SlideShare uma empresa Scribd logo

Ai in compliance

Transferir como PPTX, PDF
Ebere Ikerionwu
Ebere Ikerionwu

Artificial Intelligence - intersection with compliance. How AI principles work with compliance principles around data protection. AI and Compliance. AI - SYSC 13.7 - FCA Compliance. AI and regulation. AI and FCA regulation. AI and ICO regulation.

Direito
1 de 22
AI in Complianc e WHERE ARTIFICIAL INTELLIGENCE MEETS COMPLIANCE
Key Learning Points AI PRINCIPLES DATA MANAGEMENT SYSTEMS DATA COMPLIANCE VISIT US AT - WWW.INCILLATION.COM
INTRODUCTION AI PRINCIPLES
Artificial Intelligence (“AI”) Regulation A vast array of sets of AI principles have been published over the years as ethical guides to the use of AI. DEFINING AI Artificial Intelligence is a term shaped by socio-behavioural rationales of human capabilities – essentially, expectations that machines could emulate human cognition and behaviour. Artificial intelligence is intelligence that machines display in the way they use data to solve problems VISIT US AT - WWW.INCILLATION.COM
AI and Intelligence Intelligence in the world of AI is not merely book learning, a narrow academic skill, or test-taking smarts. Rather, it reflects a broader and deeper capability for comprehending our surroundings—‘catching on’, ‘making sense’ of things, or ‘figuring out’ what to do” (Gottfredson, 1997). This characterises AI as a suite of technologies, exhibiting some degree of autonomous learning and enabling: It does this through ● Pattern detection - by recognising regularities and irregularities in data ● Decision-making by generating rules from general data and apply specific profiles against those rules VISIT US AT - WWW.INCILLATION.COM
Trustworthy AI Trust is a principle that affects the use and adoption of technology across the world. Trust affects how we perceive our data being used, the ability of technology to be used to make decisions about ourselves which is accepted as not infringing on our rights and compromising on security. The EU recently released a paper on Trustworthy AI – aimed as a guide towards AI policy and regulatory development. In this paper a series of principles underpinning trust in AI were identified. VISIT US AT - WWW.INCILLATION.COM
Key Principles – Trustworthy AI 1. Lawfulness 2. Ethics 3. Accountability 4. Safety 5. Human Oversight 6. Diversity / Fairness 7. Transparency 8. Privacy 9. Non Discrimination 10. Societal wellbeing VISIT US AT - WWW.INCILLATION.COM
How is this relevant? The key principles identified around the use of AI relate to factors that affect peoples ability to trust its usage. They are also key to data design aimed at protecting personal data and complying with rules around personal data processing. These principles are interconnected and take into account the major risks and problems surrounding the use of AI. E.G – Privacy. Privacy is important because all data relates to an identifiable thing and most times to identifiable persons. This raises the need to balance the collection of information with the personal rights of the person whose information is being collected and used. Forms on the internet all require the collection of a lot of personal information and access to services require this as a matter of operational fact. As such it is an important principle to consider and is often cited together with accountability and safety (trust) as the overarching principles surrounding the ethical use of AI in today’s society. VISIT US AT - WWW.INCILLATION.COM
Societal Wellbeing Autonomy is one of the key factors that affect the use and governance around AI today. Autonomy is important because it determines a course of action. In the context of AI , autonomy is crucial because it affects how decisions are made. There are two modes of decision making in AI. ◦ Human Decision Making ◦ Automated Decision making Autonomy around automated decision making affects how data is used or processed and is a key aspect to regulations like the GDPR which protects basic rights around data usage. Societal well being reflects the impact of AI use on society and therefore involves impact on rights such as privacy, the ability of human to retain control of AI, the ethical use of AI and the ability to retain accountability around AI usage. This are the areas around which AI is indirectly regulated under the auspices of data protection. VISIT US AT - WWW.INCILLATION.COM
Regulation The UK financial services regulator requires that “A firm should establish and maintain appropriate systems and controls for managing operational risks that can arise from inadequacies or failures in its processes and systems (and, as appropriate, the systems and processes of third party suppliers, agents and others). In doing so a firm should have regard to: (1) the importance and complexity of processes and systems used in the end-to-end operating cycle for products and activities (for example, the level of integration of systems); (2) controls that will help it to prevent system and process failures or identify them to permit prompt rectification (including pre-approval or reconciliation processes); (3) whether the design and use of its processes and systems allow it to comply adequately with regulatory and other requirements; (4) its arrangements for the continuity of operations in the event that a significant process or system becomes unavailable or is destroyed; and (5) the importance of monitoring indicators of process or system risk (including reconciliation exceptions, compensation payments for client losses and documentation errors) and experience of operational losses and exposures”. VISIT US AT - WWW.INCILLATION.COM
Compliance Compliance in response to regulations like SYSC 13.7 of the FCA Handbook covered above means that firms that use or are contemplating the use of AI need to be able to understand both the principles underpinning its ethical use, key regulations affecting its use in operations and controls that mitigate the key risks attached to its use. For most firms this means having a strong grasp of their data management systems / infrastructure as well as rules around the use of data generally where available. The use of non personal data is mainly unregulated. However personal data which exposes individuals to the possibility of breaches and right infringements is increasingly regulated. Documents which assess risks to personal data and which document how companies comply with regulations are key controls that mitigate the risk of inappropriate systems and controls around the operational use of AI technology. VISIT US AT - WWW.INCILLATION.COM
Data Management Systems - DMS THE INFRASTRUCTURE THROUGH WHICH WE PROCESS OR MANAGE DATA
DATA INPUT AND OUTPUT Output refers to the output or the finished product after data is processed – it could be websites, databases, platform. e.t.c Input refers to what we put into the computers that we use. This is usually in the form of data – including personal data and operational data (data needed to run a system – e.g alogirthms). VISIT US AT - WWW.INCILLATION.COM
What is a Data Management System? A data management system refers to the infrastructure used to manage data in an organisation. It includes the IT system, filing systems, the software used for data input and its outputs and all of the controls used by a company to ensure that it meet legal requirements around the processing of data and IT security. Data management systems deal with infrastructure, data quality, and compliance or governance around the data. VISIT US AT - WWW.INCILLATION.COM
INPUT AND DATA QUALITY Input consists of data around objects, subjects, variable and operations. This means that data needed to run a system can refer to any one of the above. As such to ensure that the system has adequate data, there is a need to map out data requirements and ensure that relevant data is made available to the system. Simply put – you need the right input for the right output. This ensures accuracy in the system. Data Quality : Deals with the accuracy, usefulness and breadth (representativeness) of the data that you use. It deals with the question of whether the data is understandable, easy to refer to and is extensive enough to cover the areas it needs to cover to make it fit for purpose. Issues around data quality touch on ideas such as data labelling, diversity and data design. VISIT US AT - WWW.INCILLATION.COM
DATA COMPLIANCE AND AI GDPR – DATA PRINCIPLES – DATA RIGHTS
Data Compliance Infrastructure This refers to the infrastructure that supports the data management system. It includes the IT systems, people who run the systems and the rules that impact the system and ways in which the system is run to make it accountable – such as Software Hardware Policies Procedures Regulatory risk assessments Governance Data protection officer Data Protection teams (Analysts / Managers / Data Protection Officer (DPO) VISIT US AT - WWW.INCILLATION.COM
Governance Governance is all the processes of interaction be they through the laws, norms, power or language of an organized society is imposed on and regulated within a social system. In the world of AI – software creation and programming is not regulated however the use of personal data is increasingly subject to regulation. Software development while unregulated is subject to assurance. Regulation : Within the EU – personal data is protected by the GDPR (Data Protection Act 2018 in the UK). This brings it within the regulatory scope of all companies – where it is usually covered by data protection teams. Assurance : Software testing - Software Testing helps find and fix already existing mistakes and Quality Assurance helps avoid them. Both of these processes are important and if you want to meet the best quality criteria, you cannot have one without the other. This is a form of governance around the use of AI as – AI enabled software can be developed and tested to ensure that it is works and meets operational principles and guidelines. Governance focuses on data quality assurance and data compliance. VISIT US AT - WWW.INCILLATION.COM
The key questions to ask around data use Who uses the data ? – this question reveals the data controller (data owner) and processor (user). When and where is it used? – this question deals operationally with the issues of time and jurisdiction. Jurisdiction determines the law affecting the processing of personal data. Why is it used? – this question refers to the legality of usage – the reason needs to be legal and fall within the legal basis of data processing such as consent and legitimate interest. How is it used ? – this question touches on data processing principles such as data accuracy, minimalization of data use and the protection of personal data through data rights for subjects of data processing. VISIT US AT - WWW.INCILLATION.COM
Data Quality / Data Compliance Data quality ◦ This refers to how fit for purpose the data held by a controller is. ◦ Assurance systems such as data quality assurance ◦ Software testing ◦ Data design principles ◦ Data quality policies Data Compliance ◦ Refers to the meeting of regulatory rules and requirements. ◦ Governance processes such as data protection risk reviews – e.g. DPIA’s ◦ Data protection policies and infrastructure aimed at upholding data rights and meeting data protection principles. ◦ Regulations protecting the processing or use of data – eg personal data. VISIT US AT - WWW.INCILLATION.COM
Data rights Focus on principles that resonate both around AI trustworthiness and its ethical use as well as personal data protection. These rights within the GDPR are ◦ the right to be informed about the collection and the use of their personal data ◦ the right to access personal data and supplementary information ◦ the right to have inaccurate personal data rectified, or completed if it is incomplete ◦ the right to erasure (to be forgotten) in certain circumstances ◦ the right to restrict processing in certain circumstances ◦ the right to data portability, which allows the data subject to obtain and reuse their personal data for their own purposes across different services ◦ the right to object to processing in certain circumstances ◦ rights in relation to automated decision making and profiling ◦ the right to withdraw consent at any time (where relevant) ◦ the right to complain to the Information Commissioner ◦ The right to be informed VISIT US AT - WWW.INCILLATION.COM
Corresponding AI principles Transparency : This involves the data protection principles of purpose limitation, data minimisation and data storage minimisation. Data right such as the right to be informed, right to access personal data and the rights to erasure / object to processing - all come within the principle to transparency as as they are all designed to aid transparency within the use of personal data. Accountability : This involves the data protection principle that makes controllers and processors accountable for the personal data that they process. Corresponding data rights – include the rights to restrict processing, access processed data, rights in relation to automated decision making and all of of these are underpinned by the data protection principle that requires a lawful basis for the protection of personal data. Safety : This involves the security data protection principle such as that in the GDPR which states that “ you must ensure that you have appropriate security measures in place to protect the personal data you hold”. This requires that breaches of data protection such as unauthorised use of data, unauthorised access to data, and hacking are reported to data regulators. Companies can be fined for breaches of personal data protection thus ensuring that they are more likely to comply with regal requirements. Safety measures around the protection of personal data include the use of data data protection risk / impact assessments , Data protection policies, a clear desk policy, cyber / antivirus protection. IT security policies. In conclusion, much of the input that goes into AI and therefore, AI itself remains unregulated . However, personal data protection means that there is an element of governance which affects the use of AI today. Data protection is largely where AI meets Compliance in todays regulated world. There have been many arguments for the governance of AI itself – with commentators putting forth arguments such as AI itself being ungovernable – and it usage being the are subject to governance. While there is agreement on key principles around trustworthiness and the ethical use of AI this is a changing space which could be subject to governance in the near future. VISIT US AT - WWW.INCILLATION.COM

