Your AI Provider Just Got Blacklisted. Now What?
When your AI provider gets blacklisted in one country and courted by another, governance teams face a new risk category: AI provider jurisdiction risk.
When Governments Want Your AI Data
The Australia-Anthropic MoU signals a new regulatory pattern: governments negotiating direct access to AI usage data. EU governance teams should prepare now.
From chatbot to agent: what changes when AI starts doing, not just saying
Starling Bank’s AI moves money. Norway’s sovereign wealth fund keeps humans in charge. Both are deploying agentic AI but with very different governance choices. Here is what changes when AI starts acting, not just recommending, and what your oversight framework must address.
When Your AI Vendor’s Market Power Becomes Your Governance Problem
The EU’s antitrust chief has put every layer of the AI stack under scrutiny. For organisations using major platforms, that scrutiny is now a vendor risk input; one that most governance programmes have not yet mapped. Here are three practical steps to close that gap.
EU Sovereign Cloud: What the Label Actually Means
The EU sovereign cloud label has no agreed legal definition. Before trusting a vendor’s sovereignty claim, practitioners should demand written answers to three questions about ownership, jurisdiction and certification.
Who Owns What Your AI Produces?
The EU AI Act regulates AI inputs but says nothing about who owns the output. Most governance programmes have not addressed this gap. Here are four steps to close it.