Responsible AI by Design

Module 5 – Accountability and Governance

Frank Rudzicz

2025-09-05

Accountability vs Governance

Rule of thumb 👍: Accountability is (a person | people); governance is a system.

  • Accountability = answerability for outcomes & impacts. A named owner makes decisions, documents rationale, fixes issues, and provides redress.
  • Governance = structures, policies, and oversight that steer the AI lifecycle (who decides, how we decide, and how we verify we did it right).

Tip

Fast test: If you can’t put one name next to a consequential decision, you have a governance process—but no accountability.

Accountability vs Governance

Dimension Accountability Governance
Question Who is answerable? How are decisions made & checked?
Unit Individual role (e.g., Model Owner) System of roles (board, committees, policies, controls)
Trigger Consequential decision, incident, or impact Always-on lifecycle (Plan-Do-Check-Act)
Time horizon Immediate to near-term (“own this release/impact”) Continuous (“how we run AI here”)
Typical decisions Ship/rollback; accept risk; approve mitigations Set risk appetite; define approval gates; assign RACI
Evidence Decision logs, sign-offs, AIIA, model/system card, incident postmortem Policies/standards; committee minutes; audit plans; monitoring reports
Escalation Clear path to senior approver; user redress Issues management; internal audit; conformity steps
Failure signal “No one owns it” / slow fixes / finger-pointing Policy on paper, no practice; approvals without evidence

Example

Situation: The team finds gender skew in a hiring-support model during pilot.

  • Accountability: Model Owner pauses deployment; documents decision; updates AIIA; approves mitigation (data rebalancing + threshold change); records rollback plan; communicates to stakeholders.
  • Governance: Model Risk Committee reviews evidence; confirms policy fit (fairness metrics, human-in-the-loop); ensures additional testing; logs decision in register; sets re-evaluation date; Internal Audit adds the control to its next review.

Takeaway: Accountability is the who and action now; governance is the how and assurance always.

Learning Outcomes

By the end of this module, you should be able to:

  • Distinguish accountability vs governance and map roles with a RACI.
  • Apply controls from ISO/IEC 42001, NIST AI RMF 1.0 + GenAI Profile, and the EU AI Act.
  • Evidence accountability with artifacts (model/system cards, datasheets, risk registers, AIIA, eval plans, logs, incident reports).
  • Design an assurance pathway (ISO 42001 certification (if available); EU AI Act conformity).

Note

To learn to do these fully would require (much) more than one online lecture. Follow up on the resources we provide. I would be happy to speak with you outside of this course, if you want to go deeper.

Why now (1/2)

  • EU AI Act:
    • entered into force 1 Aug 2024;
    • staggered application through 2025–2027.
  • Maturing Standards:
    • ISO/IEC 42001 (AIMS), NIST AI RMF 1.0 and GenAI Profile (AI 600‑1).
  • Public sector pull:
    • US OMB M‑24‑10 governance + M‑25‑22 acquisition; state/healthcare primers.

Why now (2/2)
EU AI Act key dates

  • 2 Feb 2025: Prohibitions & AI literacy start
  • 2 Aug 2025: GPAI transparency/governance duties begin
  • 2 Aug 2026: Most remaining provisions applicable
  • 2 Aug 2027: Certain embedded high‑risk products

Frameworks you can act on

  1. NIST AI RMF:
    • The core: 1) Govern, 2) Map, 3) Measure, 4) Manage
  2. ISO/IEC 42001:
    • AIMS (Plan‑Do‑Check‑Act) + documentation & improvement
  3. EU AI Act:
    • Risk‑based duties, transparency, post‑market monitoring, conformity assessment

🏛️ NIST AI RMF

AI technologies … pose risks that can negatively impact individuals, groups, organizations, communities, society, the environment, and the planet. … AI risks can emerge in a variety of ways and can be characterized as long- or short-term, high-or low-probability, systemic or localized, and high- or low-impact.

The AI RMF refers to an AI system as an engineered or machine-based system that can, for a given set of objectives, generate outputs such as predictions, recommendations, or decisions influencing real or virtual environments. AI systems are designed to operate with varying levels of autonomy (Adapted from: OECD Recommendation on AI:2019; ISO/IEC 22989:2022).

