Building Robust RAI Programs as Third-Party AI Tools Proliferate

Findings from the 2023 Responsible AI Global Executive Study and Research Project

by: Elizabeth M. Renieris, David Kiron, and Steven Mills

In just a few short months since its release, OpenAI’s ChatGPT tool has catapulted the capabilities, as well as the ethical challenges and failures, of artificial intelligence into the spotlight. Countless examples have emerged of the chatbot fabricating stories, including falsely accusing a law professor of sexual harassment and implicating an Australian mayor in a fake bribery scandal, leading to the first lawsuit against an AI chatbot for defamation.1 In April, Samsung made headlines when three of its employees accidentally leaked confidential company information, including internal meeting notes and source code, by inputting it into ChatGPT.2 That news prompted many companies, such as JPMorgan and Verizon, to block access to AI chatbots from corporate systems.3 In fact, nearly half of the companies polled in a recent Bloomberg survey reported that they are actively working on policies for employee chatbot use, suggesting that a significant share of businesses were caught off guard and were unprepared for these developments.4

Indeed, the fast pace of AI advancements is making it harder to use AI responsibly and is putting pressure on responsible AI (RAI) programs to keep up. For example, companies’ growing dependence on a burgeoning supply of third-party AI tools, along with the rapid adoption of generative AI — algorithms (such as ChatGPT, Dall-E 2, and Midjourney) that use training data to generate realistic or seemingly factual text, images, or audio — is exposing them to new commercial, legal, and reputational risks that are difficult to track.5 In some cases, managers may lack any awareness about the use of such tools by employees or others in the organization — a phenomenon known as shadow AI.6 As Stanford Law CodeX fellow Riyanka Roy Choudhury puts it, “RAI frameworks were not written to deal with the sudden, unimaginable number of risks that generative AI tools are introducing.”


This trend is especially problematic for organizations with RAI programs that are primarily focused on AI tools and systems that they design and develop internally.

About the Authors

Elizabeth M. Renieris is guest editor for the MIT Sloan Management Review Responsible AI Big Idea program, a senior research associate at Oxford’s Institute for Ethics in AI, a senior fellow at the Centre for International Governance Innovation, and author of Beyond Data: Reclaiming Human Rights at the Dawn of the Metaverse (MIT Press, 2023).

David Kiron is an editorial director at MIT Sloan Management Review and coauthor of the book Workforce Ecosystems: Reaching Strategic Goals With People, Partners, and Technology (MIT Press, 2023).

Steven Mills is a managing director and partner at BCG, where he serves as the chief AI ethics officer.

Contributors

Jeanne Bickford, Todd Fitz, Kevin Foley, Andrea Gao, Carolyn Ann Geason-Beissel, Abhishek Gupta, Hari Kumar, Michele Lee DeFilippo, Tad Roselund, Allison Ryder, Sean Singer, and Peter Strutt

To cite this report, please use:

Elizabeth M. Renieris, David Kiron, and Steven Mills, “Building Robust RAI Programs as Third-Party AI Tools Proliferate,” MIT Sloan Management Review and Boston Consulting Group, June 2023.

Acknowledgments

We thank each of the following individuals, who were interviewed for this report:

Kobi Abayomi, head of science, Gumbel Demand Acceleration

Uthman Ali, senior product analyst, BP

Simon Chesterman, senior director of AI governance, AI Singapore; and the David Marshall Professor and vice provost, National University of Singapore

Philip Dawson, head of AI policy, Armilla AI

Triveni Gandhi, responsible AI lead, Dataiku

Linda Leopold, head of responsible AI and data, H&M Group

Nitzan Mekel-Bobrov, chief AI officer, eBay

Oarabile Mudongo, policy specialist, African Observatory on Responsible AI

Riyanka Roy Choudhury, CodeX fellow, Stanford Center for Legal Informatics, Stanford Law School

Steven Vosloo, digital policy specialist, UNICEF

MIT Sloan Management Review

At MIT Sloan Management Review (MIT SMR), we explore how leadership and management are transforming in a disruptive world. We help thoughtful leaders capture the exciting opportunities — and face down the challenges — created as technological, societal, and environmental forces reshape how organizations operate, compete, and create value.

MIT Sloan Management Review Big Ideas

MIT SMR’s Big Ideas Initiatives develop innovative, original research on the issues transforming our fast-changing business environment. We conduct global surveys and in-depth interviews with front-line leaders working at a range of companies, from Silicon Valley startups to multinational organizations, to deepen our understanding of changing paradigms and their influence on how people work and lead.

