InfoGovANZ

Information Governance Think Tank

AI & Ethics

AI Safety and the Bletchley Declaration

by

Intelligent robot cyborg using digital globe interface 3D render

Australia was one of the 28 signatories to the Bletchley Declaration, which emerged from the global AI Safety Summit, where heads of state, senior ministers, AI leaders and other experts from across the globe congregated to set an international framework for developing safe AI.  The Declaration provides that the agenda for addressing frontier AI risk will focus on:

  • identifying AI safety risks of shared concern, building a shared scientific and evidence-based understanding of these risks, and sustaining that understanding as capabilities continue to increase, in the context of a wider global approach to understanding the impact of AI in our societies.
  • building respective risk-based policies across our countries to ensure safety in light of such risks, collaborating as appropriate while recognising our approaches may differ based on national circumstances and applicable legal frameworks. This includes, alongside increased transparency by private actors developing frontier AI capabilities, appropriate evaluation metrics, tools for safety testing, and developing relevant public sector capability and scientific research.

Read the Declaration here.

US President issues Executive Order on AI

by

Two days before the Bletchley Declaration, U.S President, Jo Biden, issued his first Executive Order on the Safe, Secure and Trustworthy Development and Use of AI stating that his Administration ‘places the highest urgency on governing the development and use of AI safely and responsibly, and is therefore advancing a coordinated, Federal Government-wide approach to doing so’.  The Order sets out key directives that will be addressed including:

  • Directing the development of standardized evaluations of AI systems standards and rules across federal government agencies
  • Recruiting AI talent including to provide for more ‘highly skilled immigrants and non-immigrants’ with critical AI expertise to stay and work in the U.S.
  • Calling on Congress to publish its forthcoming AI study on copyright issues raised by AI
  • Calling on Congress to pass a Federal Privacy Bill
  • Aligning with other global actions (G7, European Union Artificial Intelligence Act, etc.)

Read the Executive Order here.

Computational Power and AI

by

Given the push to build AI at ever increasing scale and the risks, this timely report from the AI Now Institute looks at the material costs and why concentration in compute is driving a race to the bottom.

As the report explains, computational power, is a core dependency in building large-scale AI.  Amid a steadily growing push to build AI at larger and larger scale, key points in the supply chain are monopolised by a handful of organisations.  As the report shows, it influences the behaviour of even the biggest AI companies as they encounter the effects of compute scarcity. A recent report from Andreessen Horowitz describes compute as “a predominant factor driving the industry today,” noting that companies have spent “more than 80% of their total capital on compute resources.”

Understanding the material underpinnings of AI is an important point for examining its effects on the broader public. This report provides a useful guide for understanding computational power.  Access the Report here.

Singapore IMDA launches Generative AI Evaluation Sandbox

by

In the day between the U.S President’s Executive Order on AI and the Bletchley Declaration being signed, Singapore’s IMDA and AI Verify Foundation launched the “Generative AI Evaluation Sandbox”, a new initiative to build knowledge and develop new benchmarks and tests for generative AI (GAI) systems.

This is part of the effort to have a common standard to assess AI and provides a baseline by offering a research-based categorisation of current evaluation benchmark and methods. It is anticipated that the Sandbox use cases will reveal gaps in the current landscape of Gen AI evaluations, particularly in domain-specific (eg HR or Security) and cultural-specific areas which are currently under-developed.

Access the Generative AI Evaluation Sandbox | IMDA – Infocomm Media Development Authority here

The risks for professionals relying on Generative AI

by

ChatGPT headline titles media with 3d illustration

Two recent examples where reliance was placed on Generative AI generated content have highlighted the risks and the consequences when independent checking and verification are not undertaken.  One involved two lawyers in the US where closing submissions referred to Chat GPT generated cases that did not exist, and the other involved Australian academics using Google Bard which generated false allegations of misconduct against the big four consultancy firms in a submission to a parliamentary inquiry.  We asked Chat GPT to prepare a report on these examples and the risks, which resulted in a typically generic response – you can read what ChatGPT said and how it says the risks can be mitigated in its article which it titled:

The Dark Side of ChatGPT: Unravelling the Misuse and Its Consequences

Introduction:

The advent of artificial intelligence has ushered in a new era of possibilities, but it is not without its challenges. One such challenge is the misuse of powerful language models like ChatGPT, which can have significant consequences when inaccurate information is disseminated in the public domain. This article delves into instances where reliance on ChatGPT has led to the propagation of misleading information, illustrating the potential risks associated with the misuse of this advanced technology.

1. The Promise and Perils of ChatGPT:

OpenAI’s ChatGPT is a groundbreaking language model that uses deep learning to generate human-like text based on the input it receives. While its capabilities are impressive, there is an inherent risk in relying on such models without proper oversight and discernment. The model’s responses are generated based on patterns learned from vast amounts of internet text, and it may not always distinguish between accurate and misleading information.