Recomendados

EU'S Ethics Guidelines for Trustworthy AI 2019
EU'S Ethics Guidelines for Trustworthy AI 2019EU'S Ethics Guidelines for Trustworthy AI 2019
EU'S Ethics Guidelines for Trustworthy AI 2019
ELSE CORP
 
Fairness in AI (DDSW 2019)
Fairness in AI (DDSW 2019)Fairness in AI (DDSW 2019)
Fairness in AI (DDSW 2019)
GoDataDriven
 
Technology for everyone - AI ethics and Bias
Technology for everyone - AI ethics and BiasTechnology for everyone - AI ethics and Bias
Technology for everyone - AI ethics and Bias
Marion Mulder
 
Corporate-Espionage
Corporate-EspionageCorporate-Espionage
Corporate-Espionage
Sam
 
Generative-AI-in-enterprise-20230615.pdf
Generative-AI-in-enterprise-20230615.pdfGenerative-AI-in-enterprise-20230615.pdf
Generative-AI-in-enterprise-20230615.pdf
Liming Zhu
 
Why it’s unethical to focus on ‘AI Ethics’
Why it’s unethical to focus on ‘AI Ethics’Why it’s unethical to focus on ‘AI Ethics’
Why it’s unethical to focus on ‘AI Ethics’
Kye Andersson
 
The Ethics of AI
The Ethics of AIThe Ethics of AI
The Ethics of AI
Mark S. Steed
 
Introduction to AI Ethics
Introduction to AI EthicsIntroduction to AI Ethics
Introduction to AI Ethics
Gabriele Graffieti
 

