The AI Governance Brief – Détails, épisodes et analyse

Seventy-five percent of HR leaders report that managers are overwhelmed and not equipped to lead change. But before you dismiss this as a middle management problem, consider: by the time information reaches the CEO, it has been filtered, softened, and "customised to cater to superiors' expectations" at every level. Researchers call it "interpreting upwards."

You're not leading the organization you think you're leading. You're leading the organization people want you to believe exists.

And that organization is a fiction.

In This Episode:

• The CEO Bubble Is Real
  • Gartner 2025: 75% of managers overwhelmed and unequipped to lead change
  • CEIBS research: Information is "interpreted upwards" at each level—filtered, softened, divorced from ground truth
  • 66% of employees hide aspects of themselves from senior leaders
  • 80% of C-suite executives "cover" with almost everyone around them
• You Cannot Move an Organization You Don't Understand
  • The org chart is a legal fiction—necessary for compliance, useless for understanding how work gets done
  • The 80/20 reality: 20% of people drive 80% of influence—and they're not always the people with titles
  • With just 20 influential employees identified through ONA, companies can reach 70% of the entire organization
• The Seven Types of Informal Power
  • Expertise-Based Power (technical knowledge, organizational memory)
  • Reputational Power (track record, reliability)
  • Relational Power (access to key people, social capital)
  • Cultural Gatekeeping (control over "how things are done here")
  • Information Brokerage (bridging disconnected groups)
  • Resource Control (informal control over budgets, tools, access)
  • Positional Proximity (closeness to decision-makers)
• Network Position Metrics That Matter
  • Degree Centrality: Direct connections—ability to spread information or resistance quickly
  • Betweenness Centrality: Bridge between disconnected groups—the brokers with cross-silo perspective
  • Eigenvector Centrality: Connected to other highly connected people—systemic influence
• Why Your AI Governance Initiative Will Fail
  • You'll launch through formal channels targeting formal authority
  • You'll miss the informal systems that actually determine what people do
  • Predictable arc: announcement → compliance → erosion → irrelevance
  • Wells Fargo, Boeing: Executives were the last to know about problems employees understood clearly

Your Seven-Day Action Plan:

Days 1-3: Map one network—ask 15 people across levels: "When you need to get something done outside the normal process, who do you go to?" Days 4-5: Schedule three skip-level conversations two to three levels down Days 6-7: Identify one gap between the organization you thought you had and the organization you actually have

Ready to see your actual organization?

Understanding informal power structures isn't optional for AI governance success. It's the foundation everything else depends on.

organizational network analysis, informal power structures, executive blindness, AI governance failure, organizational psychology, skip-level meetings, change management, CEO bubble, interpreting upwards, informal influencers, psychological safety, organizational intelligence 

Six months ago, I worked with a healthcare technology company that had everything CRA compliance requires on paper: executive sponsorship confirmed, steering committee formed, product inventory complete, SBOM tools selected, documentation templates created. Six months of planning. Six months of meetings. Six months of preparing to prepare.

When I asked how many products had achieved conformity-ready status, the answer was zero.

They had mistaken planning for progress. And September 2026 was now six months closer.

In This Episode:

• Why Knowledge Isn't the Barrier—Execution Is
  • CRA requires simultaneous changes across Engineering, Product, Security, Legal, Quality, and Documentation
  • Each function has competing priorities and limited capacity
  • Without structured change management, organizational capacity overwhelms and implementation stalls
• The Three-Phase Implementation Roadmap
  • Phase One (Now → Early 2026): Governance, inventory, SBOM infrastructure, documentation systems
  • Phase Two (Mid-2026 → September 2026): PSIRT operationalization, vulnerability reporting workflows, 24-hour response verification
  • Phase Three (Late 2026 → December 2027): Complete documentation, conformity assessment, EU Declaration preparation
• Quick Wins That Build Momentum
  • Week 1: Executive sponsor announcement
  • Week 2: Single business unit inventory
  • Week 3: First compliant SBOM
  • Week 4: Pilot product risk assessment
  • Week 6: Control mapping to existing frameworks
  • Week 8: Complete documentation package for pilot product
  • Week 12: Tabletop vulnerability exercise
• Overcoming the Five Resistance Patterns
  • "We don't have time" → Explicit deprioritization decisions
  • "This isn't my responsibility" → RACI matrix clarity
  • "We already do this" → Evidence-based gap analysis
  • "The deadline is far away" → Phase gate accountability
  • "Let's wait for regulatory clarity" → Risk-based implementation
• The Cost of Delay (Quantified)
  • 20 months remaining allows phased implementation
  • 14 months remaining requires 30% faster implementation
  • 8 months remaining requires 2.5x resource multiplication
  • Notified body calendars are filling NOW
  • Talent competition is intensifying
• From Project to Operational Discipline
  • December 2027 isn't the finish line—it's the starting line
  • SBOM generation must become permanent pipeline capability
  • Vulnerability monitoring must become continuous
  • Documentation must be maintained as products evolve
  • Conformity must be reassessed when products change materially

Your Fourteen-Day Action Plan:

Days 1-3: Formalize executive commitment with documented engagement cadence Days 4-6: Identify specific individuals for CRA work with time allocation Days 7-9: Select three quick wins achievable in 90 days with owners and dates Days 10-12: Define Phase One milestones with specific completion dates Days 13-14: Prepare and distribute program kickoff communication

Deliverables:

1. Documented executive commitment with engagement cadence
2. Named resource allocation with sponsor approval
3. Selected quick wins with owners and dates
4. Phase One milestone schedule
5. Program kickoff communication

Ready to convert knowledge into action?

The First Witness Stress Test reveals where your organization stands today—and builds the implementation roadmap that converts planning into progress. Stop preparing to prepare. Start executing.

CRA implementation, CRA change management, compliance program execution, CRA roadmap, September 2026 compliance, CRA quick wins, compliance momentum, CRA phase gates, regulatory implementation, CRA operational discipline, compliance transformation, CRA program management 

Over 700 court cases worldwide now involve AI hallucinations. Sanctions range from warnings to five-figure monetary penalties.

The EU AI Act goes into full enforcement August 2nd, 2026—190 days from today. Penalties reach €35 million or 7% of global revenue, whichever is higher.

And here's the impossible situation Legal finds itself in: They're expected to defend AI decisions they weren't consulted about, using systems they didn't approve, with training data they can't audit, against regulations that didn't exist when the AI was deployed.

"We trusted the vendor" isn't a defense. It's an admission of negligence. And Legal gets blamed anyway.

**The Regulatory Tsunami:**

**EU AI Act Timeline:**
- August 1, 2024: Entered into force
- February 2, 2025: Prohibited AI practices and AI literacy obligations
- August 2, 2025: Governance provisions and GPAI model obligations
- August 2, 2026: Full enforcement for high-risk AI systems

**Penalties:**
- Up to €35 million OR 7% of worldwide annual turnover (whichever is higher)
- €15 million or 3% for other infringements
- €7.5 million or 1% for supplying incorrect data

The EU AI Act has extraterritorial reach. If you offer AI systems to EU users—regardless of where your company is based—you're covered. Just like GDPR.