From 🔗 here

🏛️ NIST AI RMF 1.0 — What it is

  • Voluntary, outcomes-based framework to manage AI risks across the lifecycle.
  • Two parts:
    1. Foundations (risk & trustworthiness)
    2. Core (GOVERN, MAP, MEASURE, MANAGE)
  • Trustworthiness characteristics:
    • valid & reliable; safe; secure & resilient; accountable & transparent; explainable & interpretable; privacy-enhanced; fair (harmful bias managed).

From 🔗 §3

🏛️ Why this framework

  • Govern = cross-cutting (infuses Map/Measure/Manage, not a side activity).
  • Detailed categories & subcategories → tangible outcomes (policy, culture, roles, docs, engagement).
  • Built for socio-technical reality: org culture, people, processes, & tech.
  • Designed for continuous risk management and TEVV separation.

From 🔗 §5

From 🔗 here

🏛️ 1. GOVERN: Define ‘good’

  • Policy & controls reflect law/regulatory duties; trustworthiness traits embedded.
    • (GOVERN 1.1–1.4)
  • Roles & training: clear accountability lines; execs own risk decisions.
    • (GOVERN 2.1–2.3)
  • Diverse teams & oversight: human-AI role clarity; safety-first mindset.
    • (GOVERN 3.1–4.1)
  • Documentation & testing practices; incident information-sharing.
    • (GOVERN 4.2–4.3)
  • External engagement & feedback loops; third-party/supply chain risk handling.
    • (GOVERN 5–6)

From 🔗 Table 1

🏛️ 2. MAP: Make context king

  • Document purpose, settings, norms, laws, stakeholders, risk tolerances.
    • (MAP 1.1–1.6)
  • Categorize tasks/methods; describe knowledge limits & human oversight.
    • (MAP 2.1–2.2; 3.5)
  • Build in scientific integrity & TEVV plans; define proficiency standards.
    • (MAP 2.3; 3.4)
  • Analyze benefits, costs, and constraints; scope realistic use.
    • (MAP 3.1–3.3)
  • Map third-party & IP risks and impacts (positive/negative) to people & society; engage actors.
    • (MAP 4.1–5.2)

From 🔗 §5.2, Table 2

🏛️ 3. MEASURE: Evaluate results

  • Choose metrics/approaches for top MAP risks; document gaps/limits.
    • (MEASURE 1.1–1.3)
  • Evaluate trustworthiness in conditions like deployment; document generalization limits.
    • (MEASURE 2.1–2.5)
  • Assess safety, security/resilience, transparency/accountability, explainability/interpretability, privacy, fairness/bias, and environmental impact; review TEVV efficacy.
    • (MEASURE 2.6–2.13)
  • Track risks over time; enable feedback from users/communities.

🏛️ 4. MANAGE: Decide, treat, monitor

  • Make go/no-go calls; prioritize treatment by impact × likelihood × resources.
    • (MANAGE 1.1–1.4)
  • Plan and implement mitigations; sustain value; recover from emergent risks.
    • (MANAGE 2.1–2.4)
  • Manage third-party and pre-trained model risks.
    • (MANAGE 3.1–3.2)
  • Run post-deployment monitoring, incident response, change management, and communications—continually.
    • (MANAGE 4.1–4.3)

From 🔗 §5.4, Table 4

🌍 ISO/IEC 42001 — What it is

  • ISO/IEC 42001:2023 is the first AI Management System (AIMS) standard.
    • Requirements to establish, implement, maintain, and continually improve how your org governs AI.
    • It’s certifiable, similar in spirit to ISO 27001.
  • Applies organization‑wide (not just a single model or project).
  • Works for any org that develops, deploys, or uses AI systems.

From 🔗 here

An 🔗 overview

🌍 Why ISO/IEC 42001

  • It’s a management system that embeds AI governance into everyday work — not a one‑off checklist.
  • Aligns with adjacent AI standards you can plug in:
  • Plays nicely with NIST AI RMF and public‑sector governance (e.g., OMB).