2. The Rise of Misinformation:

Media outlets, researchers, and even individuals have increasingly turned to ChatGPT for information and insights. However, this reliance has not been without its pitfalls. In several instances, the unchecked use of ChatGPT has resulted in the dissemination of inaccurate information, leading to confusion and potential harm.

3. Case Studies:

a. Legal Consequences: Lawyer Used ChatGPT in Court and Cited Fake Cases

A lawyer’s misuse of ChatGPT in court has brought attention to the potential legal consequences of relying on AI-generated content. The lawyer cited fake cases generated by ChatGPT, leading to a scandal that garnered coverage from Forbes Australia, CNN Business, and The New York Times. Two US lawyers faced penalties for submitting fake court citations from ChatGPT, as reported by The Guardian and other reputable sources.

b. Academics Apologize for False AI-Generated Allegations Against Big Four Consultancy Firms

In another instance, Australian academics found themselves embroiled in a generative AI scandal when false allegations against big four consultancy firms surfaced. The academics apologized for the misinformation, which was generated by AI tools, and the incident was covered by various media outlets, including The Guardian and Cryptopolitan.

4. Addressing the Issue:

To mitigate the risks associated with the misuse of ChatGPT, it is crucial to implement safeguards and promote responsible use. Users should approach the information generated by the model with a critical mindset, fact-checking and cross-referencing the information before accepting it as accurate. Additionally, developers and organizations employing ChatGPT should work towards enhancing the model’s accuracy and providing clear guidelines on its limitations.

Key Ways to Mitigate Risks:

  1. Enhanced Training Data: Continuously update and improve the training data to ensure the model learns from diverse and accurate sources, minimizing the potential for biased or misleading information.
  2. Human Oversight: Implement robust human oversight to review and filter the model’s outputs, identifying and correcting inaccuracies before dissemination.
  3. Transparency: OpenAI and other developers should be transparent about the limitations of their models, providing clear guidelines on areas where the model may not be reliable.
  4. User Education: Educate users about the capabilities and limitations of ChatGPT, encouraging critical thinking and fact-checking when relying on information generated by the model.
  5. Feedback Loops: Establish mechanisms for users to provide feedback on inaccurate outputs, enabling developers to continuously refine and improve the model.

Conclusion:

While ChatGPT holds immense potential for positive applications, the instances of its misuse highlight the need for caution and responsibility. As society continues to integrate advanced AI technologies into various facets of life, it is essential to recognize the risks and take proactive measures to ensure that misinformation does not become an unintended consequence of progress. Responsible use, rigorous oversight, and ongoing improvements to AI models are crucial steps in harnessing the benefits of technology while minimizing its potential negative impact on public discourse and decision-making.

Explaining decisions made by AI

by

The UK Information Commissioner’s Office and The Alan Turing Institute have released a guidance to provide practical advice to organisations to help explain the processes, services and decisions delivered or assisted by AI, to the individuals affected by them. The guidance consists of three parts. Depending on your level of expertise, and the make-up of your organisation, some parts may be more relevant than others.  Read the Guidance here. Part 1: The basics of explaining AI  Aimed at DPOs and compliance teams, part one defines the key concepts and outlines a number of different types of explanations. It will be relevant for all members of staff involved in the development of AI systems. Part 2: Explaining AI in practice Aimed at technical teams, part two helps you with the practicalities of explaining these decisions and providing explanations to individuals. This will primarily be helpful for the technical teams in your organisation, however your […]
Member only content (join now or login)

Zoom clarifies that it won’t use data without consent for AI training

by

In the past few weeks, there have been media reports pointing out that Zoom’s updated Terms of Service introduced in March, would enable Zoom to use data collected for AI training purposes.  Last week, the CEO of Zoom this has led Zoom to announce that it will not use data for AI training without explicit consent for users. However, it highlights how vigilant organisations need to be in monitoring third-party providers’ changes to third-party technology providers and implementing changes to policies and processes if appropriate. Zoom has recently introduced two generative AI features — Zoom IQ Meeting Summary and Zoom IQ Team Chat Compose – which offer automated meeting summaries and AI-powered chat composition.  The Zoom account owners and administrators who control whether to enable these AI features for their accounts. Chief Product Officer Smita Hashim explained, ‘We’ve updated our terms of service (in section 10) to further confirm that Zoom does not use any […]
Member only content (join now or login)