**The US State Patchwork:**

- Colorado AI Act: Effective June 2026—risk management policies, impact assessments, transparency
- Illinois HB 3773: Effective January 1, 2026—can't use AI that results in bias "whether intentional or not"
- NYC Local Law 144: Independent bias audits annually, public disclosure required
- California: Four-year data retention for automated decision data

That's state-by-state compliance complexity. And more states are introducing bills in 2026 with private rights of action, punitive damages, and invalidation of forced arbitration.

**Litigation Explosion:**

- 700+ court cases involving AI hallucinations
- Copyright litigation targeting training data and fair use
- Product liability lawsuits against LLM developers
- Illinois BIPA cases allowing "extremely high damages"
- Emerging "agentic liability" where autonomous AI takes binding legal action

**Five Critical Legal Failures:**

**Failure #1 - The Reactive Posture:**

Typical timeline: Business deploys AI → IT implements → Months pass → Problem surfaces → NOW Legal gets involved.

By the time Legal sees the system, decisions are baked in. Training data is historical. Vendors are contracted. Legal is asked: "Can you defend this?"

That's not governance. That's damage control after the damage is done.

**Failure #2 - The Mapping Void:**

The EU AI Act requires a fundamental first step: AI system mapping. Identify every AI system, classify by risk level, determine provider vs. deployer obligations.

How many organizations have completed this? Most haven't even started.

Without the map, you can't comply. And Legal can't defend what it can't describe.

**Failure #3 - The Data Lineage Black Box:**

Your AI model was trained on historical data. That historical data reflects historical bias—discrimination that was LEGAL when it happened but creates ILLEGAL outcomes now.

Example: Resume screening AI trained on 10 years of hiring data from a company that historically hired predominantly male engineers. The AI learns "good candidate" correlates with male markers. It doesn't need gender data—it uses proxy markers.

When that AI screens out qualified female candidates in 2026, you have discrimination. "Neutral historical data" doesn't matter. The outcome is illegal.

Legal's question: Can you even audit the training data? Many organizations can't. Vendors won't disclose "proprietary" training corpora. Models trained on internet scrapes include copyrighted and potentially illegal source material.

**Failure #4 - Human Oversight Theater:**

A human "reviewing" 500 AI hiring recommendations per day isn't providing oversight. That's rubber-stamping.

True human oversight requires:
- Understandable explanations (not just "the algorithm recommends")
- Genuine authority to override
- Reasonable caseload
- Clear escalation protocols
- Documentation of override reasoning

Most organizations have none of these. When plaintiff's attorney shows the reviewer approved 99.7% of AI recommendations, "we had human oversight" won't survive.

**Failure #5 - The Vendor Accountability Gap:**

Standard vendor due diligence—SOC 2 reports, security questionnaires—doesn't address AI-specific risks. You need:
- Training data provenance documentation
- Bias audit methodology and results
- Model update procedures
- Incident response for AI errors
- Liability allocation for discriminatory outcomes

Most vendor contracts have none of this. When Legal asks post-deployment, vendors say: "That's proprietary."

Now you're using AI you can't audit, can't explain, and can't prove doesn't discriminate—but you're 100% liable for its outcomes.

**The Legal Accountability Framework:**

Legal can't prevent AI risk. Legal ensures organizational accountability for AI risk.

**Function #1 - Risk Translation:**

Legal translates complex, evolving regulatory requirements into actionable business controls. The EU AI Act is 180 recitals and 113 Articles. State laws create patchwork obligations.

Legal must translate this into: "Here's what we must do. Here's what we should do. Here's what reduces liability."

**Function #2 - Pre-Deployment Compliance Gate:**

Legal must have formal authority to block AI deployments with unacceptable legal risk.

Before ANY AI system touches customer data, employee data, or business-critical decisions:
1. Risk Classification: High-risk under EU AI Act? State laws?
2. Data Lineage Review: Can we document and defend training data?
3. Bias Audit Verification: Independent audit conducted? Results acceptable?
4. Human Oversight Protocol: Genuine review structured and resourced?
5. Vendor Liability Allocation: Contracts assign responsibility for AI errors?
6. Documentation Completeness: Can we survive discovery?

If answers are "no" or "unclear," deployment doesn't proceed.

**Function #3 - Continuous Compliance Monitoring:**

- Quarterly AI Compliance Reviews (not annual—regulations evolve mid-year)
- Regulatory Horizon Scanning for pending legislation
- Incident Documentation Protocol for every AI error

**Function #4 - Cross-Functional Governance Leadership:**

Legal must have:
- Veto authority over high-risk AI deployments
- Co-approval authority on vendor selection
- Escalation authority to CEO/Board
- Budget authority for compliance infrastructure

**The AI Legal Operations Model:**

**Stage 1 - Regulatory Compliance Infrastructure:**

- AI Regulatory Calendar: Live tracker of EU AI Act dates, state law effective dates, audit requirements
- Jurisdiction Matrix: Map where you have employees, customers, EU data processing, high-risk systems
- Compliance Team Structure: Dedicated Legal AI Specialist, Privacy/Compliance partnership, external counsel on retainer

**Stage 2 - AI-Specific Contract Provisions:**

- Training Data Warranty: Legally obtained, no copyright violation, no discrimination patterns, auditable
- Bias Audit Requirements: Independent annual audit, methodology disclosure, model updates if disparate impact found
- Incident Response: 24-hour notification, 5-day root cause analysis, 10-day corrective action
- Liability Allocation: Clear responsibility for discriminatory outcomes, indemnification, AI-specific insurance
- Discovery Cooperation: Expert testimony, technical documentation, no "...

Forty-five percent of workers now use AI regularly. Confidence in using that AI? Down 18% in the last year.

That's not a typo. AI usage jumped 13% while trust collapsed.

Workers are using tools they don't trust, haven't been trained on, and increasingly fear will replace them. Fifty-seven percent of employees hide their AI usage from employers. Half can't tell if their AI-generated work is even accurate.

And here's the nightmare: 56% of the global workforce reports receiving NO recent training. None.

While management deploys AI at breakneck speed and HR scrambles to audit bias, frontline workers are left to figure it out alone—with their jobs on the line.

**The Great Disconnect:**

ManpowerGroup's 2026 Global Talent Barometer—released January 20th—reveals catastrophic results:

- AI usage jumped 13% to 45% of workers
- Confidence in using technology fell sharply by 18%
- For the first time in three years, overall worker confidence declined
- Baby Boomers: 35% decrease in tech confidence
- Gen X workers: 25% drop

More than half the global workforce—56%—reports receiving no recent training. Fifty-seven percent have no access to mentorship opportunities.

You're deploying AI faster than ever while systematically denying workers the support they need to use it.

**The Assumption That's Completely Wrong:**

The belief that workers are resistant to AI? Wrong.

A Weavix survey of 300 frontline manufacturing workers found:

- 74% are comfortable with AI-powered tools
- 87% are comfortable with data collection for safety and efficiency
- 81% report being MORE engaged at work than last year
- 94% are optimistic about workplace safety improvements in 2026

Nearly nine in ten frontline workers are FINE with AI monitoring if it improves safety and efficiency. The problem isn't worker resistance.

