The 6 layers of AI governance: A practical AI governance framework

Artificial intelligence is moving quickly from experimentation to everyday business use.

Employees are using AI assistants. Teams are embedding AI into workflows. Vendors are adding AI features into platforms. Leaders are asking how AI can improve productivity, decision-making, customer experience, risk management, and operational efficiency.

That creates opportunity.

It also creates a very practical governance challenge:

How do you make AI visible, controlled, trusted, and accountable across the organization?

This is where AI governance comes in.

AI governance is the set of roles, policies, processes, standards, controls, and evidence that guide how AI is selected, developed, deployed, monitored, and used. It helps organizations benefit from AI while managing risks related to privacy, security, bias, accuracy, explainability, compliance, accountability, and operational impact.

Frameworks such as the NIST AI Risk Management Framework, ISO/IEC 42001, the OECD AI Principles, and the EU AI Act all reinforce a similar idea: trustworthy AI requires risk management, accountability, transparency, lifecycle monitoring, data governance, human oversight, and evidence.

But for many organizations, AI governance still feels too abstract. So here is a practical way to think about it: AI governance has 6 connected layers:

AI Inventory
Data Foundation
Security & Access
Model Assurance
Human Oversight
Compliance & Audit

Each layer answers a different governance question. Together, they help move AI from scattered activity to trusted, managed capability.

Table of Contents

Layer 1: AI Inventory

Layer 2: Data Foundation

Layer 3: Security & Access

Layer 4: Model Assurance

Layer 5: Human Oversight

Layer 6: Compliance & Audit

How the 6 Layers Work Together

Where Organizations Should Start

Common Mistakes to Avoid

Final Thought

Layer 1: AI Inventory

The first layer of AI governance is visibility.

Before an organization can govern AI, it needs to know where AI is being used, who is using it, what purpose it serves, what systems are involved, and what level of risk it creates.

This is especially important because AI adoption often starts informally. A team experiments with a generative AI tool. A department buys software with embedded AI features. A vendor introduces automated recommendations. A data science team develops a model. A business team uses AI to summarize documents or draft communications.

Each use case may seem small on its own, but together they create an AI landscape that can quickly become difficult to manage.

A strong AI inventory layer includes:

Shadow AI Detection
Use Case Register
System Classification
Risk Tiering
Model Registry

Shadow AI Detection helps identify AI tools and capabilities being used outside formal approval channels. This does not have to be treated as a policing exercise. It can be positioned as a discovery exercise that helps the organization understand demand, support responsible use, and reduce avoidable risk.

Use Case Register documents how AI is being used. A good register should capture the business purpose, process owner, affected stakeholders, data used, vendor or system involved, expected benefits, risk level, and governance status.

System Classification helps distinguish between different types of AI usage. For example, an internal productivity assistant is very different from an AI system making recommendations about hiring, lending, healthcare, public services, or customer eligibility.

Risk Tiering assigns a risk level to each AI use case. This allows governance effort to be proportional. Low-risk use cases may need lightweight review. Higher-risk use cases may require deeper assessment, testing, documentation, approvals, and monitoring.

Model Registry tracks models and AI systems across their lifecycle. This may include model name, version, owner, purpose, training data, validation results, deployment status, dependencies, limitations, and retirement status.

The key point: AI governance starts with visibility. If AI usage is invisible, governance becomes reactive.

Layer 2: Data Foundation

AI depends on data.

That sounds obvious, but it is often underappreciated. Many AI governance issues are really data governance issues showing up in a new form.

If the data is inaccurate, incomplete, biased, outdated, poorly classified, poorly documented, or used outside its intended context, AI outputs can become unreliable or inappropriate.

A strong data foundation layer includes:

Source Tracking
Lineage Mapping
Quality Validation
Bias Screening
Usage Rights

Source Tracking identifies where the data comes from. This includes internal systems, external data providers, third-party datasets, open data, user-generated content, documents, images, transactions, logs, and other sources.

Lineage Mapping shows how data moves and changes across systems, pipelines, models, prompts, outputs, and decisions. Lineage helps answer questions such as: Where did this data originate? How was it transformed? Which model used it? Which report, recommendation, or automated action did it influence?

Quality Validation ensures the data is fit for the AI use case. Data quality dimensions such as accuracy, completeness, consistency, timeliness, validity, and uniqueness still matter. For AI, organizations also need to consider representativeness, context, and potential downstream impact.