🌍 The 42001 engine

flowchart LR
    P(Plan<br>Context • Policy • Risk criteria) --> D(Do<br>Ops • Competence • Controls)
    D --> C(Check<br>Monitoring • Internal audit)
    C --> A(Act<br>Corrective action • Improvement)
    A --> P
classDef default stroke-width:2px;

  • Plan: define scope, context, roles, policy, and risk criteria (use 23894 for AI‑specific risk).
  • Do: operate controls across the AI lifecycle (use 5338 as the lifecycle spine).
  • Check: monitor & measure; run internal audits.
  • Act: corrective actions and continual improvement.

🌍 Using 42001 in practice

  1. Scope & inventory — define AIMS scope; list AI systems in scope.
  2. Policy & roles — publish an AI policy; name accountable owners; train staff.
  3. Risk process — adopt ISO/IEC 23894 for risk identification/treatment; set risk criteria.
  4. Lifecycle & controls — map your build/ship cycle to ISO/IEC 5338; embed procedures (data governance, evaluation, logging, change mgmt).
  5. Impact assessment — run ISO/IEC 42005 AIIA where impacts are higher.
  6. Assurance — monitor, run internal audits, fix findings; consider certification.

🌍 ISO/IEC 42001
That for which auditors look

  • Scope & context • risk criteria • documented procedures • competence/awareness
  • Evidence artifacts: inventories • AIIA • evaluation plans • logging • incident records

🇪🇺 EU: What it is

  • EU regulation establishing a common legal framework for AI use in the EU.
  • Entered into force: 1 Aug 2024; applies gradually over the next 6–36 months.
  • A product‑regulation approach: obligations primarily on providers and professional deployers.
  • Scope: most AI systems; notable exemptions for military, national security, and pure research; non‑professional use generally out of scope.

See 🔗 here

🇪🇺 Risk‑based structure (plus GPAI)

  • Five buckets:
    • Unacceptable riskbanned (e.g., social scoring; certain real‑time remote biometric ID in public; manipulative systems — with narrow exemptions).
    • High risk → conformity assessment + obligations (quality, security, transparency, human oversight, lifecycle monitoring).
    • Limited risktransparency duties (e.g., disclosure for AI interactions, deepfakes).
    • Minimal risk → unregulated (e.g., spam filters, games); voluntary codes encouraged.
    • General‑purpose AI (GPAI)transparency requirements; reduced duties for open‑source models.

🇪🇺 GPAI & systemic risk

  • What’s special?
    • GPAI addresses generative/foundation models.
    • Transparency: training‑data summary & copyright policy; reduced requirements for open‑source.
    • Systemic‑risk GPAI: additional evaluations where capability may cross computational/capability thresholds.

Application timeline

flowchart LR
  A[1 Aug 2024<br>Act enters into force] --> B[+6 months<br>Bans on<br>unacceptable risk]
  A --> C[+9 months<br>Codes of practice]
  A --> D[+12 months<br>GPAI obligations]
  A --> E[+24 months<br>Most obligations]
  A --> F[+36 months<br>Some high‑risk duties]

🇪🇺 Governance & enforcement

  • EU‑level & national bodies:
    • AI Office (European Commission): coordinates implementation; oversees GPAI providers.
    • European Artificial Intelligence Board: Member State reps for consistent application.
    • Advisory Forum & Scientific Panel support technical/sector input.
  • Conformity assessment under the New Legislative Framework; standards via CEN/CENELEC JTC 21; self‑assessment or notified bodies depending on use case.

🇪🇺 Exemptions, extraterritoriality & harmonization

  • Exemptions: AI for military, national security, and pure research is out of scope.
  • Extraterritorial reach: applies to providers outside the EU offering systems in the EU.
  • Maximum harmonization: Member States can’t add extra rules for minimal‑risk systems.