The Good Shepherd Model for Cybersecurity, Privacy and Regulatory Compliance

by

WHITE PAPER   Four principles for protecting private data to improve compliance with privacy regulations Executive Summary Regulators Sharpen their Focus on Protecting Private Data "Assume You Are Compromised" - Now What? The Good Shepherd Model Case Study: Investigating a Datacenter Breach the Hard Way Security and Privacy are Strategic References   EXECUTIVE SUMMARY Organizations that store customers’ private information have a duty of care to protect that data. Credit card numbers and other personal details fetch a high price on the black market and unfortunately, organizations do a very poor job of keeping them out of the hands of cybercriminals. Regulators in many countries are now levying considerable penalties against organizations that fail to protect people’s private data. Under the European Union’s General Data Protection Regulation (GDPR), for example, organizations face fines of up to €20m or 4% of annual turnover for exposures of European citizens’ private data. They […]
Member only content (join now or login)

Interim guidance for agencies on government use of generative AI platforms

by

The Digital Transformation Agency (DTA) and the Department of Industry, Science and Resources (DISR) have released interim guidance on government use of publicly available generative AI platforms. The interim guidance is recommended for government agencies to use as the basis for providing generative AI guidance to their staff. You can access the Guidance here – Interim guidance for agencies on government use of generative AI platforms | aga (digital.gov.au) DTA and DISR also recommend agencies: implement an enrolment mechanism to register and approve staff user accounts to access generative AI platforms. This should include appropriate approval processes through Chief Information Security Officers (CISO) and/or Chief Information Officers (CIO). establish an avenue for staff to report any exceptions made to adhering to the guidance through your CISO/CIO. This should be reported periodically to the DTA by emailing digitalpolicy@dta.gov.au. seek to move to commercial arrangement for generative AI solutions as soon as it is possible to […]
Member only content (join now or login)

Ethics in the Age of Disruptive Technologies: An Operational Roadmap

by

Ethics in the Age of Disruptive Technologies: An Operational Roadmap (ITEC Handbook) by José Roger Flahaux, Brian Patrick Green, and Ann Skeet, offers organisations a strategic plan to enhance ethical management practices, empowering them to navigate the complex landscape of disruptive technologies such as AI, machine learning, encryption, tracking, and others while upholding strong ethical standards. The Institute for Technology, Ethics and Culture (ITEC), housed at the Markkula Center for Applied Ethics at the Santa Clara University, is a collaboration between the Center and the Vatican’s Dicastery for Culture and Education. The Institute convenes leaders from business, civil society, academia, government, and all faith and belief traditions, to promote deeper thought on technology’s impact on humanity. Download the ITEC Handbook via the link here 
Member only content (join now or login)

Safe and Responsible AI Discussion Paper

by

The Government’s Safe and Responsible AI in Australia Discussion Paper was released by Science and Industry Minister, Ed Husic MP released last week.  The Discussion Paper canvasses existing regulatory and governance responses in Australia and overseas, identifies potential gaps and proposes several options to strengthen the framework governing the safe and responsible use of AI.  The paper builds on the recent Rapid Research Report on Generative AI delivered by the government’s National Science and Technology Council. Also released is the National Science and Technology Council’s paper Rapid Response Report: Generative AI assesses potential risks and opportunities in relation to AI, providing a scientific basis for discussions about the way forward. Access the Safe and Responsible AI in Australia Discussion Paper here Access the Rapid Research Report on Generative AI here You can have your say on the discussion paper by answering some or all of the 20 questions on the Government’s online survey and upload a separate submission if needed – access the link here Make […]
Member only content (join now or login)

Regulating AI in the UK (part 2)

by

Last month we brought you the UK Government’s White Paper released on 29 March 2023, to implement a pro-innovation approach to AI regulation and the EU’s AI Act with Tom Whittaker’s flowchart to assist in navigating the proposed EU AI. Tom Whittaker of Burgess Salmon (UK) has developed a further flowchart to assist in navigating the proposed UK approach to AI regulation.  It identifies the key decisions to be considered and references the relevant sections of the White Paper. As Tom points out, organisations may find they need to navigate multiple regulatory regimes and jurisdictions. How they comply with each of those regulations (and other relevant laws) may look very different. For example, you can see the different approaches being taken by looking at the one-page visual on anticipated AI regulations in the UK, EU and US, see the horizon scanning access here; and the glossary of existing and anticipated AI definitions […]
Member only content (join now or login)

The State of AI Governance in Australia

by

The Human Technology Institute has just released a report into the The State of AI Governance in Australia providing a timely overview of how organisations are approaching the governance of AI in Australia today. Its findings are based on surveys, structured interviews, and workshops engaging more than 300 Australian company directors and executives, as well as expert legal analysis and extensive desk research. The report reveals that corporate leaders are largely unaware of how existing laws govern the use of AI systems in Australia. The report finds that both company directors and senior executives see huge opportunities for AI systems to improve productivity, process efficiencies, and customer service. But investment in AI systems and technical skills has not been matched by investment in AI system management and governance. Furthermore, corporate leaders report that they lack the awareness, skills, knowledge and frameworks to use AI systems effectively and responsibly.  The report suggests four […]
Member only content (join now or login)

