Clinical AI Governance FAQ

Clinical AI governance: what to expect

Frequently Asked Questions

Plain answers to the questions clinic owners, practice managers, DPOs, clinical leads and boards most commonly ask before engaging ELSA AI. This FAQ answers common questions from those roles considering ELSA AI support.

Last updated: May 2026

Advisory governance support only: ELSA AI does not provide legal advice, CQC certification, ICO approval, clinical safety case sign-off, MDO indemnity advice or insurer coverage advice. Final decisions remain with the client’s accountable officers, DPO, legal advisers, clinical leads, insurers and appointed safety roles where applicable.

About ELSA AI

Frequently Asked Questions

About ELSA AI

AI tools and shadow AI

Specific clinic types

Our services

Scope and exclusions

Process and timelines

Regulatory and compliance

Getting started

About ELSA AI

What does ELSA AI do?

Who is ELSA AI for?

What problem does ELSA AI solve?

Why should a clinic act now rather than wait?

How can ELSA AI save a clinic money?

What is the cost of doing nothing?

Why is the Diagnostic cheaper than fixing the problem later?

How does ELSA AI help protect an ambient scribe investment?

Can ELSA AI help us avoid buying the wrong AI tool?

How does ELSA AI reduce management time?

Is ELSA AI only useful if something has already gone wrong?

How does ELSA AI help the board make better AI decisions?

Does ELSA AI stop clinics using AI?

Who delivers the work?

What makes ELSA AI different?

AI tools and shadow AI

What is shadow AI and why does it matter?

Can staff use ChatGPT or Copilot with patient data?

What kinds of AI tools does ELSA AI cover?

Specific clinic types

Does ELSA AI work with dental practices?

Does ELSA AI work with specialist clinics?

Our services

What are ELSA AI’s services?

What is the Clinical AI Exposure Diagnostic™?

What deliverables does the Diagnostic produce?

How much does the Diagnostic cost and how long does it take?

What is the Clinical AI Safe Usage Launchpad™?

What is the AI Exposure Sentinel™ retainer?

Do we need to start with the Diagnostic, or can we go straight to the Launchpad?

Scope and exclusions

Does ELSA AI provide legal advice or confirm legal compliance?

Does ELSA AI provide CQC approval, ICO approval or regulatory certification?

Does ELSA AI advise on MDO indemnity or insurer coverage?

Does ELSA AI sign off clinical safety cases or DCB0160 documentation?

Does ELSA AI do technical deployment, penetration testing or contract negotiation?

Process and timelines

How does an engagement begin?

What information does the clinic need to provide?

What are the most common triggers for engaging ELSA AI?

What happens with the staff AI use survey? Is it anonymous?

How does the RAG Exposure Map work?

Regulatory and compliance

Do we need a DPIA for our ambient scribe or AI tools?

Can ELSA AI help before an ambient scribe rollout?

How does CQC guidance relate to private clinic AI use?

Does NHS England guidance on ambient scribes apply to private clinics?

Can ELSA AI help with CQC inspection readiness?

Can ELSA AI help with DPO questions?

Can ELSA AI help with insurer, PMI or MDO questions?

Getting started

How do we start?