IAPP Artificial Intelligence Governance Professional (AIGP) — Question 71

Within an established AI governance infrastructure, what might be the most effective governance action to handle third-party AI systems deemed to be high-risk?

Answer options

• A. Align organizational impact assessment activities with relevant regulatory or legal requirements.
• B. Re-evaluate the purchase of the third-party AI system deemed to be high-risk, and consider other vendors.
• C. Establish policies for handling third-party system failures that include consideration of redundancy mechanisms for vital third-party AI system.
• D. Delegate the power, resources and authorization among executive leadership to perform risk management to each appropriate level throughout the management chain.

Correct answer: A

Explanation

The correct answer is A because aligning impact assessment activities with legal and regulatory requirements ensures that high-risk AI systems are evaluated within the necessary compliance framework. Options B, C, and D, while relevant, do not address the immediate need to assess and comply with regulations, which is crucial for managing high-risk AI effectively.