Recomendados

EU'S Ethics Guidelines for Trustworthy AI 2019
EU'S Ethics Guidelines for Trustworthy AI 2019EU'S Ethics Guidelines for Trustworthy AI 2019
EU'S Ethics Guidelines for Trustworthy AI 2019
ELSE CORP
 
Fairness in AI (DDSW 2019)
Fairness in AI (DDSW 2019)Fairness in AI (DDSW 2019)
Fairness in AI (DDSW 2019)
GoDataDriven
 
Technology for everyone - AI ethics and Bias
Technology for everyone - AI ethics and BiasTechnology for everyone - AI ethics and Bias
Technology for everyone - AI ethics and Bias
Marion Mulder
 
Corporate-Espionage
Corporate-EspionageCorporate-Espionage
Corporate-Espionage
Sam
 
Generative-AI-in-enterprise-20230615.pdf
Generative-AI-in-enterprise-20230615.pdfGenerative-AI-in-enterprise-20230615.pdf
Generative-AI-in-enterprise-20230615.pdf
Liming Zhu
 
Why it’s unethical to focus on ‘AI Ethics’
Why it’s unethical to focus on ‘AI Ethics’Why it’s unethical to focus on ‘AI Ethics’
Why it’s unethical to focus on ‘AI Ethics’
Kye Andersson
 
The Ethics of AI
The Ethics of AIThe Ethics of AI
The Ethics of AI
Mark S. Steed
 
Introduction to AI Ethics
Introduction to AI EthicsIntroduction to AI Ethics
Introduction to AI Ethics
Gabriele Graffieti
 
Generative AI Use-cases for Enterprise - First Session
Generative AI Use-cases for Enterprise - First SessionGenerative AI Use-cases for Enterprise - First Session
Generative AI Use-cases for Enterprise - First Session
Gene Leybzon
 
Chapter 3 artificial intelligence
Chapter 3 artificial intelligenceChapter 3 artificial intelligence
Chapter 3 artificial intelligence
JAPHETFULMARAN1
 
AI: Built to Scale
AI: Built to ScaleAI: Built to Scale
AI: Built to Scale
accenture
 
Maximizing AI Investments | Accenture
Maximizing AI Investments | AccentureMaximizing AI Investments | Accenture
Maximizing AI Investments | Accenture
accenture
 
Artificial Intelligence In The Workplace: How AI Is Transforming Your Employe...
Artificial Intelligence In The Workplace: How AI Is Transforming Your Employe...Artificial Intelligence In The Workplace: How AI Is Transforming Your Employe...
Artificial Intelligence In The Workplace: How AI Is Transforming Your Employe...
Bernard Marr
 
AI in Healthcare 2017
AI in Healthcare 2017AI in Healthcare 2017
AI in Healthcare 2017
Peter Morgan
 
Privacy in AI/ML Systems: Practical Challenges and Lessons Learned
Privacy in AI/ML Systems: Practical Challenges and Lessons LearnedPrivacy in AI/ML Systems: Practical Challenges and Lessons Learned
Privacy in AI/ML Systems: Practical Challenges and Lessons Learned
Krishnaram Kenthapadi
 
The Rise of Forerunners | Accenture
The Rise of Forerunners | AccentureThe Rise of Forerunners | Accenture
The Rise of Forerunners | Accenture
accenture
 
CB Insights | AI in Healthcare
CB Insights | AI in HealthcareCB Insights | AI in Healthcare
CB Insights | AI in Healthcare
Galen Growth
 
Leveraging Generative AI: Opportunities, Risks and Best Practices
Leveraging Generative AI: Opportunities, Risks and Best Practices Leveraging Generative AI: Opportunities, Risks and Best Practices
Leveraging Generative AI: Opportunities, Risks and Best Practices
Social Samosa
 
The Reinvention Reset | Accenture
The Reinvention Reset | AccentureThe Reinvention Reset | Accenture
The Reinvention Reset | Accenture
accenture
 
Fairness and Privacy in AI/ML Systems
Fairness and Privacy in AI/ML SystemsFairness and Privacy in AI/ML Systems
Fairness and Privacy in AI/ML Systems
Krishnaram Kenthapadi
 
Artificial Intelligence Introduction & Business usecases
Artificial Intelligence Introduction & Business usecasesArtificial Intelligence Introduction & Business usecases
Artificial Intelligence Introduction & Business usecases
Vikas Jain
 
TechTalks | Digital Transformation in Healthcare: Opportunities and Trends
TechTalks | Digital Transformation in Healthcare: Opportunities and TrendsTechTalks | Digital Transformation in Healthcare: Opportunities and Trends
TechTalks | Digital Transformation in Healthcare: Opportunities and Trends
rmcsoft
 
Competitive Intelligence
Competitive IntelligenceCompetitive Intelligence
Competitive Intelligence
Anand Subramaniam
 
Matt Lewis - The Hardest Thing-Final to Host.pdf
Matt Lewis - The Hardest Thing-Final to Host.pdfMatt Lewis - The Hardest Thing-Final to Host.pdf
Matt Lewis - The Hardest Thing-Final to Host.pdf
SOLTUIONSpeople, THINKubators, THINKathons
 
haiped. impact of AI in marketing comms and CX
haiped. impact of AI in marketing comms and CXhaiped. impact of AI in marketing comms and CX
haiped. impact of AI in marketing comms and CX
matthys esterhuysen
 
Understanding generative AI models A comprehensive overview.pdf
Understanding generative AI models A comprehensive overview.pdfUnderstanding generative AI models A comprehensive overview.pdf
Understanding generative AI models A comprehensive overview.pdf
StephenAmell4
 
Top 10 uses of AI in Healthcare
Top 10 uses of AI in Healthcare Top 10 uses of AI in Healthcare
Top 10 uses of AI in Healthcare
Swathi Young
 
14 2 2023 - AI & Marketing - Hugues Rey.pdf
14 2 2023 - AI & Marketing - Hugues Rey.pdf14 2 2023 - AI & Marketing - Hugues Rey.pdf
14 2 2023 - AI & Marketing - Hugues Rey.pdf
Hugues Rey
 
2009 iapp-the corpprivacydeptmar13-2009
2009 iapp-the corpprivacydeptmar13-20092009 iapp-the corpprivacydeptmar13-2009
2009 iapp-the corpprivacydeptmar13-2009
asundaram1
 
Setting the right GDPR priorities
Setting the right GDPR prioritiesSetting the right GDPR priorities
Setting the right GDPR priorities
Alberto Canadè
 

