While the vast majority of CEOs anticipate a significant upside growth potential from artificial intelligence (AI) adoption, there are others in the C-suite who are fearful of the impact.
Rapid Generative AI (GenAI) adoption is the top-ranked issue for the next two years for Legal, Compliance, and Privacy leaders, according to a recent survey by Gartner.
"Increases in capability and usability have prompted rapid and widespread company adoption of GenAI," said Stuart Strome, director of research at Gartner.
Generative AI Market Development
While AI regulation is still being developed, however, uncertainties and unforeseen risks abound. Businesses will have to contend with these challenges to ensure the ethical and legal use of this powerful new technology.
Gartner identified four areas that business leaders need to address:
Limited Visibility into Key Risks
The ease of adoption, widespread applicability, and the ability of GenAI tools to perform a range of different business tasks mean that assurance teams will have limited visibility into new risks.
“New processes to detect and manage these risks will take time to roll out leaving businesses exposed in the interim," said Strome.
Legal leaders should adapt preexisting, well-established, and widely distributed risk monitoring and management practices until new processes can be implemented.
For example, they might modify data inventories and records of processing activities of privacy impact assessments to track GenAI usage.
Lack of Employee Clarity on Acceptable Use
Employees will lack clarity on what constitutes acceptable use of the technology due to unfamiliarity with the rules governing it.
Legal leaders should work to build consensus on “must avoid” outcomes and institute controls to minimize the likelihood of those outcomes while championing acceptable use cases in policies and guidance.
"Legal leaders need to institute a mandatory human review of GenAI output, prohibit entering enterprise IP or personal information into public tools such as ChatGPT, and develop policies that require clear indication of GenAI provenance on any public-facing output," said Strome.
It’s important to include real-world examples of prohibited and acceptable GenAI usage in policy guidance and alert employees when policies are updated.
Further, consider working with IT to develop embedded controls, such as popups in GenAI tools that require users to attest they are not using the tools for prohibited cases.
Need for AI Governance
As GenAI tools rapidly become more ubiquitous, poor accountability for negative outcomes could create unacceptable legal and privacy risks.
Yet for most companies, AI governance will not fit neatly into existing functional organizational structures, and the expertise needed may be scattered throughout the business or even not exist at all.
Legal leaders need to clearly document roles and responsibilities for approvals, policy management, risk management, and training for GenAI.
"Legal leaders should advocate for establishing a cross-functional steering committee, or for modifying the mandate of an existing committee, to establish principles and standards for use, and to align on roles and responsibilities related to AI governance," said Strome.
New Opportunities to Scale Repetitive Legal Tasks
GenAI’s capacity to produce natural language output lends itself to several departmental uses for legal teams. This holds the potential to minimize the time lawyers spend on low-value work.
While GenAI tools have the potential to assist with time-consuming, repetitive tasks such as conducting legal research, drafting contracts, and producing summaries of legislation its output often includes errors, and legal leaders must ensure the output is reviewed for accuracy.
Legal leaders should develop an internal pilot program to test GenAI automation or augmentation for low-risk repetitive, time-consuming tasks that involve the production of written deliverables.
They should also compare pilot outcomes on time spent and output quality versus conventionally produced outcomes.
"Given GenAI’s ease of use and flexibility of application for enterprises, it’s no surprise that rapid GenAI adoption is the most referenced risk for legal leaders this year, however, legal leaders should not simply react by instituting draconian policies that restrict its use," said Strome.
Outlook for GenAI Applications Growth
According to the Gartner assessment, that approach will likely impact business competitiveness and encourage employees to illicitly use GenAI tools on their personal devices.
Gartner analysts believe progressive legal leaders accept that GenAI can drive value, and they are working with others in their organization to develop governance and policies that nudge employees and business partners toward high-benefit, low-risk use cases.
That said, I anticipate the senior executives who are consumed by fear of GenAI's impact on their organization may miss the window of opportunity to apply this technology for competitive advantage.
The market winners will use this opportunity to make quantum leaps past their peer laggards. That’s why leaders need a balanced approach to GenAI.