AI-Driven Data Governance and Compliance: Building Trustworthy Enterprise Intelligence Systems

Authors

  • Ananda Kumar Dey

Keywords:

AI Governance, Data Lineage, Model Explainability, Bias Mitigation, Regulatory Compliance, Enterprise Trust Architecture

Abstract

Enterprise AI adoption has grown faster than the systems designed to manage it. By early 2024, 65% of organizations were using generative AI in at least one core business function, yet only 18% had an enterprise-wide council with authority over AI risk decisions. This gap creates real exposure. An example of the quantification of AI risk within the economy includes the increase in public data breaches, liability lawsuits against chatbots, and regulatory fines. Based on findings from the 2024 IBM Cost of a Data Breach Report, the global average cost of a data breach stands at $4.88 million per data breach, although it can be reduced to $2.2 million through the use of AI technology. This article examines eight elements of a sound AI governance program: the structural governance gap, data lineage as the basis of accountability, explainability tools that make model outputs clear, bias detection across the full model lifecycle, AI-powered governance automation, compliance with the NIST AI RMF, ISO/IEC 42001, and the EU AI Act, a layered enterprise trust architecture, and the wider societal stakes of responsible AI deployment. The analysis draws on industry benchmarks, regulatory texts, and recent empirical research.

Downloads

Download data is not yet available.

References

E. Tabassi, "Artificial Intelligence Risk Management Framework (AI RMF 1.0)," NIST AI 100-1, 2023. Available: https://www.nist.gov/publications/artificial-intelligence-risk-management-framework-ai-rmf-10

National Institute of Standards and Technology, "Artificial Intelligence Risk Management Framework: Generative Artificial Intelligence Profile," NIST AI 600-1, 2024. Available: https://doi.org/10.6028/NIST.AI.600-1

International Organization for Standardization, "ISO/IEC 42001:2023 - Information Technology - Artificial Intelligence - Management System," 2023. Available: https://www.iso.org/standard/42001

European Union, "Regulation (EU) 2024/1689 - Artificial Intelligence Act," Official Journal of the European Union, 2024. Available: https://eur-lex.europa.eu/eli/reg/2024/1689/oj/eng

Board of Governors of the Federal Reserve System, "Supervisory Guidance on Model Risk Management," 2026. Available: https://www.federalreserve.gov/supervisionreg/srletters/SR2602.pdf

S. M. Lundberg and S.-I. Lee, "A Unified Approach to Interpreting Model Predictions," Advances in Neural Information Processing Systems 30, 2017. Available: https://proceedings.neurips.cc/paper/2017/hash/8a20a8621978632d76c43dfd28b67767-Abstract.html

M. T. Ribeiro, S. Singh, and C. Guestrin, "Why Should I Trust You?: Explaining the Predictions of Any Classifier," Proc. 22nd ACM SIGKDD, pp. 1135-1144, 2016. Available: https://dl.acm.org/doi/abs/10.1145/2939672.2939778

N. Mehrabi, F. Morstatter, N. Saxena, K. Lerman, and A. Galstyan, "A Survey on Bias and Fairness in Machine Learning," ACM Computing Surveys, vol. 54, no. 6, pp. 1-35, 2021. Available: https://dl.acm.org/doi/abs/10.1145/3457607

IBM Security, "IBM Report: Escalating Data Breach Disruption Pushes Costs to New Highs," IBM, July 2024. Available: https://newsroom.ibm.com/2024-07-30-ibm-report-escalating-data-breach-disruption-pushes-costs-to-new-highs

A. Singhla, "The State of AI in Early 2024: Gen AI Adoption Spikes and Starts to Generate Value," McKinsey & Company, May 2024. Available: https://www.mckinsey.com/capabilities/quantumblack/our-insights/the-state-of-ai-2024

OWASP Gen AI Security Project, "LLM01:2025 Prompt Injection," 2025. Available: https://genai.owasp.org/llmrisk/llm01-prompt-injection/

L. Wilkinson, "Samsung Employees Leaked Corporate Data in ChatGPT: Report," CIO Dive, Apr. 2023. Available: https://www.ciodive.com/news/Samsung-Electronics-ChatGPT-leak-data-privacy/647137/

A. Goncalves and A. Correia, "Engineering Explainable AI Systems for GDPR-Aligned Decision Transparency: A Modular Framework for Continuous Compliance," Journal of Cybersecurity and Privacy, vol. 6, no. 1, p. 7, 2025. Available: https://www.mdpi.com/2624-800X/6/1/7

P. Choowan and H. Daovisan, "Artificial Intelligence in Data Governance for Financial Decision-Making: A Systematic Review," Big Data and Cognitive Computing, vol. 10, no. 1, p. 8, 2025. Available: https://www.mdpi.com/2504-2289/10/1/8

A. K. Sharma and R. Sharma, "Data Governance in the Age of Artificial Intelligence: Challenges, Best Practices and Regulatory Compliance," Applied Marketing Analytics, vol. 10, no. 4, pp. 390-403, 2025. Available: https://www.ingentaconnect.com/content/hsp/ama/2025/00000010/00000004/art00008

E. Bandara et al., "AI Trust OS - A Continuous Governance Framework for Autonomous AI Observability and Zero-Trust Compliance in Enterprise Environments," arXiv:2604.04749, 2026. Available: https://arxiv.org/abs/2604.04749

N. R. Desani, "Enhancing Data Governance through AI-Driven Data Quality Management and Automated Data Contracts," Int. J. Sci. Res., vol. 12, no. 8, pp. 2519-2525, 2023. Available: https://www.researchgate.net/profile/Nithin-Reddy-Desani/publication/382711308

S. Mirishli, "Ethical Implications of AI in Data Collection: Balancing Innovation with Privacy," arXiv:2503.14539, 2025. Available: https://arxiv.org/abs/2503.14539

S. Al Mandalawi et al., "Policy-Aware Generative AI for Safe, Auditable Data Access Governance," in Proc. 17th Int. Conf. on Knowledge and System Engineering (KSE), pp. 1-6, IEEE, 2025. Available: https://ieeexplore.ieee.org/abstract/document/11309632

Downloads

Published

20.06.2026

How to Cite

Ananda Kumar Dey. (2026). AI-Driven Data Governance and Compliance: Building Trustworthy Enterprise Intelligence Systems. International Journal of Intelligent Systems and Applications in Engineering, 14(1s), 1652–1664. Retrieved from https://www.ijisae.org/index.php/IJISAE/article/view/8398

Issue

Vol. 14 No. 1s (2026)

Section

Research Article

License

Creative Commons License

This work is licensed under a Creative Commons Attribution-ShareAlike 4.0 International License.

All papers should be submitted electronically. All submitted manuscripts must be original work that is not under submission at another journal or under consideration for publication in another form, such as a monograph or chapter of a book. Authors of submitted papers are obligated not to submit their paper for publication elsewhere until an editorial decision is rendered on their submission. Further, authors of accepted papers are prohibited from publishing the results in other publications that appear before the paper is published in the Journal unless they receive approval for doing so from the Editor-In-Chief.

IJISAE open access articles are licensed under a Creative Commons Attribution-ShareAlike 4.0 International License. This license lets the audience to give appropriate credit, provide a link to the license, and indicate if changes were made and if they remix, transform, or build upon the material, they must distribute contributions under the same license as the original.