Mais conteúdo relacionado

Mais procurados

Chapter 3 artificial intelligence
Chapter 3 artificial intelligenceChapter 3 artificial intelligence
Chapter 3 artificial intelligence
JAPHETFULMARAN1
 
AI: Built to Scale
AI: Built to ScaleAI: Built to Scale
AI: Built to Scale
accenture
 
Privacy in AI/ML Systems: Practical Challenges and Lessons Learned
Privacy in AI/ML Systems: Practical Challenges and Lessons LearnedPrivacy in AI/ML Systems: Practical Challenges and Lessons Learned
Privacy in AI/ML Systems: Practical Challenges and Lessons Learned
Krishnaram Kenthapadi
 
Fairness and Privacy in AI/ML Systems
Fairness and Privacy in AI/ML SystemsFairness and Privacy in AI/ML Systems
Fairness and Privacy in AI/ML Systems
Krishnaram Kenthapadi
 
TechTalks | Digital Transformation in Healthcare: Opportunities and Trends
TechTalks | Digital Transformation in Healthcare: Opportunities and TrendsTechTalks | Digital Transformation in Healthcare: Opportunities and Trends
TechTalks | Digital Transformation in Healthcare: Opportunities and Trends
rmcsoft
 
haiped. impact of AI in marketing comms and CX
haiped. impact of AI in marketing comms and CXhaiped. impact of AI in marketing comms and CX
haiped. impact of AI in marketing comms and CX
matthys esterhuysen
 

Mais procurados (20)

Generative AI Use-cases for Enterprise - First Session
Generative AI Use-cases for Enterprise - First SessionGenerative AI Use-cases for Enterprise - First Session
Generative AI Use-cases for Enterprise - First Session
 
Chapter 3 artificial intelligence
Chapter 3 artificial intelligenceChapter 3 artificial intelligence
Chapter 3 artificial intelligence
 
AI: Built to Scale
AI: Built to ScaleAI: Built to Scale
AI: Built to Scale
 
Maximizing AI Investments | Accenture
Maximizing AI Investments | AccentureMaximizing AI Investments | Accenture
Maximizing AI Investments | Accenture
 
Artificial Intelligence In The Workplace: How AI Is Transforming Your Employe...
Artificial Intelligence In The Workplace: How AI Is Transforming Your Employe...Artificial Intelligence In The Workplace: How AI Is Transforming Your Employe...
Artificial Intelligence In The Workplace: How AI Is Transforming Your Employe...
 
AI in Healthcare 2017
AI in Healthcare 2017AI in Healthcare 2017
AI in Healthcare 2017
 
Privacy in AI/ML Systems: Practical Challenges and Lessons Learned
Privacy in AI/ML Systems: Practical Challenges and Lessons LearnedPrivacy in AI/ML Systems: Practical Challenges and Lessons Learned
Privacy in AI/ML Systems: Practical Challenges and Lessons Learned
 
The Rise of Forerunners | Accenture
The Rise of Forerunners | AccentureThe Rise of Forerunners | Accenture
The Rise of Forerunners | Accenture
 
CB Insights | AI in Healthcare
CB Insights | AI in HealthcareCB Insights | AI in Healthcare
CB Insights | AI in Healthcare
 
Leveraging Generative AI: Opportunities, Risks and Best Practices
Leveraging Generative AI: Opportunities, Risks and Best Practices Leveraging Generative AI: Opportunities, Risks and Best Practices
Leveraging Generative AI: Opportunities, Risks and Best Practices
 
The Reinvention Reset | Accenture
The Reinvention Reset | AccentureThe Reinvention Reset | Accenture
The Reinvention Reset | Accenture
 
Fairness and Privacy in AI/ML Systems
Fairness and Privacy in AI/ML SystemsFairness and Privacy in AI/ML Systems
Fairness and Privacy in AI/ML Systems
 
Artificial Intelligence Introduction & Business usecases
Artificial Intelligence Introduction & Business usecasesArtificial Intelligence Introduction & Business usecases
Artificial Intelligence Introduction & Business usecases
 
TechTalks | Digital Transformation in Healthcare: Opportunities and Trends
TechTalks | Digital Transformation in Healthcare: Opportunities and TrendsTechTalks | Digital Transformation in Healthcare: Opportunities and Trends
TechTalks | Digital Transformation in Healthcare: Opportunities and Trends
 
Competitive Intelligence
Competitive IntelligenceCompetitive Intelligence
Competitive Intelligence
 
Matt Lewis - The Hardest Thing-Final to Host.pdf
Matt Lewis - The Hardest Thing-Final to Host.pdfMatt Lewis - The Hardest Thing-Final to Host.pdf
Matt Lewis - The Hardest Thing-Final to Host.pdf
 
haiped. impact of AI in marketing comms and CX
haiped. impact of AI in marketing comms and CXhaiped. impact of AI in marketing comms and CX
haiped. impact of AI in marketing comms and CX
 
Understanding generative AI models A comprehensive overview.pdf
Understanding generative AI models A comprehensive overview.pdfUnderstanding generative AI models A comprehensive overview.pdf
Understanding generative AI models A comprehensive overview.pdf
 
Top 10 uses of AI in Healthcare
Top 10 uses of AI in Healthcare Top 10 uses of AI in Healthcare
Top 10 uses of AI in Healthcare
 
14 2 2023 - AI & Marketing - Hugues Rey.pdf
14 2 2023 - AI & Marketing - Hugues Rey.pdf14 2 2023 - AI & Marketing - Hugues Rey.pdf
14 2 2023 - AI & Marketing - Hugues Rey.pdf
 

Semelhante a Ai in compliance

IT Governance and Compliance: Its Importance and the Best Practices to Follow...
IT Governance and Compliance: Its Importance and the Best Practices to Follow...IT Governance and Compliance: Its Importance and the Best Practices to Follow...
IT Governance and Compliance: Its Importance and the Best Practices to Follow...
GrapesTech Solutions
 
ISSC481_Term_Paper_John_Intindolo
ISSC481_Term_Paper_John_IntindoloISSC481_Term_Paper_John_Intindolo
ISSC481_Term_Paper_John_Intindolo
John Intindolo
 
Running head PROJECT PLAN INCEPTION1PROJECT PLAN INCEPTION .docx
Running head PROJECT PLAN INCEPTION1PROJECT PLAN INCEPTION .docxRunning head PROJECT PLAN INCEPTION1PROJECT PLAN INCEPTION .docx
Running head PROJECT PLAN INCEPTION1PROJECT PLAN INCEPTION .docx
jeanettehully
 
