Skip to content

9 August, 2022

Subscribe Advertise About Us
  • My Account
  • Register
  • Log In
  • Log Out

Board Agenda

  • Governance
  • Strategy
  • Risk
  • Ethics
  • News
    • Categoriess

      • View All
      • Board Moves
    • ben & jerry's governance

      Ben & Jerry’s governance tested in court

      Unilever, owner of the ice cream brand, is in conflict with the governance legacy put...

    • carillion fine News round-up: this week in governance

      Audit firms' complaints about fines; Carillion directors' fines revealed; is it time to abolish the...

    • cyber security Cyber security reporting falls short

      UK companies are struggling to provide focused disclosures as cyber attacks continue to increase, says...

  • Insight
    • Categories

      • View all
      • Governance
      • Strategy
      • Risk
      • Ethics
      • Board Expertise
      • finance
      • Technology
    • ESG debate

      The ESG debate needs to be more nuanced

      The issues boards face are rarely straightforward, and ESG is no exception. It is time...

    • AI

      How to ensure governance of artificial intelligence (AI)

      An ISO standard issued this year gives guidance to boards on the governance implications of...

    • hybrid working

      Has hybridity killed teamwork?

      The time has come to check whether the benefits of teamwork are still outweighing the...

  • Comment
      • View all
    • global warming

      ESG is not a ‘distraction’

      We must not let ESG become a scapegoat for the systemic failure of our society...

    • Man with magnifying glass The 30-year itch: time to ditch the UK Corporate Governance Code

      Now that governance has come of age, businesses should be able to innovate within the...

    • notebook on boardroom table The UK needs a code of conduct for company directors

      A formal code of conduct for company directors would signal their willingness to apply high...

  • Interviews
      • View All Interviews
      • Podcasts
      • Webinars
    • Board members discussing ESG Stakeholder pressure increases urgency on ESG

      Experts say pressure to act on ESG is coming from regulators, investors and a new...

    • Empty boardroom Many executives ‘fail to understand the role and value of boards’

      A recent webinar on board effectiveness discussed the mix of competence and courage required from...

    • Businessman looking at stormy sky Disaster or disruption? Crisis management requires clear definitions

      Identifying and categorising crises, and developing a methodology to deal with them, can help boards...

  • Careers
      • View all
      • Selection
      • Board Moves
    • News round-up: this week in governance

      Tory leadership contest; Grant Thornton fined; Norwegian insider dealing; virtual AGMs; US environmental disclosures; diversity...

    • A group of diverse job candidates Diversity business case arguments may deter job candidates

      Performance-based and fairness-based arguments confirm that social identities "are a lens through which contributions will...

    • Directors waiting for an interview Gender diversity warning for FTSE All-Share Index

      Report from Women on Boards and Protiviti reveals half of FTSE All Share companies outside...

  • Resource Centre
      • White Paper Downloads
      • Book Reviews
      • Corporate & Advisory Services
    • Stakeholder Engagement: A Roadmap for UK Plc Boards

      This guide aims to provide directors and their colleagues with advice on how to ensure...

    • Board Duties in Ensuring Company Engagement with Affected Stakeholders

      This guidance note gives a brief overview of the role of corporate boards of directors...

    • C-Suite Barometer 2021

      At the end of 2021, Mazars surveyed over 1,000 executives around the world for its...

  • Events
  • Search by topic
    • Governance
    • Strategy
    • Risk
    • Ethics
    • Regulation
    • ESG
    • Investor Relations
    • Selection
    • Board Expertise
    • finance
    • Technology
  • Magazine
      • View All
      • Sustainability Works
      • Tomorrow's Leaders
      • Renumeration Tightrope
      • Governance Ascendance
      • Sense In Sustainability
      • Invisible Enemies

How to ensure governance of artificial intelligence (AI)

by Sam De Silva and Barbara Zapisetskaya

An ISO standard issued this year gives guidance to boards on the governance implications of adopting the use of AI in organisations.

AI

Image: maxuser/Shutterstock.com

In April 2022, the International Standards Organisation issued a new standard, ISO 38507, to provide guidance for the governing body of an organisation that is using, or is considering the use of, artificial intelligence (AI) and to encourage organisations to use appropriate standards to underpin their governance of the use of AI.

