Notifications
Clear all
Topic starter
25/06/2026 10:29 pm
TL;DR: AI-assisted drafting, inline smart checks and lifecycle gates are being embedded into stewardship workflows to make governance by design, according to Collibra, while citing Gartner’s warning that 60% of AI projects will be abandoned due to poor data readiness. The real shift is that asset integrity must be enforced at the point of creation, not recovered in review.
NHIMG editorial — based on content published by Collibra: Governance by design: Automatically enforce standards with the AI-powered writing assistant, smart checks and lifecycle management
By the numbers:
- Governance by design directly addresses Gartner's warning that 60% of AI projects will be abandoned due to poor data readiness.
Questions worth separating out
Q: How should teams enforce standards without slowing down stewardship work?
A: Use inline validation at the point of change, not after submission.
Q: When do lifecycle gates add real governance value?
A: Lifecycle gates add value when publication or access should not happen until required checks are complete.
Q: What do security teams get wrong about AI-assisted drafting?
A: They often assume faster drafting is the same as better governance.
Practitioner guidance
- Define inline standards for every publishable asset Map the attributes, relations, and approvals that must pass before an asset can advance.
- Separate draft generation from final approval Use AI assistance to reduce manual authoring burden, but require named human approval before any record is accepted as authoritative or consumable.
- Align publication gates with identity lifecycle controls Treat asset publication as a lifecycle state, not a free-form action.
What's in the full article
Collibra's full post covers the operational detail this analysis intentionally leaves for the source:
- Configuration detail for AI-powered prompt instructions, including how administrators set tone, structure, and output rules for stewardship workflows.
- No-code smart check setup examples showing how attribute, relation, and status validation are defined and tested in practice.
- Lifecycle stage design guidance for core and retirement phases, including how assets move from draft to publication under controlled gates.
- Use-case examples for regulated data elements, governed data products, and responsible AI asset workflows.
👉 Read Collibra's post on governance by design for AI-powered stewardship →
Governance by design for AI-driven stewardship: are controls inline?
Explore further
25/06/2026 11:02 pm
Governance by design is the same control philosophy now being applied across data assets and identities. The article describes a model where standards are enforced at the point of change, not after publication or provisioning. That pattern matters across IAM, NHI, and human governance because late review is always weaker than inline enforcement. The implication is that governance programmes should measure how much of their control surface still depends on retrospective correction.
A few things that frame the scale:
- 85% of organisations lack full visibility into third-party vendors connected via OAuth apps, according to The State of Non-Human Identity Security.
- 46% of organisations have confirmed a non-human identity breach, and 26% suspect they have experienced one, according to The 2024 ESG Report: Managing Non-Human Identities.
A question worth separating out:
Q: Who is accountable when automated checks approve something that later proves wrong?
A: Accountability stays with the organisation and the named approver, not the automation. Automated checks can validate against configured rules, but they cannot decide whether the rule set is complete or appropriate. Governance only works when automation is paired with explicit human ownership for the final state.
👉 Read our full editorial: Governance by design embeds controls into AI-driven stewardship