Information Governance, Managing Data To Lower Risk and Costs, and E-Discover...
Information Governance, Managing Data To Lower Risk and Costs, and E-Discover...Information Governance, Managing Data To Lower Risk and Costs, and E-Discover...
Information Governance, Managing Data To Lower Risk and Costs, and E-Discover...
David Kearney
 
Running Head CYBERSECURITY FRAMEWORK1CYBERSECURITY FRAMEWORK.docx
Running Head CYBERSECURITY FRAMEWORK1CYBERSECURITY FRAMEWORK.docxRunning Head CYBERSECURITY FRAMEWORK1CYBERSECURITY FRAMEWORK.docx
Running Head CYBERSECURITY FRAMEWORK1CYBERSECURITY FRAMEWORK.docx
healdkathaleen
 
Identity and Access Intelligence
Identity and Access IntelligenceIdentity and Access Intelligence
Identity and Access Intelligence
Tim Bell
 
Security architecture rajagiri talk march 2011
Security architecture rajagiri talk march 2011Security architecture rajagiri talk march 2011
Security architecture rajagiri talk march 2011
subramanian K
 

Semelhante a Ai in compliance (20)

2009 iapp-the corpprivacydeptmar13-2009
2009 iapp-the corpprivacydeptmar13-20092009 iapp-the corpprivacydeptmar13-2009
2009 iapp-the corpprivacydeptmar13-2009
 
Setting the right GDPR priorities
Setting the right GDPR prioritiesSetting the right GDPR priorities
Setting the right GDPR priorities
 
IT Governance and Compliance: Its Importance and the Best Practices to Follow...
IT Governance and Compliance: Its Importance and the Best Practices to Follow...IT Governance and Compliance: Its Importance and the Best Practices to Follow...
IT Governance and Compliance: Its Importance and the Best Practices to Follow...
 
Automatski - The Internet of Things - Security Standards
Automatski - The Internet of Things - Security StandardsAutomatski - The Internet of Things - Security Standards
Automatski - The Internet of Things - Security Standards
 
ISSC481_Term_Paper_John_Intindolo
ISSC481_Term_Paper_John_IntindoloISSC481_Term_Paper_John_Intindolo
ISSC481_Term_Paper_John_Intindolo
 
What is Information Governance
What is Information GovernanceWhat is Information Governance
What is Information Governance
 
Running head PROJECT PLAN INCEPTION1PROJECT PLAN INCEPTION .docx
Running head PROJECT PLAN INCEPTION1PROJECT PLAN INCEPTION .docxRunning head PROJECT PLAN INCEPTION1PROJECT PLAN INCEPTION .docx
Running head PROJECT PLAN INCEPTION1PROJECT PLAN INCEPTION .docx
 
Cybersecurity solution-guide
Cybersecurity solution-guideCybersecurity solution-guide
Cybersecurity solution-guide
 
Unified Information Governance, Powered by Knowledge Graph
Unified Information Governance, Powered by Knowledge GraphUnified Information Governance, Powered by Knowledge Graph
Unified Information Governance, Powered by Knowledge Graph
 
Task 2
Task 2Task 2
Task 2
 
Information security management iso27001
Information security management iso27001Information security management iso27001
Information security management iso27001
 
Information Governance, Managing Data To Lower Risk and Costs, and E-Discover...
Information Governance, Managing Data To Lower Risk and Costs, and E-Discover...Information Governance, Managing Data To Lower Risk and Costs, and E-Discover...
Information Governance, Managing Data To Lower Risk and Costs, and E-Discover...
 
Tft2 Task3 Essay
Tft2 Task3 EssayTft2 Task3 Essay
Tft2 Task3 Essay
 
Running Head CYBERSECURITY FRAMEWORK1CYBERSECURITY FRAMEWORK.docx
Running Head CYBERSECURITY FRAMEWORK1CYBERSECURITY FRAMEWORK.docxRunning Head CYBERSECURITY FRAMEWORK1CYBERSECURITY FRAMEWORK.docx
Running Head CYBERSECURITY FRAMEWORK1CYBERSECURITY FRAMEWORK.docx
 
Identity and Access Intelligence
Identity and Access IntelligenceIdentity and Access Intelligence
Identity and Access Intelligence
 
Security architecture rajagiri talk march 2011
Security architecture rajagiri talk march 2011Security architecture rajagiri talk march 2011
Security architecture rajagiri talk march 2011
 
Written-Blog_Ethic_AI_08Aug23_pub_jce.pdf
Written-Blog_Ethic_AI_08Aug23_pub_jce.pdfWritten-Blog_Ethic_AI_08Aug23_pub_jce.pdf
Written-Blog_Ethic_AI_08Aug23_pub_jce.pdf
 
The GDPR Most Wanted: The Marketer and Analyst's Role in Compliance
The GDPR Most Wanted: The Marketer and Analyst's Role in ComplianceThe GDPR Most Wanted: The Marketer and Analyst's Role in Compliance
The GDPR Most Wanted: The Marketer and Analyst's Role in Compliance
 
Data Privacy Introduction
Data Privacy IntroductionData Privacy Introduction
Data Privacy Introduction
 
Aujas incident management webinar deck 08162016
Aujas incident management webinar deck 08162016Aujas incident management webinar deck 08162016
Aujas incident management webinar deck 08162016
 

Último

一比一原版(QUT毕业证书)昆士兰科技大学毕业证如何办理
一比一原版(QUT毕业证书)昆士兰科技大学毕业证如何办理一比一原版(QUT毕业证书)昆士兰科技大学毕业证如何办理
一比一原版(QUT毕业证书)昆士兰科技大学毕业证如何办理
Airst S
 
一比一原版(TheAuckland毕业证书)新西兰奥克兰大学毕业证如何办理
一比一原版(TheAuckland毕业证书)新西兰奥克兰大学毕业证如何办理一比一原版(TheAuckland毕业证书)新西兰奥克兰大学毕业证如何办理
一比一原版(TheAuckland毕业证书)新西兰奥克兰大学毕业证如何办理
F La
 
一比一原版(Waterloo毕业证书)加拿大滑铁卢大学毕业证如何办理
一比一原版(Waterloo毕业证书)加拿大滑铁卢大学毕业证如何办理一比一原版(Waterloo毕业证书)加拿大滑铁卢大学毕业证如何办理
一比一原版(Waterloo毕业证书)加拿大滑铁卢大学毕业证如何办理
e9733fc35af6
 