[CLIP] "Workers are comfortable with AI and data collection, but their leaders have hamstrung them with prehistoric communication devices or nothing at all."

67% of manufacturing workers still rely primarily on outdated two-way radios. 64% operate under smartphone restrictions. They're ready for AI. Management is blocking them with 1990s infrastructure.

**The Hidden AI Crisis:**

According to a KPMG and University of Melbourne study: 57% of employees HIDE their AI usage from employers.

They're using AI anyway. They just don't tell you.

And half of those workers can't tell whether the AI-generated content they're creating is even accurate. They're publishing work they don't trust because they need to keep up.

That's the "AI workslop" crisis—poorly created AI content that "can sound authoritative and accurate but lacks the examples and detail that individuals require for behavior change."

This isn't just inefficiency. It's organizational sabotage from the bottom up, created entirely by management failure to include workers in AI transformation.

**Four Worker-Level Failures:**

**Failure #1 - The Training Void:**

- Over 90% of global enterprises face critical skills shortages by 2026
- Sustained skills gaps risk $5.5 trillion in losses from global market performance
- Only one-third of employees report receiving ANY AI training in the past year
- OECD found most AI training focuses on advanced skills only 1% of jobs require

Result: "AI workslop"—managers using AI to write performance reviews without considering actual performance. AI-enabled dereliction of duty.

**Failure #2 - The Participation Gap:**

Who's typically on AI Governance Committees? C-Suite, IT leadership, Legal, Compliance, HR directors. Who's NOT? Frontline workers—the people who actually USE AI daily.

Workers with 20+ years of experience: Only 29% feel their feedback reaches decision-makers.

This creates "Shadow Participation"—workers shaping AI adoption through workarounds, hidden usage, and informal experimentation. 57% of your AI adoption lessons are invisible to you.

**Failure #3 - The Infrastructure Mismatch:**

81% of frontline workers report being MORE engaged than last year. 94% are optimistic about safety improvements.

What do you give them? Two-way radios from 1985.

You're spending millions on AI platforms while your frontline can't even send a text message with a photo.

**Failure #4 - The Feedback Vacuum:**

When AI makes a mistake that a frontline worker catches, what happens? In most organizations: Nothing. The worker fixes it manually, the AI never learns, the error repeats tomorrow.

You've created AI systems that can't learn from the people using them.

**The Frontline Stakeholder Model:**

**Principle #1 - Workers Are Stakeholders, Not Users:**

Stop calling them "end users." Users consume products. Stakeholders have vested interests in outcomes. Frontline workers' livelihoods depend on AI decisions about productivity, performance, and job security.

Stakeholders have rights:
- Right to understand how AI affects their work
- Right to contribute feedback that shapes AI deployment
- Right to transparent communication about AI-driven changes
- Right to training that enables effective AI participation
- Right to escalate concerns without retaliation

**Principle #2 - Frontline Workers Own Operational AI Intelligence:**

Workers know:
- Which AI recommendations make sense and which are nonsense
- Where AI saves time versus where it creates busywork
- Which automated decisions align with customer needs
- Where AI monitoring feels helpful versus invasive

That's operational AI intelligence. Your job is to extract it, not ignore it.

**Principle #3 - Participation Must Be Systematic, Not Symbolic:**

One frontline representative on a quarterly committee isn't participation. It's tokenism.

Real participation requires:
- Structured feedback loops with response protocols
- Frontline AI Champions Network with peer trainers
- Accessible training embedded in workflow
- Authority to override AI decisions with documentation

**The Participatory AI Framework:**

**Stage 1 - Pre-Deployment Frontline Consultation:**

Conduct an Operational Impact Assessment before any AI tool touches frontline work:
- How will this tool change daily workflow?
- What tasks will it eliminate, augment, or complicate?
- What new skills will workers need?
- Where might AI create errors that workers catch?

**Stage 2 - Phased Rollout with Frontline Champions:**

Create a Frontline AI Champions Network:
- Early adopters who demonstrate AI fluency
- Peer trainers for new AI tools
- Escalation points for AI concerns
- Beta testers for new deployments
- Authority to pause rollout if serious issues emerge

**Stage 3 - Embedded Training and Support:**

- Contextual help INSIDE the tool, not separate modules
- Peer learning sessions led by champions
- Safe practice environments without performance impact
- Micro-credentials for demonstrated AI competency

McKinsey's research: "For every two dollars top-performing sites spend on technology, they spend three on processes and five on capability building."

Stop spending 100% on tools and 0% on people.

**Stage 4 - Continuous Feedback and Iteration:**

- Weekly anomaly reporting with 48-hour IT response commitment
- Monthly worker feedback sessions—conversations, not surveys
- Quarterly AI tool performance reviews (AI performance, not worker performance)
- Clear authority to override AI with documentation

**Evidence This Works:**

- McKinsey Global Lighthouse Network: Top sites spend $5 on capability building per $2 on technology
- 74% of frontline workers comfortable with AI when given prop...

Sixty percent of American workers believe AI will eliminate more jobs than it creates in 2026. Fifty-one percent fear losing their jobs to automation this year.

And who gets blamed when these fears come true? Not the CEO who bought the AI. Not the IT team that deployed it. Human Resources.

HR is being asked to champion AI transformation while simultaneously protecting employees from that transformation. That's not a job description. That's an impossible mandate.

**The Scale of the Impossible:**

- 60% of workers believe AI eliminates more jobs than it creates (Resume Now, January 2026)
- 51% worried about losing their job to AI this year (Resume Now)
- 37% of companies expect to have replaced jobs with AI by end of 2026 (Resume.org)
- 30% of companies plan to replace HR functions themselves with AI by year-end (HR Digest)
- 74% of employees are now subject to some form of digital surveillance

Think about that last statistic: HR is being asked to manage workforce AI transformation while their own function is being targeted for replacement. You're supposed to be the change champion for a change that might eliminate you.

**The Bias Nightmare:**

A University of Washington study from late 2024 found that three leading large language models exhibited "significant racial, gender, and intersectional bias" when ranking identical resumes.

The study found that AI models never preferred names perceived as Black male over white male names. Not once. But they preferred names perceived as Black female 67% of the time versus only 15% for Black male names.

[CLIP] "That's a really unique harm against Black men that wasn't necessarily visible from just looking at race or gender in isolation."

Now multiply that by reality: Your AI screening tool has already processed thousands of applications this month. How many qualified candidates did it screen out? You don't know. Because the vendor told you their algorithm was "bias-free" and you believed them.

**The Legal Nightmare:**

Under Illinois House Bill 3773, which went into effect January 1st, 2026, you can't use AI in ways that result in bias against protected classes—whether intentional or not.

Notice that phrase: "whether intentional or not."

Your intent doesn't matter. Your vendor's promises don't matter. Only the outcome matters.

[CLIP] "We trusted the vendor isn't a defense. It's an admission that you didn't do due diligence."

