Name | Provider | Purpose | Maximum Storage Duration | Type |
---|---|---|---|---|
test_cookie | Used to check if the user's browser supports cookies. | 1 day | HTTP Cookie | |
ar_debug | Checks whether a technical debugger-cookie is present. | 3 months | HTTP Cookie | |
1.gif | Usercentrics GmbH | Used to count the number of sessions to the website, necessary for optimizing CMP product delivery. | Session | Pixel Tracker |
li_gc | Stores the user's cookie consent state for the current domain. | 180 days | HTTP Cookie | |
_cfuvid [x2] | Medium zoominfo.com | This cookie is a part of the services provided by Cloudflare - Including load-balancing, deliverance of website content and serving DNS connection for website operators. | Session | HTTP Cookie |
_OG_GDPR_COOKIE_ | Outgrow | This cookie determines whether the browser accepts cookies. | Session | HTTP Cookie |
visitor_id#-hash [x3] | Pardot wvw.softwareimprovementgroup.com | Used to encrypt and contain visitor data. This is necessary for the security of the user data. | 400 days | HTTP Cookie |
__cf_bm [x4] | ReportURI Twitter Inc. Unbounce zoominfo.com | This cookie is used to distinguish between humans and bots. This is beneficial for the website, in order to make valid reports on the use of their website. | 1 day | HTTP Cookie |
CookieConsent | Cookiebot | Stores the user's cookie consent state for the current domain | 1 year | HTTP Cookie |
wpEmojiSettingsSupports | www.softwareimprovementgroup.com | This cookie is part of a bundle of cookies which serve the purpose of content delivery and presentation. The cookies keep the correct state of font, blog/picture sliders, color themes and other website settings. | Session | HTML Local Storage |
Name | Provider | Purpose | Maximum Storage Duration | Type |
---|---|---|---|---|
unifiedScriptVerified | softwareimprovementgroup.com | Pending | Session | HTML Local Storage |
Name | Provider | Purpose | Maximum Storage Duration | Type |
---|---|---|---|---|
ziwsSession | softwareimprovementgroup.com | Collects statistics on the user's visits to the website, such as the number of visits, average time spent on the website and what pages have been read. | Session | HTML Local Storage |
ziwsSessionId | softwareimprovementgroup.com | Collects statistics on the user's visits to the website, such as the number of visits, average time spent on the website and what pages have been read. | Session | HTML Local Storage |
_hjSession_# [x2] | Hotjar | Collects statistics on the visitor's visits to the website, such as the number of visits, average time spent on the website and what pages have been read. | 1 day | HTTP Cookie |
_hjSessionUser_# [x2] | Hotjar | Collects statistics on the visitor's visits to the website, such as the number of visits, average time spent on the website and what pages have been read. | 1 year | HTTP Cookie |
_hjTLDTest [x2] | Hotjar | Registers statistical data on users' behaviour on the website. Used for internal analytics by the website operator. | Session | HTTP Cookie |
_vis_opt_s | VWO | Used by Visual Website Optimizer to determine if the visitor is participating in a design experiment. | 100 days | HTTP Cookie |
_vis_opt_test_cookie | VWO | Used to check if the user's browser supports cookies. | Session | HTTP Cookie |
_vwo_ds | VWO | Collects data on the user's visits to the website, such as the number of visits, average time spent on the website and what pages have been loaded with the purpose of generating reports for optimising the website content. | 30 days | HTTP Cookie |
_vwo_referrer | VWO | Registers data on visitors' website-behaviour. This is used for internal analysis and website optimization. | Session | HTTP Cookie |
_vwo_sn | VWO | Collects statistics on the visitor's visits to the website, such as the number of visits, average time spent on the website and what pages have been read. | 1 day | HTTP Cookie |
_vwo_uuid | VWO | Used by Visual Website Optimizer to ensure that the same user interface variant is displayed for each visit, if the user is participating in a design experiment. | 1 year | HTTP Cookie |
_vwo_uuid_v2 | VWO | This cookie is set to make split-tests on the website, which optimizes the website's relevance towards the visitor – the cookie can also be set to improve the visitor's experience on a website. | 1 year | HTTP Cookie |
sc_is_visitor_unique | Statcounter | This cookie is used to count how many times a website has been visited by different visitors - this is done by assigning the visitor a random ID, so the visitor does not get registered twice. | 2 years | HTTP Cookie |