Boston Consulting Group

Boston Consulting Group partners with leaders in business and society to tackle their most important challenges and capture their greatest opportunities. BCG was the pioneer in business strategy when it was founded in 1963. Today, we work closely with clients to embrace a transformational approach aimed at benefiting all stakeholders — empowering organizations to grow, build sustainable competitive advantage, and drive positive societal impact. Our diverse, global teams bring deep industry and functional expertise and a range of perspectives that question the status quo and spark change. BCG delivers solutions through leading-edge management consulting, technology and design, and corporate and digital ventures. We work in a uniquely collaborative model across the firm and throughout all levels of the client organization, fueled by the goal of helping our clients thrive and enabling them to make the world a better place.

BCG X

BCG X is the tech build and design unit of BCG.

Turbocharging BCG’s deep industry and functional expertise, BCG X brings together advanced tech knowledge and ambitious entrepreneurship to help organizations enable innovation at scale.

With nearly 3,000 technologists, scientists, programmers, engineers, and human-centered designers located across 80-plus cities, BCG X builds and designs platforms and software to address the world’s most important challenges and opportunities.

Teaming across our practices, and in close collaboration with our clients, our end-to-end global team unlocks new possibilities. Together we’re creating the bold and disruptive products, services, and businesses of tomorrow.

References

1. P. Dixit, “U.S. Law Professor Claims ChatGPT Falsely Accused Him of Sexual Assault, Says ‘Cited Article Was Never Written,’” Business Today, April 8, 2023, www.businesstoday.in; and T. Gerken, “ChatGPT: Mayor Starts Legal Bid Over False Bribery Claim,” BBC, April 6, 2023, www.bbc.com.

2. M. DeGeurin, “Oops: Samsung Employees Leaked Confidential Data to ChatGPT,” Gizmodo, April 6, 2023, https://gizmodo.com.

3. A. Lukpat, “JPMorgan Restricts Employees From Using ChatGPT,” The Wall Street Journal, Feb. 22, 2023, www.wsj.com.

4. J. Constantz, “Nearly Half of Firms Are Drafting Policies on ChatGPT Use,” Bloomberg, March 20, 2023, www.bloomberg.com.

5. “Generative AI,” BCG, accessed May 24, 2023, www.bcg.com.

6. J.K. Bickford and T. Roselund, “How to Put Generative AI to Work — Responsibly,” BCG, Feb. 28, 2023, www.bcg.com.

7. “Fact Sheet: Biden-Harris Administration Announces New Actions to Promote Responsible AI Innovation That Protects Americans’ Rights and Safety,” The White House, May 4, 2023, www.whitehouse.gov.

8. E.M. Renieris, D. Kiron, and S. Mills, “To Be a Responsible AI Leader, Focus on Being Responsible,” MIT Sloan Management Review and BCG, Sept. 19, 2022, https://sloanreview.mit.edu.

9. L. Mearian, “Legislation to Rein In AI’s Use in Hiring Grows,” Computerworld, April 1, 2023, www.computerworld.com.

10. “Proposal for a Regulation of the European Parliament and of the Council Laying Down Harmonised Rules on Artificial Intelligence (Artificial Intelligence Act) and Amending Certain Union Legislative Acts,” European Commission, April 21, 2021, https://eur-lex.europa.eu; and “Proposal for a Directive of the European Parliament and of the Council on Adapting Non-Contractual Civil Liability Rules to Artificial Intelligence (AI Liability Directive),” PDF file (Brussels: European Commission, Sept. 28, 2022), https://commission.europa.eu.

11. “DPAs, Global Stakeholders Mull AI Regulation,” IAPP, April 21, 2023, https://iapp.org.

12. M. Atleson, “The Luring Test: AI and the Engineering of Consumer Trust,” Federal Trade Commission, May 1, 2023, www.ftc.gov.

13. “Statement From Vice President Harris After Meeting With CEOs on Advancing Responsible Artificial Intelligence Innovation,” The White House, May 4, 2023, www.whitehouse.gov.

14. S. Mills, S. Singer, A. Gupta, et al., “Responsible AI Is About More Than Avoiding Risk,” BCG, Sept. 20, 2022, www.bcg.com.

i. The samples used to construct the maturity index differed from 2022 to 2023 due to different individuals surveyed each year.

Tags:

Reprint #:

65103

More Like This

Add a comment

You must to post a comment.

First time here? Sign up for a free account: Comment on articles and get access to many more articles.