Blog · Governance & Accountability

What Senior Operators Are Learning About AI Accountability

Operators are discovering that the hard part of AI governance is not the technology. It is deciding who owns it, how to measure it, and where a human must stay in the loop.

ZAI Institute Research · June 24, 2026 · 9 min read
6 of 7
firms had AI councils or think tanks, but only one measured concrete ROI
~20%
average share of women on deployed AI champion teams, with one outlier at 75 percent
~80%
deflection rate operators want to measure, since users often bypass capable bots to reach a human
98%
output accuracy at which human reviewers stop catching the rare, costly defect

The metrics are measuring the wrong thing

A pattern runs through these accounts. Organizations want to show they are using AI, so they measure activity. One operator described leadership tracking AI credit consumption as a proxy for performance. Spending far below your allotted dollar amount flags you as underutilizing the tool. Another cited a tech company that made token usage a KPI. Employees responded by using AI redundantly, just to look engaged.

The result is predictable. Usage-based metrics push staff to generate low-value output to hit numbers. Volume gets rewarded over value, and real work quietly degrades. One operator said tying AI to performance goals is the only way to beat change-management inertia. Another warned that mandatory tracking becomes a hated checkbox. Both can be true.

The deeper problem is that activity is easy to count and outcomes are hard. A technology operator reported that six of seven firms have AI councils or think tanks, but no enterprise mechanism to quantify ROI. Only one measured concrete metrics. The governance structures exist. The measurement does not.

Quality gates are breaking under speed

When the pressure is to ship, the checks meant to catch errors are the first to bend. Agent-generated pull requests now bundle thousands of lines across dozens of files in a single review. The human reviewer cannot meaningfully inspect that volume, and the chance of merging an error rises.

A former delivery director named the trap precisely. When 98 percent of automated outputs are correct, human reviewers stop catching the rare defect. Vigilance atrophies. In audit and tax work, that is the defect that matters most. One operator called the so-called 85 percent accuracy rule a lawsuit waiting to happen in safety and legal compliance, where AI can assist but never decide.

The failures also hide inside plausible-looking work. One operator found that an AI silently omitted open pull requests from a handoff document because a human had labeled one 'do not merge.' The gap surfaced only through deliberate cross-questioning. Another plugged breakout notes into a chatbot to write her group summary, then admitted she had no time to verify it. Unverified output enters decisions quietly, and looks finished while it does it.

Shadow AI arrived before the policy did

In lagging organizations, governance is catching up to behavior that is already entrenched. A nonprofit leader admitted staff adopted personal ChatGPT accounts before any policy existed. An advisor reported clients leaking private and interim financial data into AI environments the company does not control.

The shapes vary by industry but the gap is the same. Operators across nonprofit, manufacturing, finance, and IT reported staff photographing screens, using personal accounts, and building unsanctioned agents that move confidential data outside company control. A manufacturing voice cited shop floor workers reaching payroll data and orphaned AI apps with no owner.

A newer worry is citizen development. Anyone can now build an agent, and these informal tools risk becoming critical to the business with no guardrails or support behind them. The agents proliferate bottom-up. The governance is still forming top-down. The two have not met.

The bottleneck is leadership judgment, not talent

Several operators flipped the usual talent-shortage story. The binding constraint is decision-makers, not engineers. One named the central blocker as fear-based interest: leaders feel urgency to act but lack a realistic read on what AI can actually do, so they oscillate between hype-driven adoption and paralysis.

The framing from the top often makes it worse. A consultant said boards demand AI and assume you can just flip it on, with no voice telling them to slow down. One senior leader called software cheap, ignoring the hardware and token costs beneath AI-generated code. Technical staff heard that and tuned out. A CEO mandated two AI use cases per department within a year, with no requirement to tie them to a P&L line.

Ownership is also fragmented. Operators described leadership treating AI in customer experience as separate departmental problems, with no single accountable owner. The most-cited practical fix was modest. Assign responsibility to one executive to get the ball rolling. Governance stalls on the search for perfection. A single owner converts intent into motion.

The patterns that are working

Some operators have built things that hold. In fintech, one described a mandatory orchestrator layer that combines human feedback, an LLM-as-judge, and custom evaluation functions, with security review of all tooling before development proceeds. Another built an investment screen that filters enterprise requests through four gates: strategic alignment, measurable ROI, build-versus-buy timing, and governance. Small single-team requests skip it, so the process stops neither everything nor nothing.

The common thread is knowing where to reinsert a human. Across healthcare, every operator stressed that AI outputs still require human review, citing accuracy gaps in documentation and customer-facing tasks. In insurance pre-authorization, someone must still be able to challenge a denial. One operator runs a live dollar counter that ticks up during AI use, prompting the question of whether a $7.50 query was worth it.

Independence matters too. One operator argued that process mapping for AI should be done by a team separate from those implementing it, because self-assessment hides risk. Another wants an independent, data-backed report on where AI can be trusted versus where caution is needed, and openly distrusts guidance from large vendors because of their profit motive. The demand is for neutral evidence, not a sales pitch.

What the underlying reports offer

Read together, these findings give an operator something hard to assemble alone: a candid map of how AI governance actually behaves inside organizations, drawn from people who are living it rather than selling it.

You see which controls hold and which collapse under deadline pressure. You see the perverse incentives that activity metrics create, the specific ways AI failures hide inside plausible output, and the contracting and review practices that a few teams have made work. You also see the open questions operators are still arguing over, including who should champion adoption and how to govern agents that take autonomous action.

None of it claims a finished playbook, because the operators do not have one. What it offers is the shared judgment of people a step ahead, so the next decision is made with more evidence and fewer assumptions.