From IT governance to AI governance

ISO/IEC 38500 is an international standard for IT governance, published in 2008. It indicates that management should follow six principles (responsibility, strategy, acquisition, performance, conformance, and human behaviour).

Since its publication in 2008, ISO/IEC 38500 has been used as a framework for IT use, pre-implementation assessment, and post-implementation, and has sequentially evolved through the 2015 revision and the development and publication of 38500 series.

Because AI is technically based on IT, it was decided to view it as an extension of IT governance and build AI governance in a form that takes into account the characteristics of AI. Accordingly, the need for ISO 38507 was established.

Where does the board fit in?

ISO 38507 emphasises that the governing body is central to the organisation, setting its purpose and approving the strategies necessary to achieve that purpose. The governing body has a degree of influence over the use and impact of AI on an organisation and must continually assess whether the existing governance is fit-for-purpose as the use of AI changes within an organisation.

The governing body’s accountability is emphasised as being maintained across the full lifecycle of the AI technology from purchase, implementation, deployment, testing and various project phases all the way to de-commissioning.

The diagram below from ISO 38507 demonstrates how the AI system life cycle changes from inception to decommission.

The complex nature of AI ecosystems means that the degree of oversight required by governing bodies depends on a variety of factors, including the following:

• the intended use of the AI system;
• the type of AI used;
• the potential benefit the AI system will deliver;
• the new risks that can accompany the AI system;
• the stage of implementation of the AI system, amongst others.

ISO 38507 recommends that organisations take the following actions, amongst others, to place necessary constraints on the use of AI:

Increase oversight of compliance

Governance oversight within organisations should be based on policies set by the organisation and should identify effective individual and collective accountability in an appropriate chain of responsibility, which is set alongside the context of use of AI.

This includes putting policies in place to make sure AI is used appropriately, there is sufficient human oversight in place and any persons using AI are properly trained and know how to raise concerns. Legal requirements or obligations may be determined for using such technologies alongside the risk appetite of the organisation.

Address the scope of use of AI

Formulating a description of the AI system, by way of its algorithms, data and models, would assist in being transparent enough to ensure the AI technology is being deployed for its intended use.

Assess and address the impact on stakeholders

ISO 38507 notes that the governing body is responsible outside of the context of AI of shaping and defining the organisation’s desired culture, which has an impact on stakeholders connected to the organisation.

Like all ISO standards, the publication of ISO 38507 is just the starting point

ISO 38507 notes the human impact on an organisation’s culture and values. These are implicitly embedded in the behaviour of staff and advocate for human involvement to a degree in the AI process, ensuring that AI systems can be monitored and corrected when needed.

A “cultures and values board” or an “ethics review board” might be set up to supervise the impact of AI systems and make sure it is aligned to an organisation’s values and culture.

The future for AI

An organisation’s governing body shapes its purpose, mission, vision, ethos, values and culture, and has a central role in steering the strategy, resource and oversight of such activities. Governance of AI itself is key for the adoption of AI.

The stats differ widely depending on how ‘AI adoption’ in the EU is measured (7% Eurostat, 2021 or 42% European Commission, 2020), but the fact remains that a key barrier to increased uptake in use and trust in AI is how exactly AI should be governed.

ISO 38507 notes the human impact on an organisation’s culture and values

Whilst there is no universal standard on what exactly AI governance should look like, this poses a significant opportunity for legislators globally to map out what they want AI regulation to look like.

ISO have embraced the development of a separate ISO standard on AI risk management, which fits alongside the UK’s National AI Strategy which places strong emphasis on the development of global technical standards.

Earlier this year, the UK government announced the creation of a new AI Standards Hub to help organisations better utilise and benefit from AI. We hope that ISO 38507 will be promoted by the AI Standards Hub, as an additional tool that can be offered to the UK AI community.

Like all ISO standards, the publication of ISO 38507 is just the starting point, and it will continue to change as the standard is used globally. However, we expect that general governance will be the framework that management will refer to, and as a result, some form of governance assessment will be required.

