Oversight of data-related risks
A board lens on data governance, GenAI, and cybersecurity risk and understanding whether governance frameworks are keeping pace.

While data governance has been a priority for companies for some time, the explosive growth in the use of generative artificial intelligence (GenAI) has emphasized the importance of data quality, having a responsible use AI policy, complying with evolving privacy and AI laws and regulations, and rigorously assessing data governance practices.
Given the strategic importance of data to a company—and the increased focus by customers, investors, and regulators on data-related risks and how a company uses and protects data—boards should probe whether the company’s data governance framework and interrelated AI, GenAI, and cybersecurity governance frameworks are keeping pace.
We highlight four key areas for board focus:
- The adequacy of the company’s data governance framework.
- Elements of a governance framework for AI and GenAI.
- How management is enhancing cybersecurity risk management processes to address the risks posed by AI and GenAI.
- Structuring board and committee oversight of these issues.
Dive into our thinking :
Oversight of data-related risks
Download PDF