AI Governance, Right-to-Repair, Workforce Surveillance, and New Regulations

[00:00:02] It's Tuesday, October 29th, 2024, and I'm going to have so four things to know today.

[00:00:07] The public and private sectors grapple with AI governance.

[00:00:10] A new U.S. AI security framework emphasizes innovation, compliance, and national defense.

[00:00:16] Right-to-Repair exemption for food service equipment opens the doors for independent repairs and franchise flexibility.

[00:00:23] And AI and digital surveillance in the workforce are under scrutiny.

[00:00:27] This is the Business of Tech.

[00:00:31] A new playbook highlights the role of the Chief Artificial Intelligence Officer, or CAIO, in guiding public sector agencies as they integrate AI and machine learning into their operations.

[00:00:43] Authored by analysts from the International Data Corporation, the report outlines four critical actions for responsible AI advancement.

[00:00:51] Assessing AI maturity, addressing risk and compliance, developing an AI-ready workforce, and investing in innovation.

[00:00:58] Key findings indicate that 39% of agencies with higher AI maturity prioritize generative AI projects, while 36% face a shortage of in-house expertise.

[00:01:10] The report emphasizes that 69% of agencies collaborate with trusted partners to shape their AI strategies.

[00:01:17] Additionally, it reveals that 62% of surveyed agencies view strengthening cybersecurity as a primary motivation for AI adoption.

[00:01:26] The playbook advises Chief AI officers to focus on immediate use cases with measurable impacts to foster innovation within their agencies.

[00:01:35] A recent study by Software 8G reveals that half of all employees use shadow AI or non-company issued AI tools.

[00:01:44] The survey, which included 6,000 knowledge workers across the US, UK, and Germany, found that 46% of respondents would refuse to stop using these tools even if their organization banned them.

[00:01:55] Currently, 75% of knowledge workers utilize AI, which is expected to rise to 90% as AI increasingly aids in saving time and improving productivity.

[00:02:06] However, the study also highlights that while many employees recognize risks associated with AI use, such as cybersecurity threats and data governance issues, few take adequate precautions.

[00:02:18] And knowledge workers are increasingly turning to artificial intelligence to manage their growing workloads, according to a survey conducted by Sapio Research or Right.

[00:02:27] The survey reveals that over half of knowledge workers believe AI has significantly enhanced their job performance.

[00:02:34] While business leaders estimate that AI supports about 32% of their team's workload, knowledge workers place that figure at only 14%.

[00:02:42] Despite this support, employees report spending nearly half their week on low-impact tasks, which unnecessary work costs organization over $15,000 annually per employee.

[00:02:54] The Right reports highlights that knowledge workers' workloads have surged by 31% in the past year, yet only a third say their employers are actively working to alleviate the burden.

[00:03:05] Why do we care?

[00:03:07] I'm increasingly skeptical of the chief AI officer role, as I'm focused on how AI is an augmentative technology and not something you do in isolation.

[00:03:16] That said, the framework here, what an organization needs to do, is spot on.

[00:03:21] It's on Linus, as well-works.

[00:03:22] For all, IT leaders should prioritize developing and communicating AI governance policies that allow for secure, company-approved tools and educate employees on the risks of unapproved AI use.

[00:03:32] Providers can offer AI governance solutions that enforce policy compliance, provide alternative sanction tools, and educate workers on the implications of shadow AI.

[00:03:42] Companies that proactively address shadow AI could turn it from a risk into an asset by formalizing processes and embracing tools that meet both employee and organizational needs.

[00:03:56] With as many breaches and security concerns as I report in this show, it should be obvious that cybersecurity is not just about technology, but also the human expertise needed to interpret and respond to complex threats.

[00:04:09] Huntress is focused on elevating SMBs and MSPs around the world.

[00:04:15] Huntress has a suite of fully managed cybersecurity solutions powered by a 24 by 7 human led SOC dedicated to continuous monitoring, expert investigation and rapid response.

[00:04:27] And the proof is the execution.

