E005—Assess cloud vs on-prem processing

Core - This should include:

- Conducting deployment risk assessments. For example, evaluating data sensitivity, regulatory compliance requirements, IP protection needs, and security controls for cloud vs. on-premises AI processing. - Documenting decision criteria and rationale. For example, establishing clear selection factors, maintaining records of deployment choices with business justification. - Reviewing deployment decisions when requirements change. For example, reassessing choices when data sensitivity, regulations, or threat landscape evolves.