hjActiveViewportIds | Hotjar | This cookie contains an ID string on the current session. This contains non-personal information on what subpages the visitor enters – this information is used to optimize the visitor's experience. | Persistent | HTML Local Storage |
hjViewportId | Hotjar | Saves the user's screen size in order to adjust the size of images on the website. | Session | HTML Local Storage |
_ga [x6] | Registers a unique ID that is used to generate statistical data on how the visitor uses the website. | 2 years | HTTP Cookie | |
_ga_# [x6] | Used by Google Analytics to collect data on the number of times a user has visited the website as well as dates for the first and most recent visit. | 2 years | HTTP Cookie | |
ubvt | softwareimprovementgroup.com | Collects data on the user's visits to the website, such as the number of visits, average time spent on the website and what pages have been loaded with the purpose of generating reports for optimising the website content. | 3 days | HTTP Cookie |
is_unique | Statcounter | This cookie is used to identify the frequency of visits and how long the visitor is on the website. | 400 days | HTTP Cookie |
is_visitor_unique | Statcounter | This cookie is used to count how many times a website has been visited by different visitors - this is done by assigning the visitor a random ID, so the visitor does not get registered twice. | 400 days | HTTP Cookie |
personalization_id | Twitter Inc. | This cookie is set by Twitter - The cookie allows the visitor to share content from the website onto their Twitter profile. | 400 days | HTTP Cookie |
_vwo_751793_config | www.grow.astride.com | Pending | Persistent | HTML Local Storage |
eu01/s.gif | www.grow.astride.com | Pending | Session | Pixel Tracker |
eu01/v.gif | www.grow.astride.com | This cookie is used by the website’s operator in context with multi-variate testing. This is a tool used to combine or change content on the website. This allows the website to find the best variation/edition of the site. | Session | Pixel Tracker |
vwoSn | www.grow.astride.com | This cookie is set to make split-tests on the website, which optimizes the website's relevance towards the visitor – the cookie can also be set to improve the visitor's experience on a website. | Persistent | HTML Local Storage |
_hjCookieTest | Hotjar | Collects data on the user’s navigation and behavior on the website. This is used to compile statistical reports and heatmaps for the website owner. | Session | HTTP Cookie |
_pk_id# | sigrid-says.com | Collects statistics on the user's visits to the website, such as the number of visits, average time spent on the website and what pages have been read. | 1 year | HTTP Cookie |
_pk_ref# | sigrid-says.com | Used by Piwik Analytics Platform to identify the referring website from which the visitor has come. | 6 months | HTTP Cookie |
_pk_ses# | sigrid-says.com | Used by Piwik Analytics Platform to track page requests from the visitor during the session. | 1 day | HTTP Cookie |
_zitok | js.zi-scripts.com | Cookie used for maintaining a unique visitor identifier. | 1 year | HTTP Cookie |
ga_# | www.softwareimprovementgroup.com | Registers a unique ID that is used to generate statistical data on how the visitor uses the website. | 1 day | HTTP Cookie |
ubpv | www.softwareimprovementgroup.com | Determines if a user leaves the website straight away. This information is used for internal statistics and analytics by the website operator. | 6 months | HTTP Cookie |
ubvs | www.softwareimprovementgroup.com | Collects data on the user's visits to the website, such as the number of visits, average time spent on the website and what pages have been loaded with the purpose of generating reports for optimising the website content. | 180 days | HTTP Cookie |
statcounter_bounce | www.grow.astride.com | Determines if a user leaves the website straight away. This information is used for internal statistics and analytics by the website operator. | Session | HTML Local Storage |
statcounter_config | www.grow.astride.com | Used to assess user's visits to the website, such as which pages have been visited or the frequency of visits. | Session | HTML Local Storage |
statcounter_session | www.grow.astride.com | Collects statistics on the user's visits to the website, such as the number of visits, average time spent on the website and what pages have been read. | Session | HTML Local Storage |
Name | Provider | Purpose | Maximum Storage Duration | Type |
---|---|---|---|---|
rp.gif | Necessary for the implementation of the Reddit.com's share-button function. | Session | Pixel Tracker | |
