Where Is AI Allowed to Act Without Human Approval?
At a glance
The issue is no longer only model output.
The issue is the action boundary.
Board AskWhere is AI allowed to act?
Situation
AI is moving from recommendation to action.
The issue is no longer only model output.
The issue is the action boundary.
An AI-supported workflow is no longer only producing text, summaries or recommendations. It can trigger a workflow step, update a record, escalate an alert, draft a client communication, prioritise a case, recommend a control response or prepare an action for execution.
Management Summary
Agentic AI changes the governance question. Traditional AI governance asks whether a model is accurate, explainable, monitored and controlled. Agentic AI adds another question: what is the AI allowed to do?
Capability is not permission. A model can be capable of acting autonomously. That does not decide where it is allowed to act. Permission must be determined by materiality, reversibility, customer impact, legal effect and risk appetite.
Human oversight must be designed. A strong answer is not "there is a human in the loop". A strong answer shows where AI proposes, where AI executes only after approval, where bounded autonomy is allowed, and where autonomous action is not permitted.
Management Report Panel
Answer Quality Calibration
GREEN is not a human-in-the-loop label. GREEN is an evidenced control boundary.
The Autonomy Ladder
AI autonomy is not a binary switch. It should be calibrated by materiality and reversibility.
The autonomy level follows the materiality and reversibility of the action. It does not follow the capability of the model.
Who Should Answer
Accountability note:
Technology May Enable Autonomy.
The Business Owns the Action Impact.
The Board Needs to See the Boundary.
Evidence the Board Should Request
- 01AI Action Inventory
- 02Autonomy Level Classification
- 03Action Boundary Map
- 04Human Approval Matrix
- 05Tool / API Permission Register
- 06Decision Rights Map
- 07Exception and Override Log
- 08Client / Conduct Impact View
- 09Testing and Simulation Evidence
- 10Stop / Rollback Protocol
Warning Signals
- “It only recommends.”
- “A human is in the loop.”
- “The workflow is internal.”
- “The user can override it.”
- “The model has no final decision right.”
- “The vendor controls the permissions.”
- “We will define human approval during rollout.”
- “This is only a productivity tool.”
None of these statements is necessarily wrong. They are simply not sufficient evidence for board-level reliance.
Path to Green
- Action Rights Visible
- Autonomy Classified
- Human Approval Meaningful
- Permissions Controlled
- Actions Reconstructable
- Stop Mechanism Tested
GREEN is not a human-in-the-loop label.
GREEN is an evidenced control boundary.
Suggested Next Question
Which AI-supported workflow would create the greatest accountability issue if it acted tomorrow without explicit human approval — and can we evidence the boundary that prevents that?
Selected Source Base
- EU AI Act, especially Articles 12, 14, 15, 19, 26 and Annex III.
- GDPR, especially Article 22 on automated decision-making.
- DORA, especially ICT governance, logging, detection and continuity requirements.
- ESMA, Public Statement on AI and Investment Services, May 2024.
- IOSCO, Supervisory Toolkit for AI Use in Capital Markets, 2026.
- NIST AI Risk Management Framework and Generative AI Profile.