Add complexity:

- NYC Local Law 144 requires independent bias audits—not vendor self-audits
- Colorado AI Act requires risk management programs by June 30, 2026
- California requires maintaining automated decision data for four years
- EU AI Act classifies employment-related AI as "High Risk"

How many HR teams have infrastructure to comply with all of these simultaneously?

**Four Critical Failures:**

**Failure #1 - The Compliance Illusion:**

HR teams believe they're compliant because they read vendor documentation. But vendors are facing lawsuits themselves. The first EEOC settlement involving AI hiring discrimination happened in 2024. HR tech vendors can be held liable under anti-discrimination law as "employment agencies"—meaning you AND your vendor can both get sued.

**Failure #2 - The Bias Blindness:**

AI doesn't need protected characteristics to discriminate. It uses proxy markers:

- ZIP codes as proxies for race
- Employment gaps as proxies for caregiving (which correlates with gender)
- University names as proxies for socioeconomic status

Remember Amazon's resume-scanning tool from 2014-2018? It systematically downgraded resumes from women because it was trained on historical hiring data. The algorithm used phrases like "captain of the women's chess club" to identify female candidates and screen them out.

That's called proxy discrimination. And it's happening right now in your hiring tools.

**Failure #3 - The Surveillance State:**

74% of employees are now subject to digital surveillance. Big Tech firms are tracking "everything from keystrokes to office attendance."

Here's what surveillance creates: Employees start "performing busyness rather than genuine productivity." They game the system. Trust collapses. Actual productivity often decreases because workers spend more energy appearing productive than being productive.

[CLIP] "Hypervigilance about continuous surveillance takes away from tasks that may be meaningful or necessary for long-term wellbeing."

**Failure #4 - The False Promise of Reskilling:**

A January 2026 analysis concluded: "The reskilling timelines companies promised in 2023-2024 proved wildly optimistic—most workers couldn't be retrained fast enough to keep pace with AI capabilities."

The disconnect: 54% of organizations say AI-specific upskilling would have high organizational impact. But only 1% had actually implemented such a strategy as of 2025.

When you say "reskilling," employees hear "delayed layoff notice." And they're not wrong.

**The Dual Mandate Model:**

HR has two non-negotiable responsibilities that must be held simultaneously:

**Mandate #1 - Transformation Enabler:**
- Partner with IT on AI tool evaluation
- Lead change management for AI implementation
- Build AI literacy across the organization
- Identify high-value use cases for AI in HR functions

**Mandate #2 - Human Dignity Steward:**
- Conduct independent bias audits before deployment
- Establish transparent monitoring policies
- Create genuine pathways for displaced workers
- Maintain human oversight of all AI decisions affecting people

These mandates don't compete. They're integrated. You don't get to choose transformation OR dignity. You have to deliver both simultaneously.

**HR's VETO Authority:**

HR has VETO authority over any AI implementation that creates unmitigated discrimination risk or violates employee dignity. Not recommendation authority. VETO authority.

Why? Because in every lawsuit, every regulatory investigation—HR gets named. Your CEO will say "we trusted HR to vet this." Your vendor will say "we provided documentation."

The accountability has to match the liability. And the liability is ALWAYS on HR.

**The Dignity-First AI Framework:**

**Stage 1 - Pre-Deployment Dignity Assessment:**

- Bias Audit Requirement: Independent third-party audit testing for intersectional discrimination
- Transparency Threshold: Can you explain to an affected employee exactly how the AI made a decision about them?
- Human Override Protocol: Every AI decision affecting hiring, firing, promotion must have required human review
- Surveillance Boundary Definition: What will be monitored, why, and what will NOT be monitored

**Stage 2 - Deployment with Participatory Governance:**

Create an Employee AI Advisory Council with representation from:
- Frontline workers who will be monitored or assisted by AI
- Mid-level managers who will interpret AI outputs
- Underrepresented groups who face higher discrimination risk
- Union representatives (if applicable)

**Stage 3 - Continuous Dignity Monitoring:**

- Monthly Disparate Impact Analysis: Track hiring, promotion, termination patterns by protected class. Not annually. Monthly.
- Quarterly Bias Re-Audits: Your AI model learns and its biases can evolve
- Employee Sentiment Tracking: Anonymous surveys specifically asking about fairness and trust

**Stage 4 - Genuine Transition Support:**

- Transparent Timeline: If a role will be automated in 18 months, tell affected workers in month 1
- Funded Reskilling: Not "here's a LinkedIn Learning account"—funded retraining with guaranteed interview opportunities
- Alternative Pathway Cre...

Technical debt in the United States costs organizations 2.41 trillion dollars annually.

But here's what that number obscures: IT departments have known about this debt for years. They've raised the alarm. They've documented the risks. And they've been consistently overruled by business stakeholders who don't speak their language.

The problem isn't that IT doesn't understand the business. It's that the business has never learned to understand IT—and now AI is making that translation failure catastrophic.

**The Scale of the Crisis:**

- $2.41 trillion annual cost of technical debt in the US alone (MIT Sloan)
- 75% of tech leaders will face moderate-to-high technical debt severity by 2026 (Forrester)
- 50%+ of business leaders say their infrastructure can't support the AI workloads they want to run (Microsoft)
- Only 23% of CIOs are confident they're investing in AI with built-in data governance (Salesforce)
- 282% surge in AI implementation since last year (Salesforce CIO Study)

**The Pressure IT Is Under:**

CIO.com published their analysis of IT leadership challenges just one week ago. The headline quote came from Barracuda's CIO:

[CLIP] "The biggest challenge I'm preparing for in 2026 is scaling AI enterprise-wide without losing control. AI requests flood in from every department."

That's the reality. Every department wants AI. Every department wants it now. And IT is the bottleneck everyone resents—until something breaks, at which point IT becomes the scapegoat everyone blames.

**Why AI Makes Technical Debt Exponentially Worse:**

CFO Dive reported on what they called a "tech debt tsunami" building amid the AI rush. The Forrester principal analyst explained:

[CLIP] "There's a massive amount of technical debt in IT infrastructures. It's really this perfect storm of technology growing, companies being far more distributed, and AI coming into the equation, which will make the problem exponentially worse."

AI isn't linear. Your legacy systems that "mostly work" become critical failure points when you try to layer AI on top of them.

DevPro Journal reframed the conversation: Technical debt isn't actually technical debt. It's business risk.

[CLIP] "In the era of Large Language Models and machine learning, technical debt is actually data corruption. If your database schemas are inconsistent or your API endpoints are held together with tape, your expensive new AI features will yield hallucinations rather than insights."

**The Translation Gap:**

When IT says "technical debt," business hears "maintenance that costs money and delivers no visible value."

When IT says "infrastructure risk," business hears "IT trying to slow us down."

When IT says "we need to refactor before we scale AI," business hears "bureaucratic delay."

IT is trying to communicate probability and consequence—"if we don't fix this, there's a 40 percent chance of failure"—to stakeholders who think in certainty and outcome—"will this work or not?"