🇪🇺How organizations use this (👀)

  1. Classify your AI systems by risk tier (incl. GPAI vs. application‑specific uses).
  2. For high‑risk: assemble technical documentation, plan conformity assessment, set human oversight & monitoring.
  3. For GPAI: prepare transparency artifacts (training‑data summary, copyright policy); check systemic‑risk triggers.
  4. Map obligations to existing governance (e.g., ISO 42001 AIMS, NIST AI RMF) and set a timeline aligned to 6/9/12/24/36‑month milestones.
  5. Track EU‑level guidance (AI Office/Board) and evolving standards for detailed requirements.

Unofficial risk‑tier classifiers (👀)

Warning

These are guidance aids, not legal determinations.

Use them to triage and document rationale before formal conformity steps.

How to use + official anchors

  1. Triage with the FLI checker; if ambiguous, run the Algorithm Audit questionnaires.
  2. Validate “high‑risk” logic against the legal text:
    Article 6 (classification rules)Annex III (listed high‑risk use‑cases).
  3. Benchmark similar use‑cases in the appliedAI database; record reasoning.
  4. Track official guidance and timeline on the Commission’s AI Act page; update your internal procedure as guidance/standards evolve.

Tip

Save screenshots/PDF of each decision path to your technical documentation & risk register.

(Bonus) 🇸🇬 Singapore
Model AI Governance Framework

  • Practical, testable controls (accountability, testing, content provenance)
  • “Crosswalks” to ISO 42001 and NIST AI RMF available via AI Verify
  • Use AI Verify artifacts for testing & transparency
  • Useful in RFPs and internal assurance

See 🔗here

🇨🇦 Where Canada fits

Org design (who owns what)

  • Board / Execs: approve policy, set risk appetite, receive assurance.
  • Chief AI / Risk Owner: accountable for the AIMS; resolves escalations.
  • AI Steering / Model Risk Committee: cross‑functional gate for material changes.
  • Model Owner (per system): end‑to‑end accountability; maintains evidence.
  • Data Steward / Privacy / Security: domain controls; sign‑offs aligned to risk.
  • MLOps/SRE: deployment controls, monitoring, rollback.

Note

Mapped to: NIST GOVERN 1–3 • ISO/IEC 42001 §5.2/§7–10, Annex A.5–A.7 • EU AI Act Arts. 9, 17; Ch. VII.

Committee structure (visual)

flowchart TB
  B[Board / Execs] -->|risk appetite & oversight| G[AI Governance Policy]
  G --> C[AI Steering / Model Risk Committee]
  C -->|approve gates| MO[Model Owner]
  C -->|advice| DS[Data Steward / Privacy / Security]
  MO -->|deploy & monitor| OPS[MLOps / SRE]
  MO --> EVID[Evidence: AIIA • system card • logs]

Note

Mapped to:

  • NIST GOVERN 2.1–2.3
  • ISO/IEC 42001 Annex A.5 (roles, responsibilities).

🇨🇦 Public‑sector gates

  1. Scope check: Confirm your system is an automated decision system within DADM scope (incl. partial automation & human‑in‑the‑loop).
  2. Run an AIA: Complete the Algorithmic Impact Assessment → get Impact Level (1–4).
  3. Peer review: For Impact Level ≥ 2, arrange expert peer review and publish the review (or a plain‑language summary) before production.
  4. Notice & explanation: Provide plain‑language notice and explanation appropriate to the impact level; keep documentation current.
  5. Monitoring & incidents: Establish post‑deployment monitoring, incident response, and change‑management; re‑assess AIA on material changes.
  6. Generative AI guardrails: Apply GC GenAI guide (copyright, data handling, safeguards, human oversight) when relevant.

Important

I am not a lawyer. This is not legal advice.

RACI — lifecycle starter

Phase Data Training Evaluation Deploy Monitor Retire
A Product Owner Model Owner Model Owner Product Owner Model Owner Product Owner
R Data Steward ML Lead Eval Lead Platform Eng MLOps/SRE Product+Risk
C Legal/Privacy,Risk Legal/Privacy,Risk SME, Legal, DEI Security, Legal Legal/Privacy, UX Legal/Privacy
I DPO/Privacy CTO, PMO CTO, PMO Board/Exec Board/Exec Board/Exec

Note

Mapped to: NIST GOVERN 2.x • ISO/IEC 42001 Annex A.5 • EU AI Act Arts. 9/17.

