Best wishes for the festive season

Please be aware that Moncrieff will be closed between the following dates:
Monday, 23rd December 2019 to Friday, 3rd January 2020

Moncrieff is still available for IT Assist clients and can be contacted on 1300 IT ASSIST

Why governance is the real AI readiness issue

Home > News > Why governance is the real AI readiness issue
Moncrieff IT Assist branding displayed over a modern office workspace with a person using a laptop at a large desk in a bright, minimalist office environment.

Most organisations aren’t struggling with AI due to lack of ideas. They are struggling because their governance, permissions, retention and compliance are not mature enough to support trusted use at scale.

AI success requires trustworthy information

A lot of AI discussions still focus on capability: What the tool can write, summarise or analyse. The more important question is whether the organisation can trust the information being used. Using research from Omdia, AvePoint recently reported that governance and compliance are the most frequently cited barriers to AI adoption among managed service providers’ customers, ahead of data security, value realisation and technical expertise gaps.

Data governance is central to Copilot adoption

That finding lines up with Microsoft’s current governance model for Copilot. Microsoft frames Copilot governance around three pillars: security and governance, management controls, and measurement and reporting. It also emphasises the need to identify oversharing, improve lifecycle management, protect sensitive data, and maintain the ability to audit and investigate AI interactions when required.

Remember: Privacy and compliance obligations still apply

For Australian organisations, governance is not optional background work. The Office of the Australian Information Commisionor OAIC’s guidance is explicit: AI products should not be used simply because they are available, organisations should conduct due diligence, and privacy obligations apply to personal information entered into AI systems as well as outputs that contain personal information. The OAIC also recommends, as a best practice, that organisations do not enter personal information, especially sensitive information, into publicly available generative AI tools because of the privacy risks involved.

What AI governance really looks like

This changes what AI readiness actually means. It is not just licences and user enthusiasm. It means knowing where important information lives, whether access is appropriate, whether sensitive data is protected, and whether outdated or low-value content is still hanging around where it can be surfaced. Microsoft specifically recommends identifying overshared content, reviewing access, archiving or deleting unneeded material, and using lifecycle controls to reduce risk and improve the quality of the information base used by Copilot and related tools.

In plain terms, governance is what turns AI from a novelty into a business capability. Without it, the organisation might move quickly, but not safely or consistently. With it, AI can be grounded in the information people actually trust to run the business.

Next steps

If your business is serious about AI, governance should be part of the first conversation, not the clean-up afterwards. Moncrieff can help you review permissions, retention, sensitivity, site ownership, archival pathways and auditability across Microsoft 365 so your AI rollout is based on control, not hope.

Source links

Office 365 Business Premium

I am interested in the Office 365 Business Premium.

Office 365 Business

I am interested in the Office 365 Business.

Managed On Premise Firewall - Small Office

I am interested in the Managed On Premise Firewall - Small Office.

Redundant Virtual Hosted Firewall - with UTP

I am interested in the Redundant Virtual Hosted Firewall - with UTP.

Managed Security Service - E-mail Protection

I am interested in the Managed Security Service - E-mail Protection.

Managed Security Service - End Point Protection

I am interested in the Managed Security Service - End Point Protection.

Small Business Backup

I am interested in the Lenovo Ideapad Miix 510 Intel Core I7​.

PC End Point Image Backup

I am interested in the PC End Point Image Backup.

Microsoft O365 Management and Backup

I am interested in the Microsoft O365 Management and Backup.

Lenovo ThinkBook 14s-IML 16GB RAM

I am interested in the Lenovo ThinkBook 14s-IML 16GB RAM.

Lenovo ThinkBook 14s-IML 8GB RAM

I am interested in the Lenovo ThinkBook 14s-IML 8GB RAM​.

Lenovo ThinkVision T23d-10 22.5"

WUXGA LED Backlit LCD Monitor​

I am interested in the Lenovo ThinkVision T23d-10 22.5"WUXGA LED Backlit LCD Monitor​​.

Lenovo ThinkPad Hybrid USB-C Dock​

I am interested in the Lenovo ThinkPad Hybrid USB-C Dock​​.