. Task: Verify model cards for completeness and transparency in [auditedSystem]. Output: model card completeness report in JSON.
**65. Assess human-in-the-loop governance and override procedures**: Role: Governance Lead. Task: Assess HIL governance and override procedures for critical outputs of [auditedSystem]. Output: HIL governance report in JSON.
**66. Check data stewardship roles and responsibilities**: Role: Data Steward. Task: Check roles and responsibilities for data stewardship in [auditedSystem]. Output: stewardship role map in JSON.
**67. Evaluate consent revocation handling**: Role: Privacy Officer. Task: Evaluate how consent revocation is handled in data processing for [auditedSystem]. Output: consent revocation handling report in JSON.
**68. Inspect model deployment monitoring dashboards**: Role: Operations Analyst. Task: Inspect deployment monitoring dashboards for ethics indicators in [auditedSystem]. Output: dashboard inspection report in JSON.
**69. Validate data quality metrics and thresholds**: Role: Data Quality Analyst. Task: Validate data quality metrics and acceptance thresholds used in [auditedSystem]. Output: data quality validation in JSON.
**70. Review regulatory filings and audit trails**: Role: Compliance Auditor. Task: Review regulatory filings and audit trails for [auditedSystem]. Output: filings and audit trail report in JSON.
**71. Examine fairness tests for demographic subgroups**: Role: Fairness Analyst. Task: Examine fairness tests across demographic subgroups for [auditedSystem]. Output: subgroup fairness report in JSON.
**72. Validate nondiscrimination protections and safeguards**: Role: Equality Compliance Auditor. Task: Validate nondiscrimination protections and safeguards in [auditedSystem]. Output: safeguards validation in JSON.
**73. Audit product impact assessments and risk registers**: Role: Product Ethics Auditor. Task: Audit product impact assessments and risk registers for [auditedSystem]. Output: assessment and risk register in JSON.
**74. Review training data documentation and sources**: Role: Data Documentation Specialist. Task: Review training data documentation and sources for [auditedSystem]. Output: data source documentation report in JSON.
**75. Verify consent scope for data used in testing**: Role: Testing Consent Auditor. Task: Verify consent scope for data used in testing and evaluation of [auditedSystem]. Output: testing consent report in JSON.
**76. Assess misrepresentation risks and safeguards**: Role: Risk Analyst. Task: Assess misrepresentation risks and safeguards within [auditedSystem]. Output: misrepresentation risk report in JSON.
**77. Inspect model behavior under shift and drift conditions**: Role: Drift Analyst. Task: Inspect model behavior under data drift and distribution shift for [auditedSystem]. Output: drift analysis report in JSON.
**78. Audit incident post-mortem and learning actions**: Role: Post-Mortem Lead. Task: Audit incident post-mortem reports and learning actions for ethics incidents in [auditedSystem]. Output: post-mortem findings in JSON.
**79. Validate user feedback integration into governance**: Role: Feedback Governance Lead. Task: Validate how user feedback is integrated into governance and policy updates for [auditedSystem]. Output: governance update plan in JSON.
**80. Review vendor access and data sharing agreements**: Role: Vendor Compliance Auditor. Task: Review vendor access and data sharing agreements for [auditedSystem]. Output: vendor access report in JSON.
**81. Check explainability in regulated markets**: Role: Regulatory Explainability Auditor. Task: Check explainability compliance for regulated markets of [auditedSystem]. Output: explainability compliance report in JSON.
**82. Audit notification and opt-in processes for data subjects**: Role: Data Subject Rights Lead. Task: Audit notification and opt-in workflows for data subjects of [auditedSystem]. Output: notification and opt-in audit in JSON.
**83. Evaluate algorithmic accountability reporting**: Role: Accountability Analyst. Task: Evaluate the reporting of algorithmic accountability measures for [auditedSystem]. Output: accountability report in JSON.
**84. Inspect data labeling quality assurance processes**: Role: Labeling QA Lead. Task: Inspect QA processes for data labeling quality in [auditedSystem]. Output: labeling QA report in JSON.
**85. Validate red-team findings remediation tracking**: Role: Remediation Coordinator. Task: Validate remediation tracking for red-team findings in [auditedSystem]. Output: remediation tracking report in JSON.
