ACPR published a discussion paper on the governance of artificial intelligence in finance. In this paper, ACPR has proposed four principles for evaluating artificial intelligence algorithms and tools—namely, data management, performance, stability, and explainability. ACPR also recommends the governance concerns that need to be taken into account, as early as the design phase of an algorithm. These concerns involve the integration of artificial intelligence into traditional business processes; the impact of this integration on internal controls; the relevance of outsourcing (partially or fully) the design or maintenance phases; and the internal and external audit functions. The comment period for this discussion paper ends on September 04, 2020.
The governance of artificial intelligence algorithms requires careful consideration of the validation of each decision-making process. The regulatory compliance and the performance objectives of these algorithms are only achievable through a certain level of explainability and traceability. In the discussion paper, ACPR recommends focus on the following aspects of governance concerns:
- Integration of artificial intelligence into business processes. This involves ascertaining whether the artificial intelligence component fulfills a critical function, by dint of its operational role or of the associated compliance risk and whether the engineering process follows a well-defined methodology throughout the machine learning lifecycle (from algorithmic design to monitoring in production), in the sense of reproducibility, quality assurance, architectural design, auditability, and automation.
- Human-algorithm interactions. Those can require a particular kind of explainability, intended either for internal operators who need to confirm or reject an algorithm’s output, or for customers who are entitled to understand the decisions impacting them or the commercial offers made to them. Besides, processes involving artificial intelligence often leave room for human intervention, which is beneficial or even necessary, but also bears new risks. Such new risks include the introduction of biases into the explanation of an 4 algorithm’s output, or a stronger feeling of engaging one’s responsibility when contradicting the algorithm than when confirming its decisions.
- Security and outsourcing. Machine learning models are exposed to new kinds of attacks. Furthermore, strategies such as development outsourcing, skills outsourcing, and external hosting should undergo careful risk assessment. More generally, third-party risks should be evaluated.
- Initial and continuous validation process. This process must often be re-examined when designing an artificial intelligence algorithm intended for augmenting or altering an existing process. For instance, the governance framework applicable to a business line may in some cases be maintained, while, in other cases, it will have to be updated before putting the artificial intelligence component into production. Continuous validation process. The continuous monitoring of machine learning algorithm, for instance, requires technical expertise and machine-learning-specific tools to ensure the aforementioned principles are followed over time (appropriate data management, predictive accuracy, stability, and availability of valid explanations).
- Audit. For internal and external audits of artificial-intelligence-based systems in finance, exploratory work led by the ACPR suggests adopting a dual approach. The first facet combines analysis of the source code and data with methods for documenting artificial intelligence algorithms, predictive, models and datasets. The second facet leverages methods providing explanation for an individual decision or for the overall behavior of the algorithm; it also relies on two techniques for testing an algorithm as a black box: challenger models (to compare against the model under test) and benchmarking datasets, both curated by the auditor.
Comment Due Date: September 04, 2020
Keywords: Europe, France, Banking, Insurance, Governance, Artificial Intelligence, Fintech, Machine Learning, Regtech, Outsourcing Arrangements, ACPR
Previous ArticleACPR Publishes Version 2.1.0 of the CREDITHAB Taxonomy
BIS published a report that presents the results of a survey among more than 60 central banks in late 2020 about their engagement in central bank digital currency (CBDC) work, their motivations, and their intentions regarding CBDC issuance.
OSFI issued a letter to federally regulated deposit-taking institutions on the capital treatment of new loans to businesses through the Highly Affected Sectors Credit Availability Program (HASCAP).
BCBS is consulting on two technical amendments to the rules on minimum haircut floors for securities financing transactions, or SFTs.
EC launched a targeted consultation on the review of crisis management and deposit insurance framework in EU.
EIOPA published a paper that sets out the methodological principles of insurance stress testing with a focus on the liquidity component.
BIS launched a EUR-denominated, open-ended fund for green bond investments by central banks and official institutions, following the launch of the first BIS green bond fund denominated in USD in September 2019.
EBA announced that it will launch the 2021 EU-wide stress test exercise, with the publication of the macroeconomic scenarios on January 29, 2021.
BoE announced that the reporting entities are no longer required to report Form CX after the fourth quarter of 2020 reference period, with the last collection on January 29, 2021.
PRA published Version 3 of the questions and answers (Q&A) on the Branch Return form, with this version superseding the version published in October 2020.
IAIS is consulting on a draft application paper on the supervision of control functions.