Open Pilot — Free Access destinationready.ai is in open pilot. Access is free. Pilot members retain free access for one year if the platform introduces paid membership.

Answer-engine ready

Frequently Asked Questions

Plain answers to the questions destination teams and their boards ask most about adopting artificial intelligence responsibly.

Quick answer

This page answers common questions about AI adoption for destination organisations, including what AIRETT is, how GDPR applies to AI tool use, the EU AI Act, and how US and Canadian organisations should approach AI governance. destinationready.ai is a free pilot community operated by Global DMO Services, Finland.

What Are Destination Marketing Organisations, Convention Bureaus, and PCOs?

A Destination Marketing and Management Organisation, commonly known as a DMO, is the official body responsible for promoting and developing a tourism destination. DMOs operate at national, regional, and city level. They may focus primarily on marketing to attract visitors, on managing the visitor experience and destination infrastructure, or on both. Many DMOs also include or work closely with convention bureaus and business events teams, which attract meetings, conferences, incentive travel, and association congresses to the destination. In North American contexts, these organisations are often called convention and visitors bureaus (CVBs), tourism bureaus, or destination marketing organisations. The term DMO is used internationally to cover all of these functions.

These organisations often overlap or operate within the same institution. A Destination Marketing Organisation (DMO) promotes a destination to leisure travellers and international markets. A convention bureau focuses on attracting meetings, congresses, and association events. A business events organisation markets the destination for corporate meetings, incentive travel, and trade events. In many cities and regions, all three functions sit within a single organisation. Professional congress organisers (PCOs) are specialist companies or teams that manage the operational and logistical delivery of congresses and conferences on behalf of associations or corporations. PCOs frequently work in close partnership with convention bureaus when bidding for and delivering international events. destinationready.ai is relevant to PCOs working with destination partners on AI tools for delegate engagement, bid document production, and event impact reporting. destinationready.ai serves professionals across all these functions.

What Is destinationready.ai and How Does AIRETT Work?

destinationready.ai is an AI member community for destination marketing and management professionals. Members access the AIRETT diagnostic assessment, a curated library of AI tools for DMO functions, strategy templates, legal and governance resources, and a peer exchange where DMOs share real use cases and practical experience with artificial intelligence.

destinationready.ai is for professionals working in destination marketing and management organisations (DMOs), national tourism organisations (NTOs), convention bureaus (CVBs), business events organisations, and professional congress organisers (PCOs). It is designed for practitioners who are responsible for AI adoption decisions, marketing strategy, governance, legal compliance, or digital transformation within their organisation. Members range from CEOs and directors making strategic decisions to marketing managers and content teams implementing AI tools day to day.

AIRETT — AI Readiness and Ethical Targeting Toolkit to assess organisations' AI readiness — is a structured self-assessment diagnostic that measures a destination marketing and management organisation's readiness to adopt artificial intelligence responsibly across six dimensions: Strategy and Leadership, Team Knowledge and Training, Data Governance and Privacy, Ethics and Responsible Use, Tool Adoption and Operations, and Risk and Regulatory Awareness. AIRETT produces an immediate scored verdict with a priority action plan and a 90-day roadmap. It does not constitute a legal compliance audit.

About five minutes. You answer 30 short statements across six dimensions and receive an instant traffic-light result and a downloadable PDF report.

Yes. Members can retake the AIRETT diagnostic at any time. The member area keeps a history of past assessments so you can compare results and track progress over time.

destinationready.ai is a peer member community, not a consultancy. Members access shared knowledge from DMOs that are working through the same challenges, tested templates they can adapt directly, and the AIRETT diagnostic to understand their current situation before making decisions. The value is collective and ongoing throughout the membership year. For DMOs that need tailored individual advice, Global DMO Services at globaldmoservices.com provides specialist consultancy.

destinationready.ai is currently in open pilot and access is free. Pilot participants retain free access for one year if the platform introduces paid membership. To join the pilot, use the Join the Community link in the navigation.

Membership is open to destination marketing and management organisations (DMOs), national tourism organisations (NTOs), convention bureaus (CVBs), business events organisations, and professional congress organisers (PCOs) of any size, anywhere in the world. During the pilot phase, access is free for all qualifying organisations.

No. The toolkit, prompts, and templates are built to be useful regardless of organisation size.

Yes. destinationready.ai is a collaborative community. Members can submit their own prompts, tools, templates, and use cases, which are published directly to benefit other members.

How Are DMOs and Convention Bureaus Using AI in Practice?