[00:04:29] Huntress is the number one rated EDR for SMBs on G2.

[00:04:35] Want to know more about the platform?

[00:04:37] Visit Huntress.com slash MSP radio to learn more.

[00:04:43] In a significant move, the Biden administration has unveiled its first national security memorandum focused exclusively on artificial intelligence.

[00:04:52] National Security Advisor Jake Sullivan emphasized the importance of maintaining U.S. leadership in AI development and deployment while preserving human rights.

[00:05:01] Key provisions include enhancing the national AI research resource and increasing cybersecurity collaboration with the private sector.

[00:05:09] The memorandum also introduces a framework for AI governance, identifying high-risk AI use cases similar to the European Union's AI Act.

[00:05:18] Sullivan stated that clear policy guidelines will foster innovation while safeguarding national security, asserting that AI's application will critically shape the future amid strategic global competition.

[00:05:30] And the White House has instructed the Pentagon and intelligence agencies to enhance their use of artificial intelligence as part of the national security strategy to counter technological competition from China and other adversaries.

[00:05:42] The directive, outlined in the national security memorandum, encourages government agencies to accelerate their experiments and deployments of AI technology.

[00:05:49] The newly established AI Safety Institute will be crucial in vetting AI tools to prevent their misuse by terrorist organizations or hostile nations.

[00:05:58] The long-term effectiveness of the order remains uncertain as many of its deadlines will expire after Biden's presidency.

[00:06:05] And the administration has taken steps to restrict the sale of Americans' personal data to foreign adversaries, including countries like China and Russia, through a new executive order to prevent large-scale data transfers.

[00:06:18] This order includes genomic, biometric, health, geolocation, and financial data, establishing bulk thresholds for data transfers.

[00:06:26] Such as over 100 individuals for genomic data and over 10,000 for health and financial data.

[00:06:32] Why do we care?

[00:06:33] For AI vendors and organizations developing AI tools, this framework adds layers of regulatory expectations that will require proactive compliance.

[00:06:43] Service providers with expertise in compliance can help companies navigate the landscape, which could include preemptive AI audits, risk assessments, and governance structuring to align with these new federal guidelines.

[00:06:55] And in right to repair, the U.S. Copyright Office has granted a partial exemption allowing for the repair of retail-level food preparation equipment, including soft-serve ice cream machines commonly used by franchises like McDonald's.

[00:07:12] The decision, made on October 25, stems from a request by Public Knowledge and iFixit as part of the agency's ongoing review process of the Digital Millennium Copyright Act, or DMCA.

[00:07:25] While the exemption does not fully encompass all requested repairs, it marks a crucial step for franchise owners and independent repair shops.

[00:07:33] Meredith Rose, Senior Policy Counsel at Public Knowledge, emphasized that this victory was facilitate third-party repair activity, enhancing customer service.

[00:07:43] The Copyright Office reviews these exemption requests every three years, making this decision a pivotal moment for businesses in the commercial food preparation industry.

[00:07:53] So why do we care?

[00:07:55] Well, the McFlurry machine may be working more often.

[00:07:58] But beyond that, the exemption expands the market for independent repair shops, creating opportunities to service equipment that was previously off-limits due to legal restrictions.

[00:08:09] This could help grow the repair economy and create specialized roles within the food service sector, particularly in high-demand areas like soft-serve machines and other commonly used equipment.

[00:08:19] It sets the precedent for other repair areas, which is why we care.

[00:08:24] The Consumer Financial Protection Bureau has issued a warning to companies regarding the misuse of digital surveillance and artificial intelligence tools in the workplace.

[00:08:36] The CFPB emphasizes that employers must obtain employee consent when using third-party consumer reports derived from surveillance data as the Fair Credit Reporting Act mandates.

[00:08:49] During a recent announcement, CFPB Director Rohit Chopra expressed concerns over how AI can generate background dossiers that may be used in hiring and promotions, potentially harming worker careers.