Bias Screening looks for patterns in data that may lead to unfair or inappropriate outcomes. Bias can come from historical decisions, underrepresented populations, proxy variables, sampling issues, labeling practices, or business rules embedded in source systems.

Usage Rights confirms whether data can be used for the intended AI purpose. This is increasingly important. Data may be acceptable for reporting but not for model training. It may be acceptable for internal analysis but not for external sharing. It may be usable for one purpose but not another.

The key point: AI-ready data requires more than clean data. It requires trusted, documented, governed, and context-aware data.

Layer 3: Security & Access

AI introduces new security and access considerations.

Some are familiar, such as protecting sensitive data, managing user permissions, and securing credentials. Others are more AI-specific, such as prompt injection, data leakage through AI tools, model exposure, insecure plugins, uncontrolled API access, and misuse of generated outputs.

A strong security and access layer includes:

Encryption
Anonymization
Role-Based Access
Least Privilege
Key Management

Encryption protects data at rest and in transit. This is especially important when AI systems access sensitive, regulated, confidential, or proprietary information.

Anonymization reduces the risk of exposing personal or sensitive information. Depending on the use case, organizations may also use masking, tokenization, pseudonymization, aggregation, or synthetic data.

Role-Based Access ensures that people and systems only access the AI capabilities and data they are authorized to use. This matters for both internal AI tools and AI-enabled vendor platforms.

Least Privilege limits access to the minimum necessary level. This is especially important when AI systems connect to enterprise data, productivity tools, code repositories, customer records, HR systems, financial data, or operational systems.

Key Management protects API keys, credentials, secrets, and tokens used by AI applications and integrations. Poor key management can create serious exposure, especially when AI tools are connected to sensitive systems or external services.

The key point: AI governance needs to be connected to information security.

AI systems should be treated as part of the enterprise control environment, especially when they access data, influence decisions, generate content, or automate work.

Layer 4: Model Assurance

Model assurance focuses on whether the AI system performs as expected and remains reliable over time.

This layer is especially important because AI performance is rarely static. Data changes. User behavior changes. Business conditions change. Regulations change. Models are updated. Vendor systems evolve. New risks emerge.

A model that performed well during testing may behave differently in production.

A strong model assurance layer includes:

Model Cards
Performance Benchmarks
Fairness Testing
Drift Monitoring
Red-Teaming

Model Cards document key information about the model or AI system. This may include purpose, intended users, intended use cases, limitations, training data, evaluation methods, performance results, ethical considerations, and known constraints.

Performance Benchmarks define how success is measured. Accuracy alone may not be enough. Depending on the use case, the organization may need to measure precision, recall, false positives, false negatives, hallucination rate, robustness, latency, cost, user acceptance, or business impact.

Fairness Testing evaluates whether outputs differ across groups in ways that create unfair or inappropriate outcomes. This is particularly important in high-impact areas such as employment, education, healthcare, lending, insurance, policing, public benefits, and customer eligibility.

Drift Monitoring tracks whether model performance changes over time. Drift can occur because the data changes, the environment changes, the business process changes, or the model encounters scenarios it was not designed to handle.

Red-Teaming tests the system under challenging, adversarial, or unexpected conditions. For generative AI, this can include attempts to produce harmful content, reveal sensitive information, bypass guardrails, follow malicious instructions, or generate misleading outputs.

The key point: AI assurance is a lifecycle activity.

Testing before launch is important. Monitoring after launch is just as important.

Layer 5: Human Oversight

Human oversight defines how people stay meaningfully involved in AI-enabled processes.

This layer is often misunderstood. Human oversight does not simply mean putting a person somewhere in the process. It means designing clear responsibilities, decision rights, review points, escalation paths, override mechanisms, and accountability structures.

A strong human oversight layer includes:

Decision Review
Escalation Paths
Override Authority
Output Validation
Accountability Mapping

Decision Review identifies which AI-supported decisions require human review. Some outputs may be informational. Others may influence decisions about people, money, access, safety, compliance, or reputation.

Escalation Paths define what happens when something looks wrong, uncertain, risky, or outside policy. Employees need to know where to go, who to involve, and how quickly issues should be addressed.

Override Authority clarifies who can stop, reverse, or modify an AI-driven recommendation or automated action. This is especially important when AI is embedded into workflows.

