Dr. Freddie Seba

AI Governance Keynote Speaker  ·  Author  ·  Scholar Operator

EdD · USF  ·  MBA · Yale  ·  MA · Stanford  · Teaching · UIC  ·  20+ years · Silicon Valley Founder & Global Executive · Digital Health · Fintech · Higher Ed.

Issue #65 | AI Governance Is Entering Its Hardest Phase: Autonomy Is Scaling Faster Than Oversight.

AI Ethics & Governance for Leaders, Boards & Trustees

By Dr. Freddie Seba. © 2026 Freddie Seba. All rights reserved.

AI governance is entering a more serious phase.

Not because organizations are still experimenting.

Because they are beginning to delegate.

This week’s research and news point to the same underlying shift: AI is moving from assistive use cases toward systems that can plan, act, coordinate, and increasingly operate inside live workflows. The World Economic Forum (WEF) says organizations are moving from isolated AI use cases to connected systems embedded across operations and decision-making. MIT Sloan Management Review reports that more than a third of surveyed companies are already deploying agentic AI systems, with another 44% planning to do so.

That is the governance signal.

The Seba Framework: The 12 Ps of Responsible AI Oversight

This week’s signals also fit clearly into the Seba 12 Ps framework for responsible AI oversight:

  1. Purpose — mission alignment versus convenience adoption
  2. Problems — what decision problem is actually being solved
  3. Profits — who benefits versus who bears risk
  4. People — patient, student, worker, and public impact
  5. Planet — infrastructure, energy, and scaling implications
  6. Process — monitoring, updates, escalation, and incident learning
  7. Policy — rules governing the use case and its limits
  8. Protections — red lines, vulnerable groups, and complaint pathways
  9. Privacy — data access, retention, exposure, and secondary use
  10. Provenance — evidence-based benchmarks, standards, and traceability
  11. Preparedness — leadership competence and governance cadence
  12. Product Ownership — who owns outcomes once AI shapes action

Four Ps feel especially active in this issue:

  • Preparedness, because institutions are delegating faster than they are building governance muscle.
  • Process, because once AI systems begin acting inside workflows, monitoring, escalation, and rollback can no longer be treated as downstream questions.
  • Provenance, because confidence in agentic and decision-shaping systems depends on whether evidence, assumptions, and outputs can actually be traced, tested, and challenged.
  • Product Ownership, because the central governance question is no longer whether AI assists work, but who owns the outcome once AI begins to shape action inside the institution.

The challenge is no longer whether AI can support work. The challenge is whether institutions are prepared to govern systems that are already doing work.

One of the clearest warnings in this week’s sources is that organizational ambition is expanding faster than institutional discipline.

Writer’s 2026 enterprise survey reports that 75% of executives say their company’s AI strategy is “more for show” than actual internal guidance, 67% believe their company has already suffered a data breach due to unapproved AI tools, and only 29% report significant ROI from generative AI. That combination matters. It suggests that many organizations are scaling AI pressure, internal expectations, and external narrative faster than they are scaling oversight, supervision, and durable governance. (WRITER)

That is not transformation maturity. That is governance debt.

This week’s research and news also reinforce that the next phase of AI adoption is not just about productivity. It is about operational authority.

McKinsey & Company, the global management consulting firm, finds that security and risk concerns are now the top barrier to scaling agentic AI, and that active mitigation still trails perceived relevance across major risk categories. In parallel, NIST — the U.S. National Institute of Standards and Technology — emphasizes that post-deployment monitoring is becoming essential as AI systems are integrated into commercial and government applications, while noting that best practices and validated methodologies remain nascent. (McKinsey & Company)

That is where many governance conversations remain too shallow. As long as AI functioned mainly as an assistant, many leaders could treat governance as a policy layer around usage. But once systems are given more autonomy, governance has to move deeper into operating design:

  • Who approves delegated action?
  • What gets logged?
  • What is reversible?

What triggers shutdown, rollback, or human intervention?

Who is accountable when a system performs well most of the time but fails under pressure?

Those are no longer downstream questions. They are now preconditions for responsible deployment. MIT Sloan frames this shift through four tensions: scalability versus adaptability, experience versus expediency, supervision versus autonomy, and retrofit versus reengineer. (MIT Sloan)

Another important signal from this week’s research and news is that security is no longer adjacent to AI governance. It is central to it.

Anthropic says frontier AI models have reached a level of coding capability that allows them to surpass all but the most skilled humans at finding and exploiting software vulnerabilities. Whether or not every organization is using such systems directly, the implication is clear: capability gains can quickly become institutional exposure if access control, containment, monitoring, and escalation discipline do not mature at the same pace. (Anthropic)

This is one reason the next chapter of AI governance will be harder than the last.