[00:09:03] He highlighted the invasive nature of workplace surveillance, citing examples from the healthcare sector where nurses are monitored via digital badges.

[00:09:10] Jamie Brown, president of the country's largest nurse union, echoed these concerns, stating that such technologies often violate worker and patient privacy.

[00:09:20] A new report from the Software Alliance reveals that nearly 700 pieces of artificial intelligence legislation has been introduced across 45 states in 2024, signaling a significant increase from just 191 last year.

[00:09:34] This trend mirrors previous waves of consumer data privacy laws, suggesting that state policymakers are responding to the need for regulation without federal laws.

[00:09:45] Notable examples include Colorado's recent legislation to mitigate AI-powered discrimination, making it the first state to regulate the AI industry on such a scale.

[00:09:54] With 33 states establishing AI task forces, experts believe the momentum is building for comprehensive AI legislation as we move into next year.

[00:10:04] Why do we care?

[00:10:06] Companies using AI-based surveillance or third-party consumer data must prioritize compliance by implementing clear consent policies and informing employees about data use.

[00:10:15] And I suspect that's a surge of products infusing everything with AI.

[00:10:19] Service providers specializing in workforce management solutions or surveillance tools have a vital role to play in helping employers ensure regulatory alignment.

[00:10:29] Offering consent management features and compliance support can help clients avoid significant legal liabilities to foster a culture of transparency.

[00:10:36] This fragmented regulatory environment poses compliance challenges for organizations operating across multiple states, each with its own AI standards.

[00:10:44] IT and AI service providers should consider expanding compliance and regulatory consulting as part of the offerings, helping clients adapt policies and processes to diverse state regulations.

[00:10:56] Proactive monitoring of legislative developments will also be crucial, allowing companies to stay ahead of those compliance requirements and avoid reactive measures.

[00:11:06] Are you ready to get your brand in front of the tech leaders shaping the future of managed services?

[00:11:12] Here at the business of tech, we offer flexible sponsorship opportunities to meet your needs, whether it's live show sponsorship, podcast advertising, event promotion, or custom webinars.

[00:11:24] From affordable exposure options to exclusive sponsorships, our offerings are designed to fit businesses and vendors of all sizes looking to make an impact.

[00:11:33] Prices start at just $500 per month, making our packages a fraction of typical event sponsorship costs.

[00:11:42] Be a part of the conversation that matters to IT service providers worldwide.

[00:11:48] Join us at MSP Radio and amplify your message where it counts.

[00:11:53] Visit MSP Radio dot com slash engage today to explore all the ways we can help you grow.

[00:12:02] Thanks for listening.

[00:12:03] Today is National Cat Day.

[00:12:05] So that makes National Internet Day, National Hermit Day, and National Oatmeal Day all irrelevant.

[00:12:11] As we know the cat, we just swap it off the table in.

[00:12:14] Have a question you want answered?

[00:12:16] I take those listener questions, send them in.

[00:12:18] Ideally as a voice member or a video to question at MSP Radio dot com.

[00:12:21] We'll be a live show tomorrow Wednesday, 3 p.m. Eastern on YouTube and LinkedIn.

[00:12:25] If you like the show, give us a review and make sure you subscribe or follow on your favorite platform.

[00:12:32] I'll talk to you again twice tomorrow.

[00:12:36] The Business of Tech is written and produced by me, Dave Sobel, under ethics guidelines posted at businessof.tech.

[00:12:43] If you like the content, please make sure to hit that like button, follow or subscribe.

[00:12:49] It's free and easy and the best way to support the show and help us grow.

[00:12:54] You can also check out our Patreon where you can join the Business of Tech community at patreon.com slash MSP Radio or buy our Why Do We Care merch at businessof.tech.

[00:13:06] Finally, if you're interested in advertising on this show, visit MSP Radio dot com slash engage.

[00:13:13] Once again, thanks for listening to me.

[00:13:16] I'll talk to you again on our next episode of the Business of Tech.

[00:13:23] Part of the MSP Radio Network.