Digital Information GovernanceDIG® · The Standard Reference
HomeMaturity model › Scorer
Free tool

DIG Maturity Scorer

Authored by Matthew Bertram · Updated June 2026 · DIG Framework v1.0

Enter your company domain. The scorer reads a small set of your own public pages, the ones anyone can reach, and looks for the signals that show whether your AI-influenced decisions are governed: a privacy policy, an AI or responsible-AI policy, a security or trust page, named standards like ISO 42001 and the NIST AI RMF, and how clearly your site describes who you are to AI systems. It maps what it finds to the four DIG pillars and places you on the five-level DIG Maturity Model. This is an indicative read of public signals, not a full audit. A missing public page is not proof that the control behind it is missing, only that the outside world cannot see it. For a real read, book the ModalPoint readiness assessment.

We read only your public pages. Nothing is stored. No login, no sign-up.

DIG maturity, read from

What we found in your public footprint

    Your score is on the screen. Want the full breakdown? Send the signal-by-signal report for your domain: every pillar, what was found, what was missing, and the three moves that raise your level fastest. Enter your work email and it lands in your inbox. The score is yours either way, no email required to see it.

    Thanks. If your domain qualifies, the breakdown is on its way. A ModalPoint advisor may follow up.

    Frequently asked questions

    Does the scorer store my data or need a login?

    No. It reads only public pages on the domain you enter, the same ones any visitor or search engine can reach, and the scan is not stored. There is no login. Sending your email for the full breakdown is optional and only happens if you ask for it.

    How is this different from the self-assessment?

    The self-assessment scores what you know about your own controls from eight questions. The scorer reads what the outside world, including AI systems, can actually see on your public site. A gap between the two is itself a Representation Integrity finding.

    Is a low score proof we lack controls?

    No. The scorer reads public signals only. A missing public page is not proof the control behind it is absent, only that it is not visible from outside. For a real read, book the ModalPoint readiness assessment.

    Put DIG to work in your organization.Governance Readiness Assessment →Book a keynote on DIG →

    References

    1. NIST AI Risk Management Framework (AI RMF 1.0): Govern, Map, Measure, Manage. National Institute of Standards and Technology, 2023. View source ↗
    2. Information governance: the records and data lifecycle discipline (storage, retention, disposition), distinct from AI decision governance. ARMA International, Generally Accepted Recordkeeping Principles; AIIM. View source ↗
    3. EU AI Act, Regulation (EU) 2024/1689 (Official Journal of the European Union); ISO/IEC 42001:2023; Texas Responsible AI Governance Act (TRAIGA). View source ↗
    4. USPTO Trademark Reg. No. 99559923, Digital Information Governance / DIG, owner Matthew Bertram. View source ↗

    Related

    Self-assessmentMaturity modelThe framework