一比一原版悉尼大学毕业证如何办理
一比一原版悉尼大学毕业证如何办理一比一原版悉尼大学毕业证如何办理
一比一原版悉尼大学毕业证如何办理
Airst S
 
一比一原版(RMIT毕业证书)皇家墨尔本理工大学毕业证如何办理
一比一原版(RMIT毕业证书)皇家墨尔本理工大学毕业证如何办理一比一原版(RMIT毕业证书)皇家墨尔本理工大学毕业证如何办理
一比一原版(RMIT毕业证书)皇家墨尔本理工大学毕业证如何办理
ss
 
一比一原版(Griffith毕业证书)格里菲斯大学毕业证如何办理
一比一原版(Griffith毕业证书)格里菲斯大学毕业证如何办理一比一原版(Griffith毕业证书)格里菲斯大学毕业证如何办理
一比一原版(Griffith毕业证书)格里菲斯大学毕业证如何办理
bd2c5966a56d
 
一比一原版(Carleton毕业证书)加拿大卡尔顿大学毕业证如何办理
一比一原版(Carleton毕业证书)加拿大卡尔顿大学毕业证如何办理一比一原版(Carleton毕业证书)加拿大卡尔顿大学毕业证如何办理
一比一原版(Carleton毕业证书)加拿大卡尔顿大学毕业证如何办理
e9733fc35af6
 
一比一原版(IC毕业证书)帝国理工学院毕业证如何办理
一比一原版(IC毕业证书)帝国理工学院毕业证如何办理一比一原版(IC毕业证书)帝国理工学院毕业证如何办理
一比一原版(IC毕业证书)帝国理工学院毕业证如何办理
Fir La
 
一比一原版曼彻斯特城市大学毕业证如何办理
一比一原版曼彻斯特城市大学毕业证如何办理一比一原版曼彻斯特城市大学毕业证如何办理
一比一原版曼彻斯特城市大学毕业证如何办理
Airst S
 
一比一原版(Warwick毕业证书)华威大学毕业证如何办理
一比一原版(Warwick毕业证书)华威大学毕业证如何办理一比一原版(Warwick毕业证书)华威大学毕业证如何办理
一比一原版(Warwick毕业证书)华威大学毕业证如何办理
Fir La
 

Último (20)

一比一原版(QUT毕业证书)昆士兰科技大学毕业证如何办理
一比一原版(QUT毕业证书)昆士兰科技大学毕业证如何办理一比一原版(QUT毕业证书)昆士兰科技大学毕业证如何办理
一比一原版(QUT毕业证书)昆士兰科技大学毕业证如何办理
 
一比一原版(TheAuckland毕业证书)新西兰奥克兰大学毕业证如何办理
一比一原版(TheAuckland毕业证书)新西兰奥克兰大学毕业证如何办理一比一原版(TheAuckland毕业证书)新西兰奥克兰大学毕业证如何办理
一比一原版(TheAuckland毕业证书)新西兰奥克兰大学毕业证如何办理
 
一比一原版(Waterloo毕业证书)加拿大滑铁卢大学毕业证如何办理
一比一原版(Waterloo毕业证书)加拿大滑铁卢大学毕业证如何办理一比一原版(Waterloo毕业证书)加拿大滑铁卢大学毕业证如何办理
一比一原版(Waterloo毕业证书)加拿大滑铁卢大学毕业证如何办理
 
一比一原版悉尼大学毕业证如何办理
一比一原版悉尼大学毕业证如何办理一比一原版悉尼大学毕业证如何办理
一比一原版悉尼大学毕业证如何办理
 
Understanding the Role of Labor Unions and Collective Bargaining
Understanding the Role of Labor Unions and Collective BargainingUnderstanding the Role of Labor Unions and Collective Bargaining
Understanding the Role of Labor Unions and Collective Bargaining
 
一比一原版(RMIT毕业证书)皇家墨尔本理工大学毕业证如何办理
一比一原版(RMIT毕业证书)皇家墨尔本理工大学毕业证如何办理一比一原版(RMIT毕业证书)皇家墨尔本理工大学毕业证如何办理
一比一原版(RMIT毕业证书)皇家墨尔本理工大学毕业证如何办理
 
一比一原版(Griffith毕业证书)格里菲斯大学毕业证如何办理
一比一原版(Griffith毕业证书)格里菲斯大学毕业证如何办理一比一原版(Griffith毕业证书)格里菲斯大学毕业证如何办理
一比一原版(Griffith毕业证书)格里菲斯大学毕业证如何办理
 
Chambers Global Practice Guide - Canada M&A
Chambers Global Practice Guide - Canada M&AChambers Global Practice Guide - Canada M&A
Chambers Global Practice Guide - Canada M&A
 
Sangyun Lee, Duplicate Powers in the Criminal Referral Process and the Overla...
Sangyun Lee, Duplicate Powers in the Criminal Referral Process and the Overla...Sangyun Lee, Duplicate Powers in the Criminal Referral Process and the Overla...
Sangyun Lee, Duplicate Powers in the Criminal Referral Process and the Overla...
 
A SHORT HISTORY OF LIBERTY'S PROGREE THROUGH HE EIGHTEENTH CENTURY
A SHORT HISTORY OF LIBERTY'S PROGREE THROUGH HE EIGHTEENTH CENTURYA SHORT HISTORY OF LIBERTY'S PROGREE THROUGH HE EIGHTEENTH CENTURY
A SHORT HISTORY OF LIBERTY'S PROGREE THROUGH HE EIGHTEENTH CENTURY
 
The doctrine of harmonious construction under Interpretation of statute
The doctrine of harmonious construction under Interpretation of statuteThe doctrine of harmonious construction under Interpretation of statute
The doctrine of harmonious construction under Interpretation of statute
 
Shubh_Burden of proof_Indian Evidence Act.pptx
Shubh_Burden of proof_Indian Evidence Act.pptxShubh_Burden of proof_Indian Evidence Act.pptx
Shubh_Burden of proof_Indian Evidence Act.pptx
 
一比一原版(Carleton毕业证书)加拿大卡尔顿大学毕业证如何办理
一比一原版(Carleton毕业证书)加拿大卡尔顿大学毕业证如何办理一比一原版(Carleton毕业证书)加拿大卡尔顿大学毕业证如何办理
一比一原版(Carleton毕业证书)加拿大卡尔顿大学毕业证如何办理
 
Elective Course on Forensic Science in Law
Elective Course on Forensic Science in LawElective Course on Forensic Science in Law
Elective Course on Forensic Science in Law
 