  • The systems are more capable.
  • The workflows are more connected.
  • The margin for error is shrinking.

This week’s sources also point to a less dramatic, but equally important, governance risk: false authority at scale.

Nature recently highlighted a case in which AI systems presented a fabricated disease as though it were real. That may sound like an isolated research anecdote, but the governance lesson is broader. When systems sound authoritative, institutions can over-trust them. And once those outputs begin circulating into research, education, healthcare, financial services, or administrative environments, errors can travel faster than organizations are prepared to detect, question, or contain them. (nature.com)

That is why post-deployment governance matters so much.

  • Governance does not end when a model clears evaluation.
  • Governance starts when the model begins interacting with the real world. (nvlpubs.nist.gov)

One of the more practical governance signals in this week’s sources comes from regulated sectors.

In healthcare, Becker reports that some organizations are deploying AI agents with full audit logs, real-time dashboards, strict permissions, no authority to place orders, and immediate kill switches. One executive describes agents beginning in a shadow-like mode and earning autonomy only after proving accuracy. The lesson extends beyond healthcare to financial services and other high-trust environments: autonomy should be earned, not assumed. (Becker’s Hospital Review)

Public trust is not automatically rising with enterprise adoption either.

Pew Research Center, the nonpartisan U.S. research organization, reports that half of U.S. adults say the increased use of AI in daily life makes them feel more concerned than excited. In contrast, only 10% say they are more excited than concerned. That matters because governance is not only about internal control. It is also about institutional legitimacy. Organizations may be moving faster with AI, but the public may not be keeping pace. (Pew Research Center)

Regulation is still evolving as well.

The European Parliament said in late March that lawmakers support a ban on certain AI “nudifier” apps and want providers to comply with watermarking rules for AI-created content by November 2, 2026. Regulation will continue to matter, but it will not remove the burden of institutional judgment. Most of the hardest governance decisions will still be made inside organizations, long before regulators can fully specify every acceptable use case. (European Parliament)

AI governance translation

  • No executive team should confuse adoption momentum with governance readiness.
  • No board should assume that an AI strategy deck, a steering committee, or a responsible AI statement is enough.

The real test is whether the institution has decision rights, escalation paths, monitoring discipline, and named ownership before autonomy expands.

What boards and executive teams should infer now?

AI governance is shifting from a focus on principles to one on operational control.

The revealing questions are no longer:

  • Do we have an AI policy?
  • Do we have a principles document?
  • Do we have a working group?

The more serious questions are:

  • Where has autonomy already been delegated?
  • What can agents do without human approval?
  • What is being monitored after deployment?
  • What gets escalated?
  • What would trigger a pause?
  • Who owns the risk when AI outputs shape real outcomes?

That is the level of seriousness this phase requires.

Board-Ready Next Step: Require an Autonomy & Oversight Sheet

If you do only one thing this quarter, require an Autonomy & Oversight Sheet for every consequential AI use case.

One page.

  • Named owner.
  • Reviewable.
  • Updated after deployment.

At a minimum, it should answer seven questions:

  • What decision or workflow is being shaped? Advising, drafting, routing, scoring, triage, monitoring, scheduling, customer interaction, coding, or escalation?
  • What level of autonomy has been delegated? Recommendation only, supervised action, partial execution, or full execution within constraints?
  • What assumptions travel with the system? Data availability, language, user skill, workflow stability, sector context, compliance environment, or vendor claims?
  • Which of those assumptions do not fully hold here? Where is the mismatch between vendor context and institutional reality?
  • Who owns the mismatch? Name the executive owner, operational owner, and escalation owner.
  • What human review remains required? What cannot happen without human signoff, and who has pause authority?
  • How will the institution learn after launch? What counts as an incident, threshold breach, near miss, false-confidence event, or reason to restrict, retrain, or stop use?

That sheet turns “we are experimenting with AI” into: “We are governing the conditions under which AI is being introduced.”

Podcast Note | Episode #13 goes live mid-week

This week’s episode of AI Governance with Dr. Freddie Seba goes live mid-week:

Episode #13: AI Governance for Children and Adolescents — Why Safety Cannot Be an Afterthought

In this conversation, I speak with Anne-Sophie Seret, Executive Director and Co-Founder of Everyone.AI, an organization focused on anticipating, educating, and evaluating the risks and opportunities of AI for children, adolescents, and young adults. This episode addresses a governance failure that leaders still underestimate:

AI safety discussions often begin too late — after products scale, after behaviors normalize, and after vulnerable populations have already been exposed.