Start with a readiness assessment, such as AIRETT, before adopting tools. Understanding your organisation's governance, data handling, and team knowledge gaps first prevents costly mistakes later.

AI can produce strong first drafts for press releases, social posts, and campaign briefs, but content should always be reviewed by a human with local knowledge before publication to ensure accuracy and authentic voice.

Answer-engine optimisation (AEO) is the practice of structuring destination content so that AI-powered search and planning tools — such as ChatGPT, Perplexity, and Google AI Overviews — can accurately discover, read, and cite it. Research indicates that over 60% of travellers now use AI tools for trip planning, and many do not visit destination websites during the process. A DMO that is not accurately represented in AI search responses risks losing visibility at the moment travel decisions are made. AEO resources are available in the destinationready.ai Destination Toolkit.

Common uses include drafting bid documents, generating delegate communication sequences, producing post-event impact reports, and analysing venue and audience data — distinct from the leisure marketing use cases most AI guidance assumes.

No. AI tools are most effective when used to handle repetitive or first-draft work, freeing staff time for strategy, relationship building, and judgement-based decisions that AI cannot replace.

Using AI tools without governance, training, or strategy creates risk. AI readiness means your organisation has the policy, knowledge, and oversight in place to use those tools responsibly and consistently.

At minimum once a year, and sooner if your organisation adopts a significant new tool or if relevant regulation, such as the EU AI Act, changes.

There is no general legal prohibition on using AI to generate marketing content. However, DMOs should apply human review to all AI-generated outputs before publication, ensure that AI-generated images do not depict real individuals without consent, avoid fabricating statistics or visitor testimonials, and be aware that some funding bodies and public procurement frameworks are developing their own requirements around AI content disclosure.

How Does AI Regulation Apply to Destination Organisations in Europe?

The EU Artificial Intelligence Act (Regulation 2024/1689/EU) entered into force in August 2024. It classifies AI systems by risk level and imposes obligations on both developers and deployers of AI systems. Most AI tools used by DMOs for content creation, marketing, and administration fall into lower-risk categories. However, any AI system used for decision-making that affects individuals — for example automated scoring of job applications or visitor profiling — may attract higher-risk obligations. DMOs operating in the EU should assess their AI tool portfolio against the Act's risk categories. destinationready.ai members can access guidance on this in the Legal and Compliance section.

The EU AI Act applies to any organisation whose AI systems affect people located in the EU, regardless of where the organisation is based. Many non-EU DMOs marketing to European travellers are affected.

A Data Processing Agreement (DPA) is a contract required under GDPR whenever a third party, such as an AI vendor, processes personal data on your behalf. You need one before sharing visitor or staff data with most AI tools.

Visitor data used in AI systems must be handled in compliance with the EU General Data Protection Regulation (GDPR). Key obligations include: identifying a lawful basis for processing under Article 6; ensuring a Data Processing Agreement (DPA) is in place with any AI vendor that processes personal data on your behalf; conducting a Data Protection Impact Assessment (DPIA) where processing carries elevated risk; and avoiding uploading identifiable personal data to external AI systems without a valid legal basis. The destinationready.ai Legal and Compliance section provides a GDPR checklist for DMOs using AI tools.

Personally identifiable visitor or staff data, confidential partner agreements, and unpublished financial information should never be entered into public AI tools without a data processing agreement and a clear legal basis under GDPR.

Ask vendors directly about how their models were trained and tested, review outputs for unexpected patterns across different visitor groups, and involve diverse staff in testing new tools before wide rollout.

Yes, as good practice and increasingly as a legal requirement. Visitors interacting with chatbots or AI-generated content should be clearly informed they are not speaking with a human.

Correct it as quickly as possible through your own channels, contact the AI vendor or platform if relevant, and review your published content to ensure accurate, well-structured information is available for AI systems to reference instead.

Yes. destinationready.ai processes member data in accordance with GDPR. Full details are available in our Privacy Policy.

What AI Governance Rules Apply to DMOs Outside the European Union?

Members in the United States, Canada, Australia, and other non-EU markets operate under different AI and privacy frameworks from those that apply in Europe. This section addresses the questions most relevant to destination professionals outside the European Union. It does not constitute legal advice. Members should consult qualified legal counsel in their own jurisdiction for compliance guidance.