The result: IT's warnings get discounted as pessimism. Their risk assessments get overruled by business urgency. And when the predicted failures occur, IT gets blamed for not preventing what they warned against.

**The Governance Paradox:**

IT is asked to simultaneously:

- Accelerate AI adoption to meet business demands
- Maintain security and compliance standards
- Prevent shadow AI without blocking innovation
- Scale infrastructure while managing technical debt
- Document everything for audit and regulatory purposes

These demands conflict. Acceleration and governance exist in tension. And IT is expected to resolve that tension without adequate resources, authority, or organizational support.

**Two Metaphors for Business Communication:**

**The Poisoned Well (Data Quality):**

Your AI is only as good as the data it's trained on. If your data is contaminated—biased, incomplete, inconsistent, or outdated—then every AI system that drinks from that well produces poisoned outputs.

The Harvard Kennedy School's Misinformation Review found: "Training data often contain biases, omissions, or inconsistencies, which may embed systemic flaws into outputs."

But IT didn't create the data. Business units created the data through years of operational decisions—what to capture, what to ignore, how to categorize. Those decisions embedded biases that AI now amplifies.

IT can identify data quality issues. IT can flag bias patterns. But IT can't fix data quality alone—it requires collaboration with the business units that created and own that data.

**The Eager Intern (Model Hallucination):**

AI hallucinations are a governance crisis that business stakeholders fundamentally misunderstand. They assume AI either works or doesn't work. They don't understand that AI can confidently produce completely fabricated outputs.

Imagine an intern who's desperate to please, never admits uncertainty, and will confidently make things up rather than say "I don't know." That's your AI model.

Recent incidents documented by Wikipedia (updated three days ago):

- October 2025: Deloitte submitted a $440,000 report to the Australian government containing fabricated academic sources and fake quotes from a federal court judgment
- November 2025: Another Deloitte report for the Government of Newfoundland ($1.6 million CAD) contained at least four false citations to non-existent research papers

These weren't edge cases. These were reports from a major consulting firm, containing AI-generated hallucinations that no one caught before submission.

IT can implement guardrails—retrieval-augmented generation, fact-checking pipelines, confidence scoring. But IT can't implement the domain expertise needed to catch industry-specific hallucinations. A legal hallucination requires legal expertise to detect. A medical hallucination requires medical expertise.

**The Anti-Silo Solution:**

The solution isn't giving IT more authority to block AI initiatives. It's creating shared ownership structures where IT enables rather than gates.

**The AI Studio Model:**

CIO & Leader interviewed the CTO of ICICI Prudential Asset Management about balancing governance and innovation:

[CLIP] "Centralized evaluation with decentralized execution. The central team defines standards, evaluates models, ensures compliance, and maintains oversight. Functional business units own specific AI use cases."

IT doesn't approve every AI initiative. IT creates the governed pathways—the "paved roads" we introduced in Episode 1—that business units can use without per-project approval.

**Responsible AI FinOps:**

CIO.com published analysis on "the hidden operational costs of AI governance." Most organizations manage AI cost and AI governance as separate concerns owned by different departments.

[CLIP] "This organizational structure leads to projects that are either too expensive to run or too risky to deploy. The solution is managing AI cost and governance risk as a single, measurable system."

New metrics needed:

- Cost per compliant decision
- Development rework cost due to governance failures
- Governance monitoring overhead
- Explainability overhead as percentage of compute

Make governance costs visible before they become surprises.

**The Cross-Functional Tiger Team:**

For high-risk AI initiatives, create integrated teams: IT, Legal, Compliance, business unit owner, and Finance. Give them shared accountability for both delivery and governance. Measure them on risk-adjusted outcomes—not just deployment speed.

**The Proof That This Works:**

Accenture studied 1,500 global companies across 19 industries. Companies well-positioned for AI change h...

Gartner predicts that by 2026, 20 percent of organizations will use AI to eliminate more than half of their middle management positions.

But here's what that headline misses: the organizations flattening their structures are also losing the only people who can translate C-suite AI mandates into operational reality.

Your middle managers aren't the problem. They're the last line of defense between your AI strategy and your shadow AI crisis—and you're about to fire them.

**The Scale of the Elimination:**

- 20% of organizations will use AI to eliminate 50%+ of middle management positions by 2026 (Gartner)
- IMD expects a 10-20% reduction in traditional middle-management positions by the end of 2026
- Largest reductions: reporting-heavy roles in finance, compliance, supply chain planning, and procurement

**But Here's What the Headlines Miss:**

A Prosci study surveying over 1,100 professionals found that 63 percent of organizations cite human factors as the primary challenge in AI implementation.

Not technology. Not budget. Human factors.

And guess who's supposed to manage those human factors? Middle management.

The same research found that mid-level managers are the most resistant group to AI adoption—followed by frontline employees. That finding has been weaponized to justify eliminating the management layer.

But resistance isn't random defiance. It's a signal.

When middle managers resist AI initiatives, they're often responding to real problems:

- Unclear mandates from above
- Inadequate training
- Tools that don't integrate with existing workflows
- Accountability structures that hold them responsible for outcomes they can't control

**The Knowledge Inversion:**

There's a phenomenon happening that nobody's talking about directly: middle managers often know more about AI than their senior executives.

A Mindflow analysis found:

- 71% of middle managers actively use AI in their daily work
- Only 52% of senior leaders use AI regularly
- Nearly half of senior executives have never used an AI tool at all

This creates what researchers call a "knowledge inversion"—the people making strategic AI decisions have less hands-on experience than the people implementing them.

C-suite executives issue mandates based on vendor presentations and board pressure. Middle managers receive those mandates knowing—from direct experience—that the implementation will be more complex than leadership understands.

When middle managers raise concerns, they're perceived as resistant. When they propose alternatives, they're overruled by executives who lack the operational knowledge to evaluate their suggestions.

**The Accountability Trap:**

Middle managers are expected to:

- Drive AI adoption within their teams
- Manage shadow AI risks they can't see
- Implement governance protocols they didn't design
- Hit productivity targets that assume AI integration
- Maintain team morale through technological disruption

And they're expected to do all of this without clear authority over tool selection, budget allocation, or policy creation.

[CLIP] "This is the accountability trap: responsibility without authority, expectations without resources."

The Allianz Risk Barometer 2026—released this month—found that AI has surged to the number two global business risk, up from number ten in 2025. That's the biggest jump in their entire ranking.

Their analysis: "In many cases, adoption is moving faster than governance, regulation, and workforce readiness can keep up."

Who's responsible for workforce readiness? Middle management.
Who's blamed when adoption outpaces governance? Middle management.
Who has the authority to slow adoption until governance catches up? Not middle management.

**The Translation Failure:**

C-suite executives speak in strategy—competitive advantage, market position, ROI potential.

Frontline employees speak in tasks—"how does this help me do my job?"

Middle managers are supposed to translate between these languages.

But AI introduces a third language—technical complexity that neither strategic executives nor task-focused employees fully understand. Inference costs. Model drift. Hallucination rates. Prompt engineering. Fine-tuning requirements.

Most middle managers weren't trained in this language. They're expected to translate strategies they don't fully understand into implementations they can't technically evaluate.