Anne-Sophie brings a balanced and timely perspective. She does not approach AI companies simply with wholesale criticism. She approaches them as institutions that need stronger safety knowledge, deeper developmental awareness, and more responsible product governance from the beginning.

Together, we discuss:

  • Why AI safety for children and adolescents is becoming a central governance issue
  • How developmental, cognitive, and social-emotional risks should shape oversight
  • Why anthropomorphic and companion-style AI systems deserve closer scrutiny
  • Why product safety standards in digital environments often lag behind physical-world expectations
  • Why governance must move upstream, before adoption becomes normalized and difficult to unwind
  • How leaders can think about minimum viable governance, third-party evaluation, and age-appropriate design

At its core, that episode asks a broader institutional question:

  • Not whether AI can engage young users.
  • But whether institutions are prepared to govern the consequences responsibly before that engagement scales.
  • And that question belongs not only to education or youth policy. It belongs equally to healthcare, financial services, public leadership, product design, and board oversight.

AI Governance Book Update

As my forthcoming AI Governance book moves closer to completion, this is one of the themes I keep returning to: The problem is not a lack of AI conversation.

It is a lack of decision-grade oversight.

Leaders increasingly understand that AI can be powerful. The harder question is whether they can govern the institutional, social, and operational environment into which that power is being introduced.

That is why this week’s research, writing, and podcast work connect so clearly.

  • Less abstraction.
  • More translation.
  • More ownership.
  • More fiduciary clarity.

A note on last week’s AI convenings

After last week’s AI convenings and conversations in San Francisco, one theme felt especially clear:

  • The organizations that distinguish themselves in this next phase will not be the ones that adopted AI fastest.
  • They will be the ones who learned how to govern autonomy, trust, and oversight before failure forced the lesson.

Gratitude

Grateful to the researchers, practitioners, policy thinkers, institutional leaders, and operating teams whose work continues to sharpen this field.

And grateful as well for the broader communities across healthcare, higher education, financial services, public leadership, and the innovation ecosystem who continue to take AI governance seriously — not as a branding exercise, but as a leadership responsibility. @USF, Anne-Sophie SERET, MIT Press, Anthropic, Pew Research Center, McKinsey & Company, Becker’s Healthcare, National Institute of Standards and Technology (NIST) , European Commission

Final thought

The next frontier in AI governance is not adoption. It is controlled autonomy. And the institutions that matter most will be the ones that understand this early:

Scale without oversight is not innovation maturity. It is governance debt.

About the Author

Dr. Freddie Seba writes and speaks on AI ethics and AI governance for leaders, boards, and trustees across higher education, healthcare, and financial services. He is a researcher-practitioner with experience across Silicon Valley startups, global firms, and higher education. He holds an MBA from Yale, an MA in International Policy Studies from Stanford, and an EdD in Organization and Leadership from the University of San Francisco.

Global Executive | Silicon Valley Founder | AI Governance Scholar-Operator | MBA, Yale • MA, Stanford • EdD, USF

Transparency + Disclaimer

Educational content only. This newsletter does not constitute legal, medical, clinical, insurance, financial, or professional advice. Drafted and refined with AI-assisted tools for synthesis and clarity. Final editorial control and responsibility remain with the author.

© 2026 Freddie Seba. All rights reserved.

#AIGovernance #ResponsibleAI #BoardOversight #AIEthics #RiskManagement #HealthcareAI #FinancialServices #AgenticAI #TrustInfrastructure #AILeadership

Selected sources reviewed for this week’s issue:

World Economic Forum, Organizational Transformation in the Age of AI (World Economic Forum)

MIT Sloan, How to Navigate the Age of Agentic AI (MIT Sloan)

Writer, Enterprise AI Adoption in 2026 (WRITER)

McKinsey & Company, Responsible AI: Overcoming Adoption Barriers and Risks (McKinsey & Company)

NIST, Challenges to the Monitoring of Deployed AI Systems (nvlpubs.nist.gov)

Anthropic, Project Glasswing (Anthropic)

Nature, Scientists invented a fake disease. AI told people it was real (nature.com)

Becker’s Hospital Review, Kill switches, guardrails: The raging debate over healthcare AI agents (Becker’s Hospital Review)

Pew Research Center, What the data says about Americans’ views of artificial intelligence (Pew Research Center)

European Parliament, Artificial Intelligence Act: delayed application, ban on nudifier apps (European Parliament)