_gcl_au [x4] | Used by Google AdSense for experimenting with advertisement efficiency across websites using their services. | 3 months | HTTP Cookie | |
popupsmart_208201 | cdn.popupsmart.com | This cookie helps a correct visualization of one of the website popups. | Persistent | HTML Local Storage |
popupsmart_208201_sessions | cdn.popupsmart.com | This cookie helps a correct tracking of one of the website's popups statistics and usage. | Session | HTML Local Storage |
lastExternalReferrer | Meta Platforms, Inc. | Detects how the user reached the website by registering their last URL-address. | Persistent | HTML Local Storage |
lastExternalReferrerTime | Meta Platforms, Inc. | Detects how the user reached the website by registering their last URL-address. | Persistent | HTML Local Storage |
IDE | Used by Google DoubleClick to register and report the website user's actions after viewing or clicking one of the advertiser's ads with the purpose of measuring the efficacy of an ad and to present targeted ads to the user. | 400 days | HTTP Cookie | |
pagead/landing | Collects data on visitor behaviour from multiple websites, in order to present more relevant advertisement - This also allows the website to limit the number of times that they are shown the same advertisement. | Session | Pixel Tracker | |
NID | The ‘NID’ cookie is used to show Google ads in Google services for signed-out users. | 6 months | HTTP Cookie | |
pagead/1p-user-list/# | Tracks if the user has shown interest in specific products or events across multiple websites and detects how the user navigates between sites. This is used for measurement of advertisement efforts and facilitates payment of referral-fees between websites. | Session | Pixel Tracker | |
bcookie | Used by the social networking service, LinkedIn, for tracking the use of embedded services. | 1 year | HTTP Cookie | |
lidc | Used by the social networking service, LinkedIn, for tracking the use of embedded services. | 1 day | HTTP Cookie | |
lpv# | Pardot | Used in context with behavioral tracking by the website. The cookie registers the user’s behavior and navigation across multiple websites and ensures that no tracking errors occur when the user has multiple browser-tabs open. | 1 day | HTTP Cookie |
pardot [x2] | Pardot wvw.softwareimprovementgroup.com | Used in context with Account-Based-Marketing (ABM). The cookie registers data such as IP-addresses, time spent on the website and page requests for the visit. This is used for retargeting of multiple users rooting from the same IP-addresses. ABM usually facilitates B2B marketing purposes. | Session | HTTP Cookie |
visitor_id# [x3] | Pardot wvw.softwareimprovementgroup.com | Used in context with Account-Based-Marketing (ABM). The cookie registers data such as IP-addresses, time spent on the website and page requests for the visit. This is used for retargeting of multiple users rooting from the same IP-addresses. ABM usually facilitates B2B marketing purposes. | 400 days | HTTP Cookie |
_fbp | Meta Platforms, Inc. | Used by Facebook to deliver a series of advertisement products such as real time bidding from third party advertisers. | 3 months | HTTP Cookie |
_rdt_uuid [x2] | Used to track visitors on multiple websites, in order to present relevant advertisement based on the visitor's preferences. | 3 months | HTTP Cookie | |
1/i/adsct [x2] | Twitter Inc. | Collects data on user behaviour and interaction in order to optimize the website and make advertisement on the website more relevant. | Session | Pixel Tracker |
muc_ads | Twitter Inc. | Collects data on user behaviour and interaction in order to optimize the website and make advertisement on the website more relevant. | 400 days | HTTP Cookie |
guest_id | Twitter Inc. | Collects data related to the user's visits to the website, such as the number of visits, average time spent on the website and which pages have been loaded, with the purpose of personalising and improving the Twitter service. | 400 days | HTTP Cookie |
guest_id_ads | Twitter Inc. | Collects information on user behaviour on multiple websites. This information is used in order to optimize the relevance of advertisement on the website. | 400 days | HTTP Cookie |
guest_id_marketing | Twitter Inc. | Collects information on user behaviour on multiple websites. This information is used in order to optimize the relevance of advertisement on the website. | 400 days | HTTP Cookie |
popupsmart_show_208201 | cdn.popupsmart.com | This cookie helps a correct visualization of one of the website popups. | Session | HTTP Cookie |