Policy controls (what rules exist)

  • AI policy; prohibited uses; approvals; third‑party procurement and model intake.
  • Risk appetite statements tied to use‑case criticality.
  • Documentation & disclosure expectations (e.g., user‑facing notices).

Note

Mapped to: NIST GOVERN 1.x • ISO/IEC 42001 §5.2, Annex A.5 • EU AI Act transparency & documentation.

Process controls (how it happens)

  • AI Impact Assessment (AIIA) proportional to risk; sign‑offs before launch.
  • Human‑in‑the‑loop plans; escalation paths; change management.
  • Incident response & post‑market monitoring procedures.
  • Red‑teaming / safety evaluations pre‑deployment on risky features.

Note

Mapped to: NIST MAP 1–3; MANAGE 1–4 • ISO/IEC 42001 §8–10; 42005 (AIIA) • EU AI Act post‑market obligations.

🇨🇦AIA impact levels & evidence

Impact level Peer review Notice / explanation Typical evidence
1 – Little Not required Basic notice/explanation AIA record; risk register; testing notes
2 – Moderate Required (≥1 expert); publish review or summary pre‑prod Plain‑language notice; explanation AIA + peer review; change log; monitoring plan
3 – High Required (≥1 expert); publish Plain‑language plus how human used output All of the above + oversight plan; contingency
4 – Very high Required (≥2 experts); publish Enhanced explanation & comms All of the above + executive sign‑offs; audit plan

Warning

Exact obligations scale with impact level under the DADM. Keep links to the published peer review and explanations.

Technical controls
(what we measure/guard)

  • Evaluation plan covering robustness, safety, security, privacy, fairness, misuse.
  • Guardrails / policies; event logging and traceability; content provenance where applicable.
  • Staged rollout; model/service SLOs and kill‑switch/rollback.

Note

Mapped to: NIST MEASURE 2.x; MANAGE 2.x • ISO/IEC 42001 Annex A.6–A.7 • EU AI Act Art. 15–16, 61–62.

Crosswalk

ISO 42001 ↔︎ NIST RMF ↔︎ EU AI Act

Control ISO/IEC 42001 NIST AI RMF/GenAI EU AI Act
Governance & roles §5.2; Annex A.5 GOVERN (GV‑) Ch. VII (Arts. 70–79)
Risk mgmt §6; ISO 23894 MAP/MEASURE/MANAGE Art. 9; Ch. III
Impact assessment ISO 42005 MAP (impacts) Arts. 29, 61–62
Data governance Annex A.7 Data governance tasks Art. 10
Evaluation/testing Annex A.6 MEASURE (TE‑); GenAI Profile Conformity assess.
Logging/traceability A.6.2.8 MEASURE/MANAGE Post‑market
Incident response §8–10 MANAGE (IR‑) Serious incidents

Note

Use this table when assigning owners to controls in the RACI.

Artifacts you should keep

  • Model/System Cards, Datasheets, evaluation reports.
  • Deployment change logs; versioning; rollback plans.
  • User disclosures and help content; accessibility notes.
  • Monitoring dashboards; incident reports.

Note

Mapped to: NIST MEASURE 3–4; MANAGE 4.x • ISO/IEC 42001 §9–10 • EU AI Act technical documentation & post‑market.

What “good” looks like
(template hints)

  • Purpose & scope; intended/out‑of‑scope uses.
  • Data sources & preprocessing; links to Datasheets.
  • Evals across groups/contexts; limitations & failure modes.
  • Safety measures & guardrails; human oversight & escalation.
  • Monitoring signals & thresholds; incident playbook; contacts.

Note

Mapped to: NIST GOVERN 4.x; MEASURE 2.x • ISO/IEC 42001 Annex A.6–A.7.