Relationship Between International Law and Municipal Law MIR.pdf
Relationship Between International Law and Municipal Law MIR.pdfRelationship Between International Law and Municipal Law MIR.pdf
Relationship Between International Law and Municipal Law MIR.pdf
 
一比一原版(IC毕业证书)帝国理工学院毕业证如何办理
一比一原版(IC毕业证书)帝国理工学院毕业证如何办理一比一原版(IC毕业证书)帝国理工学院毕业证如何办理
一比一原版(IC毕业证书)帝国理工学院毕业证如何办理
 
Hely-Hutchinson v. Brayhead Ltd .pdf
Hely-Hutchinson v. Brayhead Ltd .pdfHely-Hutchinson v. Brayhead Ltd .pdf
Hely-Hutchinson v. Brayhead Ltd .pdf
 
一比一原版曼彻斯特城市大学毕业证如何办理
一比一原版曼彻斯特城市大学毕业证如何办理一比一原版曼彻斯特城市大学毕业证如何办理
一比一原版曼彻斯特城市大学毕业证如何办理
 
一比一原版(Warwick毕业证书)华威大学毕业证如何办理
一比一原版(Warwick毕业证书)华威大学毕业证如何办理一比一原版(Warwick毕业证书)华威大学毕业证如何办理
一比一原版(Warwick毕业证书)华威大学毕业证如何办理
 
How do cyber crime lawyers in Mumbai collaborate with law enforcement agencie...
How do cyber crime lawyers in Mumbai collaborate with law enforcement agencie...How do cyber crime lawyers in Mumbai collaborate with law enforcement agencie...
How do cyber crime lawyers in Mumbai collaborate with law enforcement agencie...
 

