1. Statement of Purpose 

The purpose of this policy is to manage the use of Princeton University administrative and operational information with generative AI tools. In order to support the responsible use of generative AI tools and to mitigate the risks and limitations associated with their use, only generative AI tools licensed by the University should be used with University Information classified as Restricted, Confidential, or Unrestricted Within Princeton under the University’s Information Security Policy. Publicly available generative AI tools lack the contractual protections required by the University. For guidance on the risks and limitations, as well the appropriate use of, University-licensed generative AI tools, see the Generative AI at Princeton website. 

2. Who Is Affected by This Policy 

This Policy applies to all individuals and entities granted access to University Information, including, but not limited to, employees, contractors, temporary employees, and volunteers. 

3. Definitions 

• Generative AI tools: information technology tools that create new content, such as text, images, or music, by learning patterns from existing data, and products that include such capabilities.
• University Information: information that Princeton University collects, possesses, or has access to, regardless of its source, to perform administrative and operational functions, including without limitation, student, financial and HR information. For the purposes of this policy, this does not include information used for research, academic or instructional purposes.   
• University-licensed generative AI tool: generative AI tool for which the University maintains an enterprise agreement that grants the University a license to use such tool. (See the Princeton-Supported AI Tools webpage for a list of more broadly available University-licensed generative AI tools.) 

4. Policy Statement 

University-licensed generative AI tools should be used with Princeton Information classified as Restricted, Confidential, or Unrestricted Within Princeton under the University’s Information Security Policy. The use of publicly available generative AI tools in conjunction with such Princeton Information is not permitted by the University. 

5. Procedure for Requesting a Generative AI Tool  

If you are considering procuring a generative AI tool or if an existing information technology tool acquires generative AI capabilities, the first step is to schedule an Architecture & Security Review (ASR). For more information or to schedule an ASR, please visit the ASR webpage. If the product or tool receives ASR endorsement, Procurement or OIT must assist you with contract review and negotiation to ensure the University receives the necessary contractual protections. If you would like the University to consider licensing a particular generative AI tool, contact Vice President and CIO Daren Hubbard or Deputy CIO Carol Kondrach. 

6. Related Princeton Policies, Procedures, Standards, and Templates 

• Generative AI at Princeton Website
• Guidance on the Use of Generative AI at Princeton
• Princeton-Supported AI Tools
• Information Security Policy
• Protect Our Information Website
• Architecture Security Review (ASR) Website