Output Validation defines how people check AI outputs before using them. This may include fact-checking, source verification, subject matter expert review, legal review, data validation, or comparison against known standards.

Accountability Mapping identifies who is responsible for the AI use case, who owns the business process, who owns the data, who manages the model or vendor system, who monitors performance, and who is accountable for the decision.

The key point: trusted AI needs clear human accountability.

AI can support decisions, but organizations still need people who understand the process, the risk, and the impact.

Layer 6: Compliance & Audit

The final layer is evidence.

Many organizations have AI principles, policies, and responsible AI statements. Those are useful, but they become much more powerful when supported by documentation, control testing, audit trails, incident records, and evidence of actual practice.

A strong compliance and audit layer includes:

Regulatory Mapping
Policy Enforcement
Incident Reporting
Audit Trails
Evidence Repository

Regulatory Mapping connects AI use cases to relevant legal, regulatory, contractual, ethical, and industry obligations. This may include privacy laws, sector-specific regulations, records requirements, human rights obligations, cybersecurity rules, procurement requirements, and emerging AI regulations.

Policy Enforcement turns governance expectations into operational controls. This may include approval workflows, access controls, required documentation, risk assessments, vendor reviews, testing requirements, monitoring thresholds, and usage standards.

Incident Reporting defines how AI-related issues are captured, assessed, escalated, resolved, and learned from. Incidents may include harmful outputs, privacy concerns, security events, biased outcomes, incorrect recommendations, policy violations, unexpected model behavior, or vendor failures.

Audit Trails preserve records of important AI activities. These may include model changes, access logs, approval decisions, prompts and outputs where appropriate, validation results, monitoring alerts, review outcomes, and incident actions.

Evidence Repository stores the documentation needed to demonstrate governance. This may include risk assessments, model cards, data lineage, testing results, approval records, monitoring reports, issue logs, vendor documentation, policy exceptions, and audit findings.

The key point: AI governance should be demonstrable.

If the organization says a control exists, it should be able to show how that control works, who owns it, and what evidence proves it happened.

How the 6 Layers Work Together

The six layers are strongest when they are connected.

An AI use case in the inventory should connect to its risk tier.
The risk tier should influence the depth of review, testing, documentation, monitoring, and approval.
The model should connect to the data sources it uses.
The data sources should connect to lineage, quality checks, usage rights, and access controls.
The AI output should connect to a business process, a decision owner, and a validation step.
Any incident should connect to an issue log, an accountable owner, and corrective action.
Audit evidence should connect back to the controls that were required for that use case.

This is where AI governance becomes practical.

It moves from a set of principles to a system of connected controls.

Where Organizations Should Start

Organizations do not need to build every layer perfectly before they begin. A practical starting point is to focus on the highest-value foundations.

Start with these five actions:

Create an AI use case register
Document where AI is being used, by whom, for what purpose, with what data, and in which system.
Define AI risk tiers
Create simple categories that determine which use cases need lightweight review, enhanced review, or formal approval.
Connect AI governance to data governance
For each significant AI use case, identify the data sources, data owners, data quality expectations, lineage needs, classification, and usage rights.
Define human accountability
Clarify who owns the use case, who owns the decision, who reviews outputs, and who can escalate or override.
Build an evidence trail
Capture the artifacts that prove governance is happening: risk assessments, approvals, model documentation, monitoring results, issue logs, and audit records.

This creates momentum without overwhelming the organization.

Common Mistakes to Avoid

AI governance programs often struggle when they become too theoretical, too centralized, or too disconnected from actual AI usage.

Some common traps include:

Creating AI principles without operational controls
Reviewing AI tools without tracking AI use cases
Focusing on models while ignoring the data foundation
Treating vendor AI features as automatically safe
Assuming human oversight exists because a human is somewhere in the process
Testing AI before launch without monitoring it after launch
Creating documentation that is not connected to decisions, controls, or audit evidence

The strongest AI governance programs are practical. They connect governance to real workflows, real data, real systems, real decisions, and real accountability.

Final Thought

AI governance is becoming a core business capability. It is not only a compliance requirement. It is how organizations build trust in the AI systems they choose, develop, buy, deploy, and use.