Ai in compliance

  • 1. AI in Complianc e WHERE ARTIFICIAL INTELLIGENCE MEETS COMPLIANCE
  • 2. Key Learning Points AI PRINCIPLES DATA MANAGEMENT SYSTEMS DATA COMPLIANCE VISIT US AT - WWW.INCILLATION.COM
  • 4. Artificial Intelligence (“AI”) Regulation A vast array of sets of AI principles have been published over the years as ethical guides to the use of AI. DEFINING AI Artificial Intelligence is a term shaped by socio-behavioural rationales of human capabilities – essentially, expectations that machines could emulate human cognition and behaviour. Artificial intelligence is intelligence that machines display in the way they use data to solve problems VISIT US AT - WWW.INCILLATION.COM
  • 5. AI and Intelligence Intelligence in the world of AI is not merely book learning, a narrow academic skill, or test-taking smarts. Rather, it reflects a broader and deeper capability for comprehending our surroundings—‘catching on’, ‘making sense’ of things, or ‘figuring out’ what to do” (Gottfredson, 1997). This characterises AI as a suite of technologies, exhibiting some degree of autonomous learning and enabling: It does this through ● Pattern detection - by recognising regularities and irregularities in data ● Decision-making by generating rules from general data and apply specific profiles against those rules VISIT US AT - WWW.INCILLATION.COM
  • 6. Trustworthy AI Trust is a principle that affects the use and adoption of technology across the world. Trust affects how we perceive our data being used, the ability of technology to be used to make decisions about ourselves which is accepted as not infringing on our rights and compromising on security. The EU recently released a paper on Trustworthy AI – aimed as a guide towards AI policy and regulatory development. In this paper a series of principles underpinning trust in AI were identified. VISIT US AT - WWW.INCILLATION.COM
  • 7. Key Principles – Trustworthy AI 1. Lawfulness 2. Ethics 3. Accountability 4. Safety 5. Human Oversight 6. Diversity / Fairness 7. Transparency 8. Privacy 9. Non Discrimination 10. Societal wellbeing VISIT US AT - WWW.INCILLATION.COM
  • 8. How is this relevant? The key principles identified around the use of AI relate to factors that affect peoples ability to trust its usage. They are also key to data design aimed at protecting personal data and complying with rules around personal data processing. These principles are interconnected and take into account the major risks and problems surrounding the use of AI. E.G – Privacy. Privacy is important because all data relates to an identifiable thing and most times to identifiable persons. This raises the need to balance the collection of information with the personal rights of the person whose information is being collected and used. Forms on the internet all require the collection of a lot of personal information and access to services require this as a matter of operational fact. As such it is an important principle to consider and is often cited together with accountability and safety (trust) as the overarching principles surrounding the ethical use of AI in today’s society. VISIT US AT - WWW.INCILLATION.COM
  • 9. Societal Wellbeing Autonomy is one of the key factors that affect the use and governance around AI today. Autonomy is important because it determines a course of action. In the context of AI , autonomy is crucial because it affects how decisions are made. There are two modes of decision making in AI. ◦ Human Decision Making ◦ Automated Decision making Autonomy around automated decision making affects how data is used or processed and is a key aspect to regulations like the GDPR which protects basic rights around data usage. Societal well being reflects the impact of AI use on society and therefore involves impact on rights such as privacy, the ability of human to retain control of AI, the ethical use of AI and the ability to retain accountability around AI usage. This are the areas around which AI is indirectly regulated under the auspices of data protection. VISIT US AT - WWW.INCILLATION.COM
  • 10. Regulation The UK financial services regulator requires that “A firm should establish and maintain appropriate systems and controls for managing operational risks that can arise from inadequacies or failures in its processes and systems (and, as appropriate, the systems and processes of third party suppliers, agents and others). In doing so a firm should have regard to: (1) the importance and complexity of processes and systems used in the end-to-end operating cycle for products and activities (for example, the level of integration of systems); (2) controls that will help it to prevent system and process failures or identify them to permit prompt rectification (including pre-approval or reconciliation processes); (3) whether the design and use of its processes and systems allow it to comply adequately with regulatory and other requirements; (4) its arrangements for the continuity of operations in the event that a significant process or system becomes unavailable or is destroyed; and (5) the importance of monitoring indicators of process or system risk (including reconciliation exceptions, compensation payments for client losses and documentation errors) and experience of operational losses and exposures”. VISIT US AT - WWW.INCILLATION.COM
  • 11. Compliance Compliance in response to regulations like SYSC 13.7 of the FCA Handbook covered above means that firms that use or are contemplating the use of AI need to be able to understand both the principles underpinning its ethical use, key regulations affecting its use in operations and controls that mitigate the key risks attached to its use. For most firms this means having a strong grasp of their data management systems / infrastructure as well as rules around the use of data generally where available. The use of non personal data is mainly unregulated. However personal data which exposes individuals to the possibility of breaches and right infringements is increasingly regulated. Documents which assess risks to personal data and which document how companies comply with regulations are key controls that mitigate the risk of inappropriate systems and controls around the operational use of AI technology. VISIT US AT - WWW.INCILLATION.COM
  • 12. Data Management Systems - DMS THE INFRASTRUCTURE THROUGH WHICH WE PROCESS OR MANAGE DATA
  • 13. DATA INPUT AND OUTPUT Output refers to the output or the finished product after data is processed – it could be websites, databases, platform. e.t.c Input refers to what we put into the computers that we use. This is usually in the form of data – including personal data and operational data (data needed to run a system – e.g alogirthms). VISIT US AT - WWW.INCILLATION.COM
  • 14. What is a Data Management System? A data management system refers to the infrastructure used to manage data in an organisation. It includes the IT system, filing systems, the software used for data input and its outputs and all of the controls used by a company to ensure that it meet legal requirements around the processing of data and IT security. Data management systems deal with infrastructure, data quality, and compliance or governance around the data. VISIT US AT - WWW.INCILLATION.COM
  • 15. INPUT AND DATA QUALITY Input consists of data around objects, subjects, variable and operations. This means that data needed to run a system can refer to any one of the above. As such to ensure that the system has adequate data, there is a need to map out data requirements and ensure that relevant data is made available to the system. Simply put – you need the right input for the right output. This ensures accuracy in the system. Data Quality : Deals with the accuracy, usefulness and breadth (representativeness) of the data that you use. It deals with the question of whether the data is understandable, easy to refer to and is extensive enough to cover the areas it needs to cover to make it fit for purpose. Issues around data quality touch on ideas such as data labelling, diversity and data design. VISIT US AT - WWW.INCILLATION.COM
  • 16. DATA COMPLIANCE AND AI GDPR – DATA PRINCIPLES – DATA RIGHTS
  • 17. Data Compliance Infrastructure This refers to the infrastructure that supports the data management system. It includes the IT systems, people who run the systems and the rules that impact the system and ways in which the system is run to make it accountable – such as Software Hardware Policies Procedures Regulatory risk assessments Governance Data protection officer Data Protection teams (Analysts / Managers / Data Protection Officer (DPO) VISIT US AT - WWW.INCILLATION.COM
  • 18. Governance Governance is all the processes of interaction be they through the laws, norms, power or language of an organized society is imposed on and regulated within a social system. In the world of AI – software creation and programming is not regulated however the use of personal data is increasingly subject to regulation. Software development while unregulated is subject to assurance. Regulation : Within the EU – personal data is protected by the GDPR (Data Protection Act 2018 in the UK). This brings it within the regulatory scope of all companies – where it is usually covered by data protection teams. Assurance : Software testing - Software Testing helps find and fix already existing mistakes and Quality Assurance helps avoid them. Both of these processes are important and if you want to meet the best quality criteria, you cannot have one without the other. This is a form of governance around the use of AI as – AI enabled software can be developed and tested to ensure that it is works and meets operational principles and guidelines. Governance focuses on data quality assurance and data compliance. VISIT US AT - WWW.INCILLATION.COM
  • 19. The key questions to ask around data use Who uses the data ? – this question reveals the data controller (data owner) and processor (user). When and where is it used? – this question deals operationally with the issues of time and jurisdiction. Jurisdiction determines the law affecting the processing of personal data. Why is it used? – this question refers to the legality of usage – the reason needs to be legal and fall within the legal basis of data processing such as consent and legitimate interest. How is it used ? – this question touches on data processing principles such as data accuracy, minimalization of data use and the protection of personal data through data rights for subjects of data processing. VISIT US AT - WWW.INCILLATION.COM
  • 20. Data Quality / Data Compliance Data quality ◦ This refers to how fit for purpose the data held by a controller is. ◦ Assurance systems such as data quality assurance ◦ Software testing ◦ Data design principles ◦ Data quality policies Data Compliance ◦ Refers to the meeting of regulatory rules and requirements. ◦ Governance processes such as data protection risk reviews – e.g. DPIA’s ◦ Data protection policies and infrastructure aimed at upholding data rights and meeting data protection principles. ◦ Regulations protecting the processing or use of data – eg personal data. VISIT US AT - WWW.INCILLATION.COM
  • 21. Data rights Focus on principles that resonate both around AI trustworthiness and its ethical use as well as personal data protection. These rights within the GDPR are ◦ the right to be informed about the collection and the use of their personal data ◦ the right to access personal data and supplementary information ◦ the right to have inaccurate personal data rectified, or completed if it is incomplete ◦ the right to erasure (to be forgotten) in certain circumstances ◦ the right to restrict processing in certain circumstances ◦ the right to data portability, which allows the data subject to obtain and reuse their personal data for their own purposes across different services ◦ the right to object to processing in certain circumstances ◦ rights in relation to automated decision making and profiling ◦ the right to withdraw consent at any time (where relevant) ◦ the right to complain to the Information Commissioner ◦ The right to be informed VISIT US AT - WWW.INCILLATION.COM
  • 22. Corresponding AI principles Transparency : This involves the data protection principles of purpose limitation, data minimisation and data storage minimisation. Data right such as the right to be informed, right to access personal data and the rights to erasure / object to processing - all come within the principle to transparency as as they are all designed to aid transparency within the use of personal data. Accountability : This involves the data protection principle that makes controllers and processors accountable for the personal data that they process. Corresponding data rights – include the rights to restrict processing, access processed data, rights in relation to automated decision making and all of of these are underpinned by the data protection principle that requires a lawful basis for the protection of personal data. Safety : This involves the security data protection principle such as that in the GDPR which states that “ you must ensure that you have appropriate security measures in place to protect the personal data you hold”. This requires that breaches of data protection such as unauthorised use of data, unauthorised access to data, and hacking are reported to data regulators. Companies can be fined for breaches of personal data protection thus ensuring that they are more likely to comply with regal requirements. Safety measures around the protection of personal data include the use of data data protection risk / impact assessments , Data protection policies, a clear desk policy, cyber / antivirus protection. IT security policies. In conclusion, much of the input that goes into AI and therefore, AI itself remains unregulated . However, personal data protection means that there is an element of governance which affects the use of AI today. Data protection is largely where AI meets Compliance in todays regulated world. There have been many arguments for the governance of AI itself – with commentators putting forth arguments such as AI itself being ungovernable – and it usage being the are subject to governance. While there is agreement on key principles around trustworthiness and the ethical use of AI this is a changing space which could be subject to governance in the near future. VISIT US AT - WWW.INCILLATION.COM