Tenet Resources — Free Templates for VP People, CIO, and CISO Teams
Six templates used by best-in-class mid-market lifecycle teams — distilled from the same audit patterns and policy frameworks Tenet operationalizes as software. Download each individually; email required to access (we will add you to the waitlist, no newsletter spam).
Mid-Market Offboarding Checklist Template
A 40-line checklist covering HRIS termination, IAM revocation, SaaS access audit, finance-side license reclaim, and shadow-AI tool cessation records. Built from best-in-class mid-market practice at 500-5,000 employee scale. Suitable for policy adoption or as input to lifecycle orchestration tooling. Includes per-subject audit schema output section matching CCPA, CPRA, and EU AI Act Article 26 requirements.
SaaS Inventory Discovery Worksheet
A six-source reconciliation worksheet for building the authoritative SaaS inventory at 500-5,000 employee mid-market scale. Covers formal procurement log, corporate card and expense signal, email-domain discovery, SSO and IAM logs, browser and endpoint signal, and employee self-report survey. Outputs a consolidated 300-500 application register classified into four action categories — sanctioned-managed, sanctioned-under-managed, shadow-business-relevant, shadow-individual.
State Privacy Audit Trail Matrix (CCPA, CDPA, CTDPA, TDPSA, OCPA, EU AI Act)
A matrix mapping per-state and per-framework audit trail requirements to the corresponding evidence artifact your lifecycle orchestrator must produce. Covers California CCPA and CPRA, Virginia CDPA, Connecticut CTDPA, Texas TDPSA, Oregon OCPA, plus EU AI Act Article 26 operator schema and NIST AI Risk Management Framework access control mapping. Response window requirements per subject. Downloadable as spreadsheet for internal tracking.
30-Day Employee Lifecycle Audit Template
A 30-day self-audit framework for mid-market organizations to evaluate their employee lifecycle maturity across seven dimensions: HRIS event capture, IAM provisioning speed, SaaS connector coverage, revocation timeline adherence, audit trail format, shadow-IT inventory, and shadow-AI governance. Outputs a maturity score (0-100) against the 2026 best-in-class benchmark plus a prioritized remediation backlog. Designed for cross-functional VP People and CIO co-run with CISO review.
Shadow-AI Usage Policy Template
A policy template for mid-market companies that have acknowledged employees are already using shadow-AI tools and need to define acceptable-use guidance rather than an unenforceable blanket block. Covers data classification boundaries (what can be pasted into which AI tools), provisioning vs. individual adoption decision tree, role-based AI tool templates, audit trail capture requirements, and termination-based cessation record obligations. Aligned with EU AI Act Article 26 operator requirements and state-privacy per-subject audit schemas.
AI Access Governance Policy Template
The companion to the shadow-AI usage policy — a governance policy for formally-provisioned AI tools covering role-based access templates, approval workflows for AI tool procurement, data processing agreement requirements specific to AI vendors, provisioning and revocation procedures integrated with lifecycle orchestration, audit trail capture, and periodic access review cadence. Suitable for adoption as a formal IT policy or as input to the Information Security Program (WISP) required by NY SHIELD Act and similar state laws.