Internal assurance (1st/2nd/3rd line)

  • 1st line (teams): Own the risk and the artifacts. They maintain the AI inventory, RACI, eval plans, logs, rollback plans, and incident records.
    • What I look for: current system card, recent eval report, and evidence of change control (who approved the last version and why).
  • 2nd line (risk/compliance): Set the policy and challenge decisions. They define the AIIA template, thresholds, and sign-off criteria; they monitor KRIs.
    • What I ask: “Show me the risk appetite for this use case and where the latest metrics sit vs thresholds. When did you last re-assess after a material change?”
  • 3rd line (internal audit): Independent testing and assurance to the audit committee. Scope includes inventory completeness, control design/effectiveness, and evidence integrity.
    • Typical tests: can we reproduce the evaluation? do logs prove who changed what and when? was the rollback drill executed in the last 6 months?

Internal assurance (example)

  • E.g., Hiring support model flagged group disparity. 1st line paused rollout and updated AIIA; 2nd line challenged thresholds and approved mitigations; 3rd line verified logs, sign-offs, and that monitoring caught the issue.
  • If you remember one thing: first line owns, second line challenges, third line verifies—and all three leave evidence.

External assurance

  • ISO/IEC 42001 certification (scope‑bound) to evidence an AIMS.
  • EU AI Act conformity assessment where applicable (high‑risk); notified bodies.
  • Use recognized evaluation methods (e.g., GenAI Profile tasking) to support claims.

Note

Mapped to: NIST MEASURE/MANAGE • ISO/IEC 42001 certification • EU AI Act conformity routes.

Assurance plan (template)

Assurance Plan — One‑Pager (Template)

Date: 2025-09-02

1) System & Scope

  • System name / version:
  • Use case / purpose:
  • Owner (Accountable):
  • Criticality tier (T1/T2/T3):
  • Reg. tier (EU AI Act / other):
  • Public‑sector impact level (if AIA):

2) Obligations & Framework Mapping (refs only)

  • Frameworks: ISO/IEC 42001 §§, NIST RMF (GV/MAP/MEASURE/MANAGE), EU AI Act Articles
  • Policies/standards that apply:
  • Jurisdictions:

3) Controls in Scope (link to artifacts)

  • Policy/process/technical controls:
  • Artifacts: Inventory entry • AIIA • Model/System Card • Eval Plan • Logs • Incident Playbook

4) TEVV (Pre‑deployment)

  • Metrics & thresholds:
  • Datasets & environment:
  • Red‑team / safety tests:
  • Go/No‑Go criteria:

5) Deployment & Change

  • Rollout stages:
  • Human‑in‑the‑loop / escalation:
  • Change mgmt (what needs re‑approval):

6) Monitoring & KRIs

  • Signals & SLO/M(S)LOs:
  • Drift/bias/abuse checks & cadence:
  • Alerting & dashboards (links):

7) Incidents & Communications

  • Detect → Respond → Learn workflow:
  • Time targets (MTTD/MTTR/Disclosure):
  • Regulatory/board/user comms triggers:

8) Evidence for Assurance

  • Sampling approach (versions/datasets):
  • Reproducibility steps:
  • Log sources & retention:

9) Roles & Schedule

  • RACI (A/R/C/I):
  • Key dates (testing, launch, reviews):

10) Approvals

  • Owner: ______ 2nd line (Risk/Privacy/Sec): ______ Audit (if req’d): ______ Date: ______

11) Links

  • Inventory | AIIA | Model/System Card | Eval plan | Peer review | Monitoring | Incident playbook

Assurance plan (example)

Assurance Plan — One‑Pager (Worked Example)

System: GenAI Student Services Assistant · Date: 2025-09-02

1) System & Scope

  • System: CampusAssist v0.9
  • Use case: Answer student queries; route sensitive issues to staff
  • Owner (A): Dana Lee (Director, Student Success)
  • Criticality: T2 (material impact, not rights‑critical)
  • EU AI Act tier: Limited risk (transparency); GPAI provider: third‑party (open‑source LLM)
  • AIA (if public‑sector): Impact Level 2 (peer review required)