sc_medium_source | www.grow.astride.com | Determines how the user accessed the website. This information is used by the website operator in order to measure the efficiency of their marketing. | Persistent | HTML Local Storage |
#-# [x2] | YouTube | Used to track user’s interaction with embedded content. | Session | HTML Local Storage |
iU5q-!O9@[#COOKIETABLE_ADVERTISING#]nbsp;[x2] | YouTube | Registers a unique ID to keep statistics of what videos from YouTube the user has seen. | Session | HTML Local Storage |
LAST_RESULT_ENTRY_KEY [x2] | YouTube | Used to track user’s interaction with embedded content. | Session | HTTP Cookie |
nextId [x2] | YouTube | Used to track user’s interaction with embedded content. | Session | HTTP Cookie |
requests [x2] | YouTube | Used to track user’s interaction with embedded content. | Session | HTTP Cookie |
yt.innertube::nextId [x2] | YouTube | Registers a unique ID to keep statistics of what videos from YouTube the user has seen. | Persistent | HTML Local Storage |
ytidb::LAST_RESULT_ENTRY_KEY [x2] | YouTube | Used to track user’s interaction with embedded content. | Persistent | HTML Local Storage |
YtIdbMeta#databases [x2] | YouTube | Used to track user’s interaction with embedded content. | Persistent | IndexedDB |
yt-remote-cast-available [x2] | YouTube | Stores the user's video player preferences using embedded YouTube video | Session | HTML Local Storage |
yt-remote-cast-installed [x2] | YouTube | Stores the user's video player preferences using embedded YouTube video | Session | HTML Local Storage |
yt-remote-connected-devices [x2] | YouTube | Stores the user's video player preferences using embedded YouTube video | Persistent | HTML Local Storage |
yt-remote-device-id [x2] | YouTube | Stores the user's video player preferences using embedded YouTube video | Persistent | HTML Local Storage |
yt-remote-fast-check-period [x2] | YouTube | Stores the user's video player preferences using embedded YouTube video | Session | HTML Local Storage |
yt-remote-session-app [x2] | YouTube | Stores the user's video player preferences using embedded YouTube video | Session | HTML Local Storage |
yt-remote-session-name [x2] | YouTube | Stores the user's video player preferences using embedded YouTube video | Session | HTML Local Storage |
LogsDatabaseV2:V#||LogsRequestsStore | YouTube | Used to track user’s interaction with embedded content. | Persistent | IndexedDB |
remote_sid | YouTube | Necessary for the implementation and functionality of YouTube video-content on the website. | Session | HTTP Cookie |
TESTCOOKIESENABLED | YouTube | Used to track user’s interaction with embedded content. | 1 day | HTTP Cookie |
VISITOR_INFO1_LIVE | YouTube | Tries to estimate the users' bandwidth on pages with integrated YouTube videos. | 180 days | HTTP Cookie |
YSC | YouTube | Registers a unique ID to keep statistics of what videos from YouTube the user has seen. | Session | HTTP Cookie |
Name | Provider | Purpose | Maximum Storage Duration | Type |
---|---|---|---|---|
statcounter.com/localstorage/ | www.grow.astride.com | Pending | Persistent | HTML Local Storage |
Table of contents
Executive summary
Foreword
Chapter 1. AI and Software Engineering
Chapter 2. Common threats of AI for organizations
Chapter 3. Compliance
Chapter 4. AI-readiness guide
Our AI readiness guide equips organizations with practical steps to navigate AI's challenges and seize opportunities.
A total of 19 steps are discussed, across four key areas of the organization:
AI readiness isn't just about technology—it’s about leadership and accountability. This guide provides essential insights into how to get started and stay ahead in a rapidly evolving AI landscape.
Software Improvement Group (SIG) leads in traditional and AI software quality assurance. Empowering organizations to become more resilient and agile by guiding them to enhance their software quality and security through deep source code analysis and tailored, strategic advice.
Sigrid® - its software assurance platform - leverages the world’s largest database of over 270 billion lines of code across more than 20,000 systems in 300+ technologies, and intelligently recommends the most crucial initiatives for organizations.
SIG was founded in 2000 and has offices in New York, Copenhagen, Brussels, and Frankfurt, and is headquartered in Amsterdam.
Sigrid®, together with expert software engineering consultants, and nearly 25 years of industry-leading research, position SIG as the foremost authority on software excellence.
