# Viewing and Enabling Policies

UnifAI provides a centralized interface that allows you to view, enable, and upload policies. To view UnifAI's out-of-the-box policies, log in to the UnifAI dashboard. You can also browse [Commonly Searched Policies](/unifai/policies/viewing-and-enabling-policies.md#commonly-searched-policies). For a complete list of policy related prompts you can use, see [What Can I Ask UnifAI](/unifai/lineaje-ai-ai-assistant.md#manage-policies)? 

In UnifAI, you can accomplish the following tasks related to your policies:

<details>

<summary>View all policies</summary>

Enter `View all policies` prompt to see all policies.&#x20;

<div align="left"><figure><img src="/files/LM1td1bOhm8w1oiCtUoz" alt=""><figcaption></figcaption></figure></div>

The page displays the total number of policies, including UnifAI’s out of the box policies and your custom policies. These policies are grouped by category and asset type for easier analysis.

<figure><img src="/files/dQTlgIh1wVw4Bxacp7FC" alt=""><figcaption></figcaption></figure>

On the View All Policies page:

* **Lineaje Policies:** Shows the total number of Lineaje policies and their status.
* **Custom Policies**: Shows the custom policies you imported and their status.
* **Policies by Category**: Shows enabled vs. disabled policies across the categories of AI Threats and Exploits, Data Security and Privacy, Identity and Access Control, and Vulnerability, and Compliance.
* **Assets by Type**: Shows enabled vs. disabled policies across the asset types.

In the **All Policies** section, expand each category for more details:

* **Lineaje Policies**:
  * **AI Asset Type**: The AI asset the policy applies to, such as an AI agent, model, or MCP server.
  * **Compliance Standards**: Indicates the regulatory or industry standard the policy maps to, like EU AI Act or OWASP‑LLM.
  * **Policy**: Specifies the required security control for the AI asset.
  * **Policy Status**: Shows whether the policy is enabled or disabled.&#x20;
* **Custom Policies**: Shows your policies that you have imported into UnifAI.

<figure><img src="/files/gZyQPeYFSIlfRZwKPbOq" alt=""><figcaption></figcaption></figure>

</details>

<details>

<summary>Enable or disable policies</summary>

In the **Policy Status** column, use the toggle to `enable` or `disable` policies for your assets.

<div align="left"><figure><img src="/files/rbdS8zdjMrQirvQ4v9wi" alt=""><figcaption></figcaption></figure></div>

* When the toggle is set to `Enabled`, all associated controls are actively evaluated and enforced.
* When the toggle is set to `Disabled`, policy evaluation is halted and no controls are applied to the assets.

</details>

<details>

<summary>Upload custom policies</summary>

Custom policies allow you to extend UnifAI's out-of-the-box controls with your organization-specific requirements.

&#x20;1\. Enter  `upload policies` or `create custom policies` prompt to upload your custom policies.

2. You can upload your custom policies in PDF format with a maximum size of 10MB.&#x20;

<div align="left"><figure><img src="/files/C9xT9QuICsSCk0O1kxVT" alt=""><figcaption></figcaption></figure></div>

3. After the policies are extracted, you can review and edit them prior to submission.

<figure><img src="/files/vDEZjvqSeqqT1R40C7q4" alt=""><figcaption></figcaption></figure>

4. After submission, Lineaje team reviews the policies and notifies you when implementation is complete.
5. Your custom policies appear in the All Policies section. Enter prompt `See all policies` to see your custom policies.

<figure><img src="/files/NbbEn0FbQUSc3mkJJo5C" alt=""><figcaption></figcaption></figure>

</details>

### Commonly Searched Policies

Explore the high‑impact policies that organizations most often rely on to enforce AI security standards and maintain compliance:

* **Allow/Block**
  * Do not use LLMs from the organization's disallowed list.
  * Only use those LLMs that are in the organization’s approved list.
* **Prompt Injection**
  * Do not allow malicious content via prompts included in uploaded files.
  * Inter agent communication must be authenticated.
* **OWASP Top 10 and EU AI Act**
  * Do not expose PII on the UI.
  * No file should contain any PII.
* **OWASP Top 10 and NIST SSDF**
  * Do not allow dependencies with critical or high severity vulnerabilities.
  * Do not allow critical or high vulnerabilities in the code.

For a complete list of UnifAI policies, log in to the UnifAI dashboard.


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.veedna.com/unifai/policies/viewing-and-enabling-policies.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.