Fast Company identified three functions that will define the future of middle management:

1. Orchestrating AI-human collaboration
2. Serving as agents of change through continuous AI-driven disruption
3. Coaching employees through constant reskilling and role evolution

These are sophisticated capabilities. But how many organizations are actually developing these capabilities in their management layer—versus simply expecting them to emerge?

**The Human-in-the-Loop Reality:**

"Human-in-the-Loop" has become the default reassurance in AI governance. It appears in policies, governance frameworks, and implementation plans. But its practical meaning is still emerging.

The EU AI Act requires Human-in-the-Loop for high-risk systems. But implementation varies wildly.

MobiHealthNews interviewed an AI governance expert preparing for the 2026 HIMSS conference. Her message was direct:

[CLIP] "Stop asking 'Do we have Human-in-the-Loop?' and start asking 'Have we designed for the human in the loop?'"

- What is the person expected to do at the decision point?
- How much time do they have?
- What information and constraints are visible?
- What happens if they disagree or need to escalate?

Those are middle management questions. The human in the loop is often a manager or team lead who's supposed to validate AI outputs—without clear guidance on what validation means, without time allocated for validation, and without authority to halt processes when validation fails.

Accounting Today was blunt: "The biggest gap isn't in the models. It's in people. Most finance professionals were trained to interpret evidence, not interrogate algorithms."

That's not governance. That's liability theater.

**The Solution: Middle Management as Translation Layer:**

The solution isn't eliminating middle management. It's reinventing it.

In the Anti-Silo framework, middle management isn't a hierarchical layer to be flattened. It's a translation layer to be strengthened.

**Three Translation Functions:**

**Upward Translation:** Converting operational reality into strategic intelligence. When frontline employees are using shadow AI tools because approved alternatives don't work, middle managers translate that signal into actionable feedback for the governance committee.

**Downward Translation:** Converting strategic mandates into operational implementation. When the C-suite announces an AI initiative, middle managers translate the strategic intent into workflow changes their teams can actually execute.

**Lateral Translation:** Facilitating cross-functional collaboration at the operational level. When an AI tool affects multiple departments, middle managers coordinate across silos.

**The Shadow AI Response Framework (4 Steps):**

**Step 1 - Discovery, Not Enforcement:** The first response to shadow AI shouldn't be punishment. It should be understanding. Why is this person using this tool? What need does it meet? What approved alternative failed them?

**Step 2 - Risk Assessment:** Not all shadow AI is equally dangerous. Middle managers need a simple risk classification framework—provided by Security and Legal—that lets them triage what they discover.

**Step 3 - Pathway Creati...

Half of CEOs believe their jobs are on the line if AI doesn't pay off. Seventy-two percent now say they're the main decision maker on AI—double the number from last year. And yet: Gartner predicts over 40 percent of agentic AI projects will be cancelled by 2027.

Not because the technology failed. Because accountability outpaced authority.

Your C-suite is spending billions on AI while fighting over who owns the outcome—and while they fight, the clock is ticking.

**The Scale of the Investment:**

Boston Consulting Group released their annual AI survey on January 15th. The findings are staggering:

- Companies plan to double their AI spending in 2026, accounting for 1.7 percent of revenues—more than twice the increase from 2025
- Ninety-four percent of chief executives say they'll continue investing in AI at current or higher levels even if the investments don't pay off in the next year
- Ninety percent of CEOs believe AI agents will produce measurable returns this year
- CEOs are committing 30 percent of their organization's AI investment to agentic AI alone

**The Confidence Gap:**

CEO confidence in AI is significantly higher in the East than in the West:

- India and Greater China: 75% of CEOs confident AI will deliver ROI
- Europe: 61%
- United States: 52%
- United Kingdom: 44%

Why the gap? BCG's analysis is revealing: "A larger share of Western CEOs say their organizations are investing in AI to avoid falling behind or because they feel pressure."

Western executives are investing out of fear—fear of competitive irrelevance—not conviction. They're spending billions because they're terrified of being left behind, not because they have a clear strategy for value creation.

IBM's 2025 CEO Study confirmed this pattern: 64 percent of CEOs acknowledge that the risk of falling behind drives them to invest in technologies before they have a clear understanding of the value those technologies bring.

[CLIP] "That's not strategy. That's panic buying at enterprise scale."

**The C-Suite Accountability Gap:**

The farther you get from the corner office, the less confident executives become. BCG found that confidence in AI's eventual payoff drops from 62 percent among CEOs to just 48 percent among non-tech executives outside the C-suite.

The CEO sees transformation. Everyone else sees uncertainty.

This creates a dangerous dynamic:

- The CEO is championing AI initiatives that the rest of the leadership team doesn't believe in
- The CFO is skeptical of the ROI
- The CIO is worried about technical debt
- The CISO is concerned about attack surfaces
- The General Counsel is terrified of liability

The CEO interprets this skepticism as resistance to change. The other executives interpret the CEO's enthusiasm as reckless optimism. Nobody's wrong—but nobody's aligned.

**Role-Specific Strategic Fears:**

**The CEO's Fear: Competitive Irrelevance**

IMD's 2026 AI trends analysis warned: "Organizations that fail to reach AI-native operations by 2027 risk being structurally uncompetitive."

That's the CEO's nightmare: not that AI fails, but that competitors succeed while you hesitate.

**The CFO's Fear: Unquantifiable Risk**

CFOs are trained to evaluate investments through traditional ROI models—payback periods, margin impact, net present value. But AI doesn't fit those models.

BCG found that most AI projects need two to four years to demonstrate value. CFOs expect returns in under a year. That mismatch creates inevitable conflict.

CFO Brew quoted a finance leader: "CFOs must take an active role in AI governance. Although most view it as a technology 'system,' the necessary controls extend far beyond IT and cannot be managed by the CIO alone."

**The CIO's Fear: Accountability Without Authority**

Information Week's 2026 CIO trends analysis: "Enterprises rushed AI adoption without establishing who owns what. The technology moved faster than governance frameworks, leaving CIOs responsible for outcomes they can't fully control."

One CIO was blunt: "The CIO's job is to establish guardrails, to provide a framework—not to absorb the consequences of ungoverned decisions."

If marketing deploys a rogue AI tool, that's not an IT failure. If the CEO mandates a use case that bypasses governance, that's not an IT failure. But when something goes wrong, the board looks at IT first.

**The CISO's Fear: Invisible Attack Surface**

Digital Trends published analysis on "AI agent sprawl"—the uncontrolled expansion of AI agents across an organization.

Their comparison: This is the shadow IT problem of the 2010s, but with exponentially more risk. Marketing deploys customer service agents. Finance deploys automated reporting bots. HR tests recruiting assistants. Each deployment expands the attack surface without centralized visibility.

**The General Counsel's Fear: Undefined Liability**

Forrester predicts 60 percent of Fortune 100 companies will appoint a head of AI governance in 2026. That tells you how urgent the problem has become—and how absent the accountability structure has been.

General Counsel are asked to approve AI deployments they don't fully understand, with liability implications that aren't fully defined, under regulatory frameworks that are still evolving.