2) Obligations & Framework Mapping

  • Frameworks: ISO/IEC 42001 §§5–10; NIST RMF (GV, MAP, MEASURE, MANAGE); EU AI Act Arts 50 (transparency)
  • Policies: AI policy v1.2; Data Handling Std; GenAI Use Guide
  • Jurisdictions: CA (provincial privacy); EU users blocked pending DPIA

3) Controls in Scope

  • Controls: Transparency notice; content filters; HITL for financial/immigration topics; change mgmt for prompts/models
  • Artifacts (links): Inventory#124 · AIIA v0.4 · System Card v0.9 · Eval Plan v0.9 · Logging Spec · Incident Runbook

4) TEVV (Pre‑deployment)

  • Metrics: Factuality ≥ 85%; PII leakage ≤ 0.1%; Toxicity < 0.5%; Disparity ratio ≥ 0.9 for routing
  • Datasets/env: July eval set; sandbox env; seeded red‑team prompts (100)
  • Red‑team: jailbreak/respectful‑language/PII exfiltration; pass ≥ 95% blocks
  • Go/No‑Go: all metrics met; no Sev‑1 open issues; rollback verified in staging

5) Deployment & Change

  • Stages: pilot (10% traffic) → 50% → 100% over 2 weeks
  • HITL: staff review for flagged categories; escalate to duty manager within 2h
  • Change mgmt: re‑approve for model upgrade, new data connectors, or new high‑impact intents

6) Monitoring & KRIs

  • Signals: response quality, refusal rate, flagged content, PII detections, latency
  • SLOs: helpful ≥ 80%; unsafe ≤ 0.3%; PII alerts ≤ 1/day; p95 latency ≤ 2s
  • Dashboards: Grafana board “CampusAssist”; weekly risk email

7) Incidents & Communications

  • Workflow: detect (alerts) → triage (on‑call) → mitigate (killswitch) → postmortem (48h) → user notice (as needed)
  • Targets: MTTD ≤ 15m; MTTR ≤ 4h; disclosure ≤ 72h if PII exposed
  • Triggers: PII spill; safety breach; systemic bias; legal request

8) Evidence for Assurance

  • Sampling: versions v0.8–v1.0; datasets Jan/Apr/Jul; environments dev/stage/prod
  • Repro: store eval seeds; pin model/image; capture config/prompt
  • Logs: model & app logs stored 180 days; signed & tamper‑evident

9) Roles & Schedule

  • RACI: A=Owner; R=ML Lead & SRE; C=Privacy/Sec/Legal; I=Dean’s Office
  • Dates: Go‑live 2025‑09‑15; quarterly profile & AIIA review

10) Approvals

  • Owner: D. Lee 2nd line: P. Singh (Privacy) / R. Chen (Security) Audit: N/A (Q1)
  • Date: 2025‑09‑05

11) Links

  • Inventory: https://… · System Card: https://… · AIIA: https://… · Peer review: https://… · Monitoring: https://…

Activity 5.1: Mock AI Governance

Your task (solo): Design a mock AI governance policy outline for one AI system of your choice (real or hypothetical). Include these sections:

  • Scope & owner: system name, purpose, and Accountable owner.
  • RACI (lifecycle): A/R/C/I for Data → Training → Evaluation → Deploy → Monitor → Retire.
  • Prohibited uses & approvals: clear “no‑go” examples; intake → pre‑deploy sign‑offs.
  • Third‑party/model intake: supplier docs (model card/evals), license & training‑data sources.
  • Risk appetite tiers: T1/T2/T3 thresholds relevant to your system (e.g., error, disparity, MTTR).
  • Documentation & disclosure: user notices, explanation, contact/escalation.
  • Monitoring & incidents: signals, SLOs, killswitch/rollback, incident workflow.

Deliverables: PDF or markdown/QMD. Name like: PolicyOutline_<YourName>_<System>.pdf.

Submission checklist & rubric

Checklist (attach or embed):

\(\square\) Policy outline (1-2 pages)
\(\square\) RACI table (0.5 page, one A per phase)
\(\square\) Framework mapping (references; inline footers or a short table)

Looking Ahead

Next module: Privacy & Data Ethics

Reading — Core frameworks & policy

Reading — Executive/board & sector primers