Currently, ISO is developing a standard for the evaluation of IT governance, and it is expected that AI governance will require a similar standard development in the near future.

Sam De Silva is a partner and Barbara Zapisetskaya a senior associate at international law firm, CMS Cameron McKenna Nabarro Olswang LLP.

  • Facebook
  • Twitter
  • Google+
  • LinkedIn
  • Mail

Related Posts

  • Malta hosts EU corporate governance conference
    May 4, 2017
    EU flag

    Experts gather in Malta to explore digitalisation and governance.

  • FRC seeks extended corporate governance powers
    January 25, 2017
    Stephen Haddrill, FRC

    UK governance watchdog requests more disciplinary powers beyond its current scope, to include all directors of listed and larger private companies.

  • Malaysia releases new corporate governance code
    June 22, 2017
    Kuala Lumpur, Malaysia, Malaysian boards

    Malaysia aims for improvements in corporate culture with a new corporate governance code, which demands an “apply or explain an alternative” approach.

  • Corporate governance becomes an election campaign issue
    May 8, 2017
    general election, politics, political parties UK

    Politicians lay out their policies on corporate governance as general election campaigning intensifies.

For thoughtful journalism, expert insights on corporate governance and an extensive library of reports, guides and tools to help boards and directors navigate the complexities of their roles, subscribe to Board Agenda

AI, AI Standards Hub, artificial intelligence, Barbara Zapisetskaya, corporate culture, corporate governance, governance, ISO 35087, Sam De Silva, Technology

Search


Sign up to our Newsletter

Receive independent news, thoughtful journalism & expert insights about leadership, corporate governance & key boardroom issues straight to your inbox every week.

SIGN UP

Follow Us


 

 

 

 

 

Most Popular

  • ESG is not a ‘distraction’
  • Virtual AGMs fall out of favour
  • Cyber security reporting falls short
  • How to ensure governance of artificial intelligence (AI)
  • Consumers judge a company by its ‘morality’

 


 

Featured Partner Profile

Diligent

Diligent

Diligent Corporation, which was founded in 2001, is headquartered in New York, NY with a European HQ in London. Diligent’s modern governance platform empowers leaders and teams at every level of the organisation to digitally transform and create ...

Featured Partner Resources

Board Transformation 2021: Leadership in Transition

There can be little doubt that the global Covid-19...

Digital Boards: How Technology Adoption is Driving Culture Change and Resiliency

Digital tools proved their worth to boards during ...
EQ 2021 AGM Season report

2021 AGM Season: Successful AGMs in the Pandemic and Beyond

With the impacts of Covid-19 hitting just as the s...
Leadership in AI report

Leadership in AI 2021

This report from Board Agenda and Mazars, in assoc...
Creativity in a Crisis: a Boardroom Map for Innovation

Creativity in a Crisis: a Boardroom Map for Innovation

In the uncertain times at the height of any crisis...
Board Directors Guide to D&O Liability Insurance - November 2020 - AIG & Board Agenda

Board Directors' Guide to D&O Liability Insurance

Directors face liability over a range of new threa...
Leadership-in-Risk-Management-Board-Report

Leadership in Risk Management: Board Report

Board Agenda, in association with Mazars and INSEA...
Director's Guide to Internal Investigations

A Director's Guide to Conducting Internal Investigations

An internal investigation must be handled meticulo...

Global Business Complexity Index 2021

The Global Business Complexity Index 2021 provides...

 


 

ADVERTISE – FREE CORPORATE LISTING

FREE - Add your company profile to our Corporate & Advisory Directory.
ADD

ADVERTISE – PROMOTE YOUR REPORTS & WHITEPAPERS

FREE - Add your company profile to our Corporate & Advisory Directory.
Add Resource

Register Free

Register to receive free article views, selected resource downloads, and all the latest news alerts straight to your inbox. Register


  • Editors & Contributors
  • Corporate & Advisory Services
  • Media Marketing Solutions
  • Contact Us
  • Careers
  • Board Director Network
  • Terms & Conditions
  • Privacy Policy
  • Cookies
  • Sitemap
|