**The Level 5 Maturity Model:**

The solution isn't asking one C-suite executive to own AI. That just creates a new silo.

The solution is what Deloitte calls the "cohesive triumvirate"—CIO, CFO, and Chief Strategy Officer operating as an integrated leadership unit.

Here's how to measure progress:

**Level 1 - Siloed Ownership:**
Each executive treats AI as their department's concern. The CEO talks competitive advantage. The CFO talks cost control. The CIO talks infrastructure. The GC talks liability. Four separate conversations that never converge.

**Level 2 - Reactive Coordination:**
Executives acknowledge AI is enterprise priority, but coordination happens only when problems emerge. Legal reviews after development. Finance approves without understanding. IT implements without strategic context.

**Level 3 - Structured Oversight:**
A cross-functional governance committee exists, but it's advisory rather than authoritative. The C-suite receives reports but doesn't integrate AI into strategic planning. Accountability remains diffuse.

**Level 4 - Integrated Decision-Making:**
AI governance is embedded in strategic decision-making. The CFO has AI-specific ROI frameworks. The CIO reports governance metrics, not just technical metrics. The GC participates in design, not just review. The CEO can articulate AI strategy to the board with fluency.

**Level 5 - Adaptive Governance:**
AI strategy is business strategy. The C-suite operates as a cohesive unit. Governance velocity is measured and optimized. The organization learns continuously from AI deployments. Risk-taking is informed, not fearful.

**Actionable Mandates by Role:**

**For the CEO:** Institutionalize AI fluency. BCG found that trailblazing CEOs spend more than eight hours per week on their own AI upskilling. Require AI fluency training for all C-suite executives and the board. Create an AI advisory board with external experts to challenge internal assumptions.

**For the CFO:** Develop new ROI architectures. Commission a financial framework specifically for AI investments. Include metrics traditional ROI models miss: productivity gains that don't translate to headcount reduction, risk mitigation that doesn't appear on the balance sheet, competitive positioning that won't pay off for three years.

**For the CIO:** Build the AI Studio model. Deloitte's Tech Trends 2026 recommends a centralized AI Center of E...

Why 80% of Your Employees Are Building an AI Ecosystem You Can't See—And Why Your Org Chart Made It Inevitable

This episode launches The Anti-Silo—a seven-part series examining how organizational silos sabotage AI governance at every level, from the C-suite to frontline employees.

Here's the uncomfortable truth: your shadow AI problem isn't a technology failure. It's the predictable result of organizational structures that were never designed for the speed of intelligence.

The Shadow AI Crisis Is a Symptom, Not the Disease

The statistics are stark: 80% of employees are using unapproved AI tools daily. They're building workflows, automating decisions, and feeding proprietary data into systems your IT department has never reviewed.

But before you blame employees, ask yourself: How long does it take to get an AI tool approved through your official channels?

If the answer is "six months" while business needs can't wait six days, you've created the conditions for shadow AI. Employees aren't being reckless—they're being rational. When official pathways are too slow, people find unofficial ones.

The disease isn't employee behavior. The disease is siloed governance that moves at organizational speed while AI moves at AI speed.

The Three-Speed Problem

Every organization now operates across three incompatible timeframes:

AI Speed: New foundation models release weekly. Capabilities that didn't exist last month are commoditized this month. The technology itself assumes continuous adaptation.

Adaptation Speed: Teams modify workflows in agile sprints. Business units experiment with automation. Innovation happens at the edge, not the center.

Organizational Speed: Culture changes slowly. Regulations move through formal processes. Governance structures were designed for stability, not velocity.

In siloed organizations, these gears grind against each other. Prototypes sit in legal review until the technology becomes obsolete. By the time governance catches up, the business has moved on—often to shadow alternatives.

Why Digital Reformation Made It Worse

The "digital transformation" era optimized individual departments. Finance got better financial systems. HR got better HR systems. Marketing got better marketing systems.

But each transformation calcified the walls between departments. Every silo now has its own "system of record," its own data ontology, its own workflows optimized for departmental success.

AI governance requires exactly what this structure prevents: cross-functional data flows, integrated risk assessment, and coordinated decision-making.

When your AI system needs training data from marketing, validation criteria from legal, fairness metrics from HR, security review from IT, and accountability structures from compliance—who owns that workflow? In most organizations, the answer is "no one." Or worse: "everyone," which means the same thing.

The Linguistic Silo Problem

Even when departments want to collaborate, they often can't. Not because of politics—because of language.

Technical teams speak in model architectures and confidence intervals. Legal teams speak in liability and regulatory exposure. Business teams speak in revenue and market share. HR speaks in culture and talent management.

These aren't just different vocabularies. They're different ontologies—different ways of categorizing reality. When the data science team says "bias," they mean statistical deviation. When HR says "bias," they mean discriminatory impact. Same word, fundamentally different concepts.

Without translation layers between these linguistic silos, governance meetings become exercises in mutual incomprehension. Everyone leaves thinking they agreed—until implementation reveals they were having different conversations entirely.

Governance as Gate vs. Governance as Partner

Most organizations position governance as a gate at the end of the development lifecycle. Build first, get approval second.

This guarantees bottlenecks. It guarantees shadow AI. It guarantees that by the time governance reviews a system, so much has been invested that saying "no" becomes nearly impossible.

The Anti-Silo framework repositions governance as an integrated partner throughout the lifecycle. Not approval at the end—guidance from the beginning. Not gates that slow progress—guardrails that enable confident speed.

The Anti-Silo Framework: Six Structural Elements

1. Cross-Functional Governance Committee with Decision Authority

Not advisory. Not consultative. Actual authority to approve, reject, and set conditions. Membership must include Legal, IT, HR, business unit leaders, and executive sponsorship. Meeting cadence must match AI speed, not organizational speed—weekly or bi-weekly, not quarterly.

2. Governance Velocity Metrics

You measure time-to-market. You measure development velocity. Do you measure governance velocity? Time from concept to approved deployment. Time from risk identification to mitigation implementation. If you don't measure governance speed, you can't improve it.

3. Tiered Risk Approach Aligned with EU AI Act Categories

Not every AI application needs the same scrutiny. A marketing copy assistant and an automated hiring screen present different risk profiles. Tiered approaches let low-risk applications move fast while high-risk applications receive appropriate scrutiny. The EU AI Act provides a ready-made framework.

4. "Paved Roads" for Shadow AI

Why are employees using unauthorized tools? Because authorized alternatives don't exist—or don't work. Identify the use cases driving shadow AI adoption. Build sanctioned alternatives that satisfy both speed requirements and control requirements. Make the right path the easy path.

5. Semantic Interoperability: Translation Layers Between Functions

Establish shared vocabulary. Create glossaries that map concepts across domains. When the data science team and the legal team use the same term, ensure they mean the same thing. Invest in people who can bridge linguistic silos—rare individuals who speak multiple organizational languages.