24
YEARS OF EXPERIENCE
20K+
SYSTEMS EVALUATED
300+
TECHNOLOGIES
270+
BILLION LINES OF CODE ANALYZED
Laurie Cunningham, CTO at Terraquest
Software Improvement Group’s first-class guidance aided us greatly. Our maintenance costs are lower, development is more efficient. One of the many benefits has been the reduction of our technical debt by 20%.
A pragmatic guide for leaders to navigate AI implementation responsibly and at scale.
By clicking 'Download the guide', you'll receive occasional communications from us. You can opt out at any time. For more information, visit our privacy policy.
AI Principal Expert, SIG
Leading AI Author, EU AI Act & ISO 5338 Standard
Rob van der Veer
AI Readiness Guide
by Rob van der Veer
Senior principal expert AI at SIG, and author of AI standards including ISO/IEC 5338 and the EU AI Act security standard.
AI Principal Expert, SIG
Leading AI Author, EU AI Act & ISO 5338 Standard
by Rob van der Veer
AI Readiness Guide
1. AI and software engineering
What is AI?
Use case 1: Using AI to help create code
Use case 2: Developing an AI-system
Demystify AI’s role in engineering, explore how AI can drive software development without compromising security and quality. Learn about real-world AI use cases, from code generation to AI system development.
2. Common threats of AI for organizations
AI's opportunities and risks
Key threats
AI system quality issues
Discover the hidden risks AI poses to organizations, from cybersecurity threats to reputational damage. Learn the most common threats organizations face today, including bias, data issues, and governance challenges, with practical steps to mitigate them.
4.1 The board
Step 1: Attain Basic Understanding of AI in the board
Step 2: Assign Roles and Responsibilities
Step 3: Build on Existing Practices
Step 4: Form a multidisciplinary AI committee
Ensure your AI initiatives meet global regulatory standards. This chapter provides an essential guide to navigating the complex AI compliance landscape, including key regulations like the EU AI Act, U.S. legislation, and includes an overview of relevant ISO/IEC standards.
3. Compliance
Trends and themes in AI regulations
European AI Act
US AI legislation and principles
ISO/IEC standards
Set the foundation for AI success at the highest level. This chapter guides board members through the critical steps to ensure AI aligns with business goals, ethics, and legal requirements. Learn how to assign roles, build on existing practices, and form a multidisciplinary AI committee to lead your organization’s AI transformation.
4.2 GRC
Step 5: Identify relevant laws and regulations
Step 6: Create and maintain an inventory of AI applications
Step 7: Evaluation of AI applications
Step 8: Communicate evaluation results
Step 9: Create and implement AI policies
Step 10: Upskilling and creating a learning organization
Step 11: Stakeholder communication
Step 12: Implement and improve AI readiness program
Implement an effective AI management system that ensures compliance and mitigates risk. This chapter explains how to create a robust AI governance framework, inventory AI applications, and enforce policies that protect data and uphold transparency, helping you stay compliant with regulations like the GDPR and EU AI Act.
4.3 CISO
Step 13: Incorporate AI Security Threats and Controls
Step 14: Incorporate security attacks by AI
Step 15: Collaborate with GRC
Step 16: Collaborate with the CTO
Strengthen your security protocols to protect against AI-specific threats. This chapter provides security officers with practical strategies to extend existing security measures to AI systems, from securing AI models and data to preventing attacks and breaches.
4.4 CTO
Step 17: Incorporate AI into the system lifecycle
Step 18: Manage AI-supported programming
Step 19: Organize a community of practice for AI development
Integrate AI into your existing IT and development processes. This chapter offers practical steps for CTOs and IT leaders to manage AI development, minimize technical debt, and ensure AI systems are secure, scalable, and aligned with the organization’s long-term strategy.
Lead author: Rob van der Veer
Rob van der Veer has more than 32 years of experience in AI, as researcher, data scientist, programmer, hacker, and CEO. Rob established the security & privacy practice and the AI practice at Software Improvement Group (SIG). He is also the co-founder of OpenCRE a platform that harmonizes security standards and guidelines into a single online resource.
Rob is the main author of the ISO/IEC 5338 standard on AI engineering, the co-editor for the AI Act security standard, and he open sourced the global discussion on AI security by founding the OWASP AI Exchange and the liaison partnership with international standards.
Practical steps for leaders to implement AI in organizations, focusing on AI governance, risk management, development, and security.