- Chief Compliance Officer and VP of Legal Affairs, Arrow Electronics
By 
Aaron Nicodemus2024-12-12T14:32:00
The Department of Justice’s (DOJ) Evaluation of Corporate Compliance Programs (ECCP) has made the importance of artificial intelligence (AI) governance frameworks clear, but it didn’t say what role compliance should play. Here’s the answer.
The DOJ considers the use of AI tools by businesses as “an emerging risk,” and recently updated its ECCP to reflect this new line of thinking. Compliance manages risk, and so the DOJ in its ECCP expects compliance to manage the risks to an organization related to its use of AI and other emerging technologies.
The update is the latest effort by a regulator globally to put guardrails around the largely untested technology that’s quickly spread throughout the tech industry, financial services, and beyond. Companies are looking to use AI in all sorts of ways, from predicting changes in price, supply, or demand, as well as helping improve communications. Google has said more than a quarter of its code is now written by AI, while Coca-Cola has even used the technology to create new ads.
THIS IS MEMBERS-ONLY CONTENT. To continue reading, choose one of the options below.
News and analysis for the well-informed compliance or audit exec. Select an option and click continue.
Annual Membership $499 Value offer
Full price one year membership with auto-renewal.
Membership $599
One-year only, no auto-renewal.
Data governance has become a key concern for companies, especially when the EU AI Act and General Data Protection Regulation have put a premium on handling data responsibly and ensuring that artificial intelligence does not cause harm.
Companies spend huge sums on audit, risk management, and compliance to alert them about potential legal issues before they escalate into serious corporate governance failings. There’s only one problem, however–they often misread their own early warning signs or ignore them altogether.
The era of artificial intelligence adoption is testing the old ways of doing compliance, underscoring the need for continuous monitoring. Compliance isn’t a one-and-done activity, but sometimes organizational incentives and goals fail to prioritize the importance of this.
The U.S. Department of the Treasury’s Financial Crimes Enforcement Network issued an alert to financial institutions about their obligations to report deepfakes, warning artificial intelligence has given bad actors additional tools in their arsenal.
A nationwide rental outlet affiliated with Rent-a-Center and its chief executive have been sued by the Consumer Financial Protection Bureau for allegedly deceiving five million consumers about the terms of credit agreements.
A lack of risk visibility is causing companies to reject customers–and potentially lose money–over fears they might be in danger of violating rules around anti-money laundering and sanctions regulations.
