White Paper
Beyond Automation: AI Implementation Tactics for Risk and Compliance Teams
The landscape of artificial intelligence in compliance and risk management in the U.S. continues to be characterized by a combination of federal guidance, state-level regulations and sector-specific oversight. Combined, these provide signals for what organizations can expect and best practices for pursuing AI implementations.
At the federal level, there have been several recent outputs impacting how AI will intersect with compliance and risk management.
The Federal Trade Commission continues to support aspects of “Operation AI Comply,” launched in 2024, targeting deceptive AI practices and failures to ensure transparency and accountability. Recent guidance from the White House in “America’s AI Action Plan” outlines 90 federal policy actions focused on innovation, AI infrastructure and international leadership, with goals including exporting American AI, building data centers, enabling innovation and positioning free speech in models. Additionally, priorities appear to be focused on enforcing existing deception and fraud laws as they relate to AI, rather than adding new federal AI regulations.
As it relates to AI, the Department of Justice’s framework for evaluating corporate compliance programs is currently focused on AI washing and leveraging existing laws against AI misuse. Federal prosecutors are encouraged to seek stiffer penalties for crimes exacerbated by AI as well. The DOJ is continuing to develop its AI use case inventory as well, which provides information and use cases on enabling innovation, efficiency and the management of potential rights and safety impacts.