**86. Review ethical risk scoring methodology**: Role: Risk Scoring Analyst. Task: Review the methodology used to score ethical risk in [auditedSystem]. Output: risk scoring methodology report in JSON.
**87. Assess cross-functional ethics training effectiveness**: Role: Training Program Manager. Task: Assess the effectiveness of ethics training across functions for [organization]. Output: training effectiveness report in JSON.
**88. Verify consent metadata accuracy**: Role: Data Steward. Task: Verify accuracy of consent metadata attached to data used by [auditedSystem]. Output: consent metadata verification in JSON.
**89. Audit model retraining triggers and justifications**: Role: ML Ops Auditor. Task: Audit retraining triggers and justifications for [auditedSystem]. Output: retraining triggers report in JSON.
**90. Check for data leakage in deployment pipelines**: Role: Deployment Security Auditor. Task: Check for data leakage risks within deployment pipelines of [auditedSystem]. Output: leakage risk assessment in JSON.
**91. Validate privacy-by-design considerations**: Role: Privacy-by-Design Auditor. Task: Validate privacy-by-design considerations are embedded in the lifecycle of [auditedSystem]. Output: privacy-by-design validation in JSON.
**92. Audit compliance with accessibility standards**: Role: Accessibility Auditor. Task: Ensure compliance with accessibility standards (e.g., WCAG) for [auditedSystem]. Output: accessibility compliance report in JSON.
**93. Review data retention schedules per jurisdiction**: Role: Data Governance Auditor. Task: Review data retention schedules by jurisdiction for [auditedSystem]. Output: jurisdictional retention schedule report in JSON.
**94. Evaluate model safety in edge cases**: Role: Safety Engineer. Task: Evaluate model safety in edge cases and rare scenarios for [auditedSystem]. Output: edge-case safety report in JSON.
**95. Inspect bias mitigation in pre-processing steps**: Role: Data Preprocessing Auditor. Task: Inspect bias mitigation in pre-processing steps for [auditedSystem]. Output: preprocessing bias report in JSON.
**96. Verify independence of audit findings**: Role: Audit Independence Officer. Task: Verify independence of findings and reporting for [organization]. Output: independence verification in JSON.
**97. Assess transparency of decision outputs for end users**: Role: UX/Explainability Lead. Task: Assess end-user transparency of decision outputs in [auditedSystem]. Output: user-facing transparency report in JSON.
**98. Analyze post-deployment monitoring for ethics**: Role: Monitoring Analyst. Task: Analyze post-deployment ethics monitoring results for [auditedSystem]. Output: post-deployment ethics monitoring report in JSON.
**99. Prepare executive summary of ethics audit findings**: Role: Audit Lead. Task: Prepare a concise executive summary of ethics audit findings for leadership in [organization]. Output: executive summary in JSON.
**100. Deliver actionable remediation plan and risk-based roadmap**: Role: Program Director. Task: Deliver a remediation plan and a risk-based roadmap for ethics improvements in [auditedSystem]. Output: remediation roadmap in JSON.Best Practices
- Keep prompts concrete and here-and-now; avoid open-ended prompts that produce vague outputs.
- Standardize outputs (JSON, CSV, or structured text) to improve automation.
- Document placeholders and expected formats so readers can adapt quickly.
- Combine prompts to generate artifacts (scope docs, risk registers, and remediation plans) in a single run when possible.
Common Mistakes to Avoid
- Assuming prompts cover all jurisdictions—always tailor for your region.
- Over-promising on explainability without providing traceability artifacts.
- Using broad prompts that require the reader to supply missing context.
FAQ
Question
What is AI Ethics Compliance Auditing?
Answer
A structured, evidence-based evaluation of AI systems against ethical, legal, and governance standards to identify risks and propose mitigations.
Question
How often should these prompts be used?
Answer
Use throughout the audit lifecycle: planning, fieldwork, reporting, and remediation tracking. Revisit prompts when systems change.
Question
What standards should guide these prompts?
Answer
Refer to OECD AI Principles, GDPR/privacy laws, sector-specific rules, and ISO/IEC governance guidelines; adapt based on jurisdiction.
Question
How can I customize prompts for my industry?
Answer
Replace placeholders with industry-specific terms, risks, and regulatory references; add constraints for local laws and standards.