Inside Our AI Readiness Audit: The Research Behind the Score (2026)
Why we score Data, Processes, Team and Governance — and keep Budget and Urgency out of the number — with citations to McKinsey, MIT, NIST, ISO 42001 and Singapore's IMDA framework.
Why most "AI readiness" quizzes don't deserve the name
The frameworks we actually used
The four dimensions in our AI Readiness Index
Why we pulled Budget and Urgency out of the score
How to read your result
Frequently asked questions
Is this a real audit, or a lead-generation quiz with a fancy name?
Honestly: both, and we'd rather say so than pretend otherwise. It's free, self-scored, takes under five minutes, and ends with a recommendation for our own services — that's a lead-qualification tool by any definition. What makes it more than a generic quiz is that the scoring logic is disclosed, sourced against named frameworks (McKinsey's AI Readiness Index, MIT Project NANDA's 2025 research, NIST's AI RMF, ISO/IEC 42001, and Singapore's IMDA/PDPC Model AI Governance Framework), and open to scrutiny on this page. It is not, and does not claim to be, a certified assessment against ISO/IEC 42001 or a conformity assessment under any regulation — that requires a formal audit, evidence collection, and usually an accredited third party.
What's the difference between an AI readiness assessment and a formal AI audit?
A readiness assessment (like ours) is a directional self-screen: it tells you roughly where you stand and what to fix first. A formal AI audit — under ISO/IEC 42001, the EU AI Act's conformity assessment regime, or IMDA's AI Verify testing framework — is evidence-based: it requires documented processes, test results against defined criteria, and usually sign-off from someone other than the organisation being assessed. If a client, regulator, or investor needs proof rather than direction, you need the latter, not a quiz.
Why does leadership backing count double in the scoring?
McKinsey's 2025 State of AI survey found that 78% of companies with a board-approved, business-aligned AI strategy reported positive ROI, versus 34% of companies without one — the single largest gap of any factor McKinsey measured. Weighting every question equally would understate the one factor with the clearest evidence behind it, so we weight leadership backing 2x within the Governance & Risk dimension.
We're not in a regulated industry — does the Governance dimension still matter?
Yes. Regulation status is one of four questions in that dimension; data handling and having a written AI usage policy are the other two, and both apply regardless of industry. Every business that puts client or staff data into a third-party AI tool has a PDPA exposure and a governance decision to make, whether or not a regulator is watching.
Can I use this audit's result to satisfy a client's or regulator's due-diligence request?
No — treat it as an internal starting point, not evidence. If a client, panel, or government tender specifically asks for alignment with ISO/IEC 42001, IMDA's AI Verify, or PDPA, you need a documented assessment against those specific criteria, which is a different (and more involved) exercise than a 14-question self-assessment. Our companion guide on AI governance for SMEs walks through what that heavier process looks like and when it's actually warranted.
How often should we retake the audit?
Every 6–12 months, or immediately after any material change: a new AI tool rolled out team-wide, a new regulated client segment, a leadership change, or a data breach/near-miss. Readiness is not static — most of the four dimensions we score move as fast as your team's habits do.
Want to Apply This to Your Business?
We're a Singapore AI development and automation agency. Let's discuss how we can help solve your specific challenges.