6. Pre-Mortems, Tabletops, and Cross-Functional Red Teaming

Before deployment, imagine the failure. Conduct pre-mortems asking: "It's one year from now and this system has created a crisis. What happened?" Run tabletop exercises simulating regulatory inquiries. Bring diverse perspectives to stress-test assumptions.

The Personal Liability Dimension

The EU AI Act establishes penalties up to €35 million or 7% of global turnover. ISO 42001 requires documented cross-functional risk assessment. When AI governance fails, regulators will ask: Who established this governance structure?

If accountability involves chains of handoffs between siloed departments with unclear ownership, the executives who designed that structure become the liability target. "My department did its part" is not a defense when the structure itself guaranteed fragmented accountability.

Agentic AI amplifies this exposure. When AI systems take autonomous actions, who is the "supervisor"? If your governance structure can't answer that question clearly, you're building liability exposure with every deployment.

Series Preview: The Anti-Silo Deep Dive

This se...

While the United States shut down USAID and debates whether to engage internationally at all, China secured the co-sponsorship of more than 140 countries for its AI capacity-building resolution at the United Nations.

One hundred forty countries. That's not a negotiation. That's a mandate.

And if you're an executive whose supply chains, markets, or regulatory exposure spans the Global South, you're about to discover whose rules govern AI in most of the world—and it won't be American rules.

**This week's roundup: The Global South pivot in AI governance—based on Lawfare analysis by Chinasa Okolo**

**The Numbers That Matter:**

**July 2024:** UN General Assembly unanimously adopted China's resolution on AI capacity-building
- 140+ countries co-sponsored it (including the United States)
- Passed by consensus—not controversial

**July 2025:** China unveiled Global AI Governance Action Plan at World AI Conference in Shanghai
- Premier Li Qiang announced creation of global AI cooperation organization (potentially headquartered in Shanghai)
- China is quietly building the infrastructure of global artificial intelligence influence

**What China Is Actually Doing:**

- Workshops in Shanghai and Beijing drawing participants from 40+ countries
- AI Capacity-Building Action Plan targeting developing nations
- Group of Friends for International Cooperation in AI Capacity-Building (regular meetings)
- AI-powered agriculture projects announced in Kenya and Nigeria
- Joint AI research facility with Brazil focused on agricultural development
- Nigerian government expressing support for Chinese AI governance initiatives
- Indonesia seeking Chinese assistance for AI in aquaculture, agriculture, smart cities

**What the U.S. Is Actually Doing:**

**July 1, 2025:** Secretary of State Marco Rubio announced official closure of USAID—the agency that historically served as primary vehicle for U.S. digital development initiatives

**Current Status:**
- State Department's Global AI Research Agenda: Non-operational
- Partnership for Global Inclusivity on AI (launched with major tech companies 2024): Unclear status
- Digital Connectivity and Cybersecurity Partnership: Unclear status after State Department dismissed diplomats from Bureau of Cyberspace and Digital Policy (July 2025)

"The U.S. has systematically deconstructed the institutional capacity necessary for sustained international engagement."

**The Funding Gap:**

**EU Horizon Europe Africa Initiative III:** €500.5 million across 24 calls for proposals to strengthen African-European research partnerships
- €186.5M specifically for innovation and technology (including AI applications, fintech, data governance)

**U.S. Announced:** $15 million for AI capacity-building + $33M from program that's now non-operational

Lawfare analysis: "American governmental engagement remains fragmented and inadequately funded."

**The Structural Problem:**

**November 2025:** State Department announced partnership with Zipline (drone delivery company)—up to $150M to expand AI-enabled medical supply deliveries across Africa

**The Catch:** Pay-for-performance model contingent on African governments signing $400 million in contracts

Okolo: "Garnering nearly half a billion in contracts may be unfeasible given the high debt burden across the continent that limits national spending on essential social services like health care."

**Compare China's Approach:**
- RAND Corporation analysis: China emphasizes respect for sovereignty and non-interference in domestic governance
- Partnerships don't attach political or economic conditions Western partnerships require
- Predictable, long-term funding commitments
- Consistent capacity for rapid delivery on large-scale infrastructure (hydroelectric plants, shipping ports, railroads, airports)
- "China's long-term geoeconomic interests have trumped concerns around immediate financial returns"

**The Governance Gap for Executives:**

The Global South represents the majority of the world's population. These nations will comprise the majority of future AI users and developers.

The governance frameworks, technical standards, and ethical norms established through capacity-building partnerships will shape global AI development for decades.

If you're not tracking which governance model—Chinese or Western—is gaining traction in your key markets, you're flying blind into regulatory fragmentation that will affect:
- Data flows
- Algorithmic accountability
- Compliance requirements
- Market access

**The Accountability Structure:**

Trump administration's AI Action Plan (January 2025) mandates: "American AI technologies, standards, and governance models are adopted worldwide."

**The Problem:** The U.S. lacks comprehensive federal AI legislation.

"The government demands global adoption of American standards while simultaneously withdrawing from multilateral mechanisms necessary for collaborative development."

Okolo calls this an "untenable proposition." Countries expected to embrace American governance models that don't meaningfully exist—while navigating visa restrictions, tariffs, and export controls.

**Diffusion Rule:** Implemented tiered export controls placing most Global South countries in Tier 2 (quota-based access to advanced AI chips). Despite rescission in May 2025, damage to relationships was done.

**Your Personal Accountability as Executive:**

If your organization relies on AI systems deployed across multiple jurisdictions, you face regulatory fragmentation.

If China's model gains traction (and it is gaining traction), you'll face governance frameworks emphasizing centralized state oversight rather than individual transparency.

**Implications:**
- Data localization requirements
- Government access to algorithmic decision-making
- Audit and accountability structures
- Cross-border data flows

CFR analysis: "China's state-centric model could prove better suited to deploying autonomous systems at scale than the EU's rights-based framework—giving Beijing strategic advantages."

**The Board Question:** Which regulatory framework governs our AI deployments in Kenya? In Indonesia? In Brazil? Do you have an answer?

**If AI governance frameworks in your key markets are shaped primarily by Chinese influence with different assumptions about transparency, accountability, and individual rights—who in your organization owns that risk?**

**Four-Element Solution Framework:**

**1. Prioritize Technological Sovereignty**
- Understand sovereignty requirements in each market where you deploy AI
- Data localization, local processing, local accountability structures
- **Case Study:** Cassava Technologies investment (December 2024)—DFC + Google + Finnfund invested $90M into African-owned company providing digital infrastructure across 30 countries
- Builds local capacity, creates local jobs, ensures critical AI infrastructure owned/controlled by African entities

**2. Support Locally-Defined Governance Frameworks**
- "Meaningful AI partnerships must promote approaches that enhance human rights, privacy, and civil liberties—but the key is to support locally defined frameworks rather than imposing U.S. models"
- Build meta-framework that adapts to local requirements while maintaining core principles
- Can't build one global AI governance framework and expect it to comply everywhere

**3. Demonstrate Commitment to Long-Term Relationships That Transcend Political Transitions**
- U.S. credibility has collapsed: Programs launched under one administration dismantled by next
- USAID built relationships over decades—shut down in months
- Corporate lesson: I...