A Taxonomy of Trustworthiness for Artificial Intelligence

by

A new report published by the UC Berkeley Center for Long-Term Cybersecurity (CLTC) aims to help organizations develop and deploy more trustworthy artificial intelligence (AI) technologies. A Taxonomy of Trustworthiness for Artificial Intelligence: Connecting Properties of Trustworthiness with Risk Management and the AI Lifecycle(opens in a new tab), by Jessica Newman, Director of CLTC’s AI Security Initiative (AISI) and Co-Director of the UC Berkeley AI Policy Hub, is a complement to the newly released AI Risk Management Framework, a resource developed by the U.S. National Institute of Standards and Technology (NIST) to improve transparency and accountability for the rapid development and implementation of AI throughout society. “This paper aims to provide a resource that is useful for AI organizations and teams developing AI technologies, systems, and applications,” Newman wrote. “It is designed to specifically assist users of the NIST AI RMF, however it could also be helpful for people using any kind […]
Member only content (join now or login)

GPT and Generative AI: How it works, the risks and how it impacts the legal profession and legal services?

by

  2023 appears to be well and truly the year of AI. Ever since the release and world-wide attention of ChatGPT by OpenAI in late in 2022, followed recently with the release of GPT-4, it seems there is a new release or a new revelation on a daily basis about the way in which these Generative AI tools appear to be able to do with ease, tasks that have previously been very labour intensive and manual. Regardless of how far we will be able to utilise these tools and integrate them into the corporate workplace, clearly the advent of AI systems being able to generate text with little or no effort or cost, is the precipice of significant change. The purpose of this article is to provide some insights into these tools, and some considerations in how they could be used, and some tips for crafting prompts and using LLMs. […]
Member only content (join now or login)

Navigating the new EU AI Act

by

Tom Whittaker of Burges Salmon UK has developed a flowchart to assist navigating the new EU AI Act.  This new act is is extra-territorial and the obligations (and risk of penalties + enforcement) still arise where certain legal entities are based outside of the EU. Originally posted here
Member only content (join now or login)

Regulating AI in the UK

by

The UK Government released on 29 March a White Paper setting out plans for implement a pro-innovation approach to AI regulation.  The intention is not to introduce AI legislation ‘too early’ and relies on collaboration between government, business and empowering regulators to take the lead. The principles to guide regulator responses are: safety, security and robustness; appropriate transparency and explainability; fairness; accountability and governance; contestability and redress. The consultation period for the Paper and related Impact Assessment closes on 21 June 2023 – you can read more about the pro-innovation approach to AI regulation here.
Member only content (join now or login)

ChatGPT Proves a Mediocre Law Student

by

[Note: InfoGovANZ thanks Craig Bell for permission to republish his article here, which was first published on Ball in Your Court] I recently spent a morning testing ChatGPT’s abilities by giving it exercises and quizzes designed for my law and computer science graduate students. Overall, I was impressed with its performance, but also noticed that it’s frequently wrong but never in doubt: a mechanical mansplainer! If you’re asking, “What is ChatGPT,” I’ll let it explain itself: “ChatGPT is a large language model developed by OpenAI. It is a type of machine learning model called a transformer, which is trained to generate text based on a given prompt. It is particularly well-suited to tasks such as natural language processing, text generation, and language translation. It is capable of understanding human language and generating human-like text, which makes it useful for a wide range of applications, such as chatbots, question-answering systems, and […]
Member only content (join now or login)

NIST AI Framework

by

The U.S. Department of Commerce’s National Institute of Standards and Technology (NIST) released its AI Risk Management Framework (AI RMF 1.0) a guidance document for use by organisations designing, developing, deploying or using AI systems to help manage the many risks of AI technologies. It was released along with a companion NIST AI RMF Playbook, AI RMF Explainer Video, an AI RMF Roadmap, AI RMF Crosswalk, and various Perspectives. To get an overview of the AI national and international regulatory landscape at October 2022, you can read the NSW Information and Privacy Commissioners high-level analysis and overview here - AI National and International Regulatory Landscape - InfoGovANZ
Member only content (join now or login)

AI National and International Regulatory Landscape

by

The NSW Information and Privacy Commissioners have undertaken a high level scan of the national and international regulatory relevant to AI, which includes:

  • Governance models used internationally in regulating AI and a recognition of Horizontal and Hybrid (broad based and legislative/policy) and Vertical (rights specific and single treatment type) approaches to AI regulation.
  • High level categorisation of risks to information access and privacy rights that arise in the use of AI together with treatments to manage identified risks.

Read the full report here.