The organizations that succeed with AI will be the ones that can answer practical questions:

Where is AI being used?
What data does it rely on?
Who owns the use case?
What risks does it create?
How was it tested?
Who reviews the output?
What happens when something goes wrong?
What evidence proves the controls are working?

That is the purpose of the 6 layers of AI governance.

They help organizations move from AI activity to trusted AI capability.

And as AI becomes more embedded into everyday work, that difference will matter more and more.

Insert Styled Box

Share0

Tweet0

About the author

George Firican

George Firican is the Director of Data Governance and Business Intelligence at the University of British Columbia, which is ranked among the top 20 public universities in the world. His passion for data led him towards award-winning program implementations in the data governance, data quality, and business intelligence fields. Due to his desire for continuous improvement and knowledge sharing, he founded LightsOnData, a website which offers free templates, definitions, best practices, articles and other useful resources to help with data governance and data management questions and challenges. He also has over twelve years of project management and business/technical analysis experience in the higher education, fundraising, software and web development, and e-commerce industries.

Cookie	Duration	Description
cookielawinfo-checkbox-advertisement	1 year	Set by the GDPR Cookie Consent plugin, this cookie is used to record the user consent for the cookies in the "Advertisement" category .
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
CookieLawInfoConsent	1 year	Records the default button state of the corresponding category & the status of CCPA. It works only in coordination with the primary cookie.
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Cookie	Duration	Description
__cf_bm	30 minutes	This cookie, set by Cloudflare, is used to support Cloudflare Bot Management.
sp_landing	1 day	The sp_landing is set by Spotify to implement audio content from Spotify on the website and also registers information on user interaction related to the audio content.
sp_t	1 year	The sp_t cookie is set by Spotify to implement audio content from Spotify on the website and also registers information on user interaction related to the audio content.
tve_leads_unique	1 month	This cookie is set by the provider Thrive Themes. This cookie is used to know which optin form the visitor has filled out when subscribing a newsletter.

Cookie	Duration	Description
_ga	2 years	The _ga cookie, installed by Google Analytics, calculates visitor, session and campaign data and also keeps track of site usage for the site's analytics report. The cookie stores information anonymously and assigns a randomly generated number to recognize unique visitors.
_ga_1Z635JPV9L	2 years	This cookie is installed by Google Analytics.
CONSENT	2 years	YouTube sets this cookie via embedded youtube-videos and registers anonymous statistical data.
vuid	2 years	Vimeo installs this cookie to collect tracking information by setting a unique ID to embed videos to the website.

Cookie	Duration	Description
_fbp	3 months	This cookie is set by Facebook to display advertisements when either on Facebook or on a digital platform powered by Facebook advertising, after visiting the website.
VISITOR_INFO1_LIVE	5 months 27 days	A cookie set by YouTube to measure bandwidth that determines whether the user gets the new or old player interface.
YSC	session	YSC cookie is set by Youtube and is used to track the views of embedded videos on Youtube pages.
yt-remote-connected-devices	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.
yt-remote-device-id	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.
yt.innertube::nextId	never	This cookie, set by YouTube, registers a unique ID to store data on what videos from YouTube the user has seen.
yt.innertube::requests	never	This cookie, set by YouTube, registers a unique ID to store data on what videos from YouTube the user has seen.

Cookie	Duration	Description
AE_AB_COOKIE	1 year	No description
DEVICE_INFO	5 months 27 days	No description
loglevel	never	No description available.
tl_4829_4830_26	1 month	No description
tl_4829_4840_30	1 month	No description
tl_4829_4941_41	1 month	No description
tve_secret	1 year	No description available.

The 6 layers of AI governance: A practical AI governance framework

Layer 1: AI Inventory

Layer 2: Data Foundation

Layer 3: Security & Access

Layer 4: Model Assurance

Layer 5: Human Oversight

Layer 6: Compliance & Audit

How the 6 Layers Work Together

Where Organizations Should Start

Common Mistakes to Avoid

Final Thought

George Firican

How AI Is Reinventing MDM and Data Governance

From fragmented data to planetary-scale systems: why FSA/MEBS represents a step-change in enterprise modeling

Optimizing retail operations through a practical data strategy

Transforming Marketing Data into Business Growth: Key Insights and Strategies

The future of generative AI’s form factor

You may also like:

The 6 layers of AI governance: A practical AI governance framework

How AI Is Reinventing MDM and Data Governance

Data steward’s guide to machine learning – free white paper