The United States does not currently have a federal AI law equivalent to the EU AI Act. Since December 2025, a federal executive order has established a national AI policy framework focused on maintaining US competitiveness and has actively sought to limit state-level AI safety legislation. Several states have introduced their own AI transparency requirements — California, New York, and Colorado have been most active — but there is no single, comprehensive federal law governing AI deployment for organisations such as destination marketing organisations. For US DMOs, AI governance is currently a matter of organisational policy, voluntary FTC guidelines, and sector-specific consumer protection rules.

US DMOs using AI tools that collect or process visitor data face obligations primarily at state level. California's Consumer Privacy Act (CCPA) and its successor CPRA impose data rights on California residents regardless of where the organisation is based. If your DMO collects data from California residents — including through website analytics, email lists, or visitor survey tools — those obligations apply to you. Additional state laws in Virginia, Colorado, and Connecticut establish similar frameworks. The practical implication for a DMO is that any AI tool processing visitor data should be assessed to confirm what data it collects, where it stores it, and whether it provides mechanisms to honour data deletion and access requests. The AIRETT diagnostic covers these considerations in its Data Governance and Privacy dimension regardless of which legal framework applies in your jurisdiction.

Canada's primary federal privacy law is the Personal Information Protection and Electronic Documents Act (PIPEDA), which governs how private-sector organisations collect, use, and disclose personal information in commercial activities. Quebec has introduced stricter provincial requirements through Law 25, which aligns more closely with GDPR-level obligations including mandatory privacy impact assessments for AI systems that process personal information. Alberta and British Columbia have their own provincial privacy laws. Canada does not currently have comprehensive federal AI legislation — the proposed Artificial Intelligence and Data Act (AIDA) did not proceed when Parliament was prorogued in January 2025 — but federal privacy regulators are increasingly applying PIPEDA to AI use cases and enforcement is becoming more active. Canadian DMOs should treat privacy compliance as the primary AI governance obligation and assess their AI tools against PIPEDA and any applicable provincial law.

It matters for two reasons even if your organisation is not based in the EU. First, GDPR compliance is increasingly used as a quality signal for how AI vendors handle personal data, regardless of geography. A vendor that can demonstrate GDPR compliance has generally documented its data handling practices, appointed a data protection contact, and established data processing agreements. These are useful indicators of responsible practice even for organisations not subject to GDPR. Second, if your destination receives visitors from EU countries and you use AI tools to process data from those visitors, there is an argument that GDPR applies to that processing. US and Canadian DMOs marketing to European visitors should take legal advice on whether their AI tool use engages any GDPR obligation.

Yes, even without GDPR, a data processing agreement or equivalent contractual documentation with your AI vendors is good practice. Such an agreement establishes what data the vendor can access, how it will be used, whether it will be used to train the vendor's models, how long it will be retained, and what happens to it if you terminate the contract. Without this documentation, your organisation has limited visibility into what a vendor does with the data you provide. CCPA in California, PIPEDA in Canada, and Quebec's Law 25 all include requirements for documenting third-party data relationships that function similarly to a data processing agreement. The AIRETT assessment's Data Governance dimension addresses this irrespective of which legal framework applies.

Responsible AI use does not depend on which laws apply to your organisation. The core practices — maintaining a record of AI tools in use, requiring human review before publishing AI-generated content, training staff on what not to share with AI systems, and having a clear position on AI-generated imagery — are organisationally sound regardless of jurisdiction. The AIRETT assessment is designed to evaluate these practices on their own merits, not solely as a legal compliance exercise. US and Canadian DMOs will find the Governance Readiness, Ethics and Responsible Use, and Operational Integration dimensions of AIRETT directly applicable to their context.

Yes. The regulatory direction in both the United States and Canada is toward greater accountability for AI use, even if the pace and form differ from the EU. In Canada, federal privacy reform is expected to introduce penalty-based enforcement and stronger obligations around automated decision-making. In the United States, state-level AI transparency requirements are expanding and sector-specific rules are emerging in employment, financial services, and health. Organisations that build strong internal AI governance now — documented policies, tool inventories, staff training, and vendor due diligence — are better positioned for regulatory change than those that wait for law to impose it.

destinationready.ai is operated by Global DMO Services, a company registered in Finland (Corporate ID: 3139669-3). The service is subject to Finnish law and EU GDPR. Members based outside the EU use the service under Finnish governing law, as stated in the Terms of Service. The platform does not collect special-category personal data. The main personal data collected from members is name, organisation name, and work email address, used for account management. Full details are in the Privacy Policy. Non-EU members are not subject to Finnish VAT. The platform does not make automated decisions about its members.

Last updated: July 2026