GrytLabs Research Institute
Research Report · WMI Thesis Series
AI Governance & Responsible AI
The Structural Gap Between AI Ethics Principles and Organizational Practice
Cameisha Smith, CIA
ORCID 0009-0002-8178-8380
RR-002  v1.0  ·  Research 2026-01-21  ·  Published 2026-07-06
CC-BY 4.0  ·  DOI 10.5281/zenodo.20025334
Abstract
The global AI governance landscape has achieved remarkable consensus: 84+ ethics documents, six major regulatory frameworks, and dozens of standards converge on transparency, fairness, accountability, and human oversight. Yet responsible AI consistently fails in organizational practice. This research demonstrates that the gap is structural, not temporal — an infrastructure deficit rather than a values deficit. The literature converges from three independent directions: meta-analytic (Jobin et al. 2019, Hagendorff 2020), diagnostic (Mittelstadt 2019), and practitioner (Rakova et al. 2021). Six jurisdictions specify requirements without specifying the infrastructure to implement them. Selbst et al.'s five abstraction traps are reframed as infrastructure failures rather than conceptual errors. Metcalf et al.'s assessor's regress terminates only through structural governance foundations. The convergence with data provenance research (S1) confirms this as a domain-independent meta-pattern: requirements without infrastructure.

"AI development lacks common aims and fiduciary duties, centuries of professional history, and proven methods to translate abstract principles into operational practice."

— Mittelstadt (2019), Nature Machine Intelligence

Contents
§1Query Objective
§2Executive Summary
§3Literature Review
§4Scope + Limitations
§5Research Synthesis
§6Open Questions
§7Citations & Provenance
Cite As & Publication Notice

§1Query Objective

The Inquiry: The global AI governance landscape has produced 84+ ethics documents (Jobin et al. 2019), six major regulatory frameworks, and dozens of standards — all converging on the same principles (transparency, fairness, non-maleficence, responsibility, privacy). Yet responsible AI consistently fails in organizational practice (Rakova et al. 2021, Hagendorff 2020). Is this gap between principles and practice temporary (an implementation delay) or structural (a missing layer of infrastructure)? If structural, what specifically is missing?

Falsifiable formulation: If any existing AI governance framework, standard, or tool provides the operational infrastructure — not just the principles or requirements — that enables organizations to structurally enforce transparency, accountability, fairness, and human oversight as by-products of normal AI operation rather than separate compliance tasks, then the infrastructure gap claimed here does not exist.

§2Executive Summary

The principles-practice gap is structural, not temporal

The literature converges from three directions. First, the meta-analytic direction: Jobin et al. (2019) documented 84 ethics documents converging on principles while diverging on implementation; Hagendorff (2020) confirmed across 22 guidelines that operationalization consistently fails. Second, the diagnostic direction: Mittelstadt (2019) identified three missing elements (common aims, professional norms, translation methods) that medicine has and AI development lacks. Third, the practitioner direction: Rakova et al. (2021) documented that the failure is organizational — missing structures, not missing values. All three directions arrive at the same conclusion: the gap is not between intentions and effort but between principles and infrastructure.

This is the same "requirements without infrastructure" pattern S1 identified across provenance, design rationale, institutional memory, and audit compliance. S2 confirms it in a different domain: AI governance requirements are proliferating (84+ documents, six regulatory frameworks, dozens of standards) while operational implementation fails. The pattern holds across both domains, strengthening the conclusion that it is structural rather than disciplinary.

Figure 1Three independent research directions converge on the same structural diagnosis
Figure 1. Three independent research directions converge on the same structural diagnosis.
Selbst et al.'s five abstraction traps are infrastructure failures, not conceptual errors

The most penetrating insight from the accountability literature: Selbst et al.'s (2019) five traps occur not because computer scientists misunderstand fairness but because organizations lack the infrastructure to preserve contextual richness through technical implementation. The Framing Trap (defining fairness computationally) occurs because there is no shared infrastructure for integrating social and technical perspectives. The Portability Trap (assuming transferability) occurs because governance is treated as context-free. The Formalism Trap (reducing concepts to constraints) occurs because there is no epistemic infrastructure distinguishing organizationally declared knowledge from externally validated knowledge from system-derived inferences. Reframing these as infrastructure failures rather than conceptual errors changes the solution space: not better conceptual frameworks but structural infrastructure that maintains the distinctions each trap collapses.

Figure 2Selbst et al.'s five abstraction traps reframed as infrastructure failures
Figure 2. Selbst et al.'s five abstraction traps reframed as infrastructure failures.
The assessor's regress terminates only through structural foundations

Metcalf et al.'s (2021) "assessor's regress" — the infinite chain of justifying assessments with more assessments — is an infrastructure problem. It arises because assessment quality depends on assessor judgment without structural foundations that define what must be assessed, what counts as compliance, and what epistemic standards apply. With shared governance primitives, the regress terminates: the primitives define the assessment scope, the invariants define compliance criteria, and the epistemic classification (distinguishing types of organizational knowledge) provides the standards.

AI safety and alignment validate the same conclusion from a capability direction

The safety tradition (Amodei et al. 2016, Russell 2019) establishes that alignment is a systems engineering problem. The alignment tradition (Christiano et al. 2017, Bai et al. 2022) demonstrates that governance can be embedded architecturally — RLHF and Constitutional AI both encode governance principles in system objectives rather than advisory guidelines. Organizations using AI systems built with these methods inherit alignment infrastructure they neither understand nor control. The governance gap is not at the model level (where alignment is advancing) but at the organizational level (where governance infrastructure for AI-augmented decisions barely exists).

Busuioc's accountability gap collapses when lineage makes authority explicit

Busuioc (2021) documented that AI creates accountability gaps through automation bias — humans deferring responsibility to algorithmic recommendations. When AI recommends and humans rubber-stamp, the governance question of who exercised authority becomes unanswerable. The resolution is structural: every AI-augmented action must carry lineage tracing to the human authority that authorized it and the scope of that authorization. The moral buffer collapses when the lineage is explicit and structural rather than implicit and reconstructible.

§3Literature Review

F1
Global AI governance has achieved remarkable consensus on principles but radical divergence on implementation.
Type  empirical (meta-analytic review of 84 documents)
Strength  meta-analytic

Jobin, Ienca & Vayena (2019) analyzed 84 AI ethics documents globally in Nature Machine Intelligence and found convergence on five core principles: transparency, justice and fairness, non-maleficence, responsibility, and privacy. However, they found "substantial divergence on interpretation, importance, domain applicability, and implementation." Floridi et al. (2018) synthesized these into a coherent ethical framework (AI4People). The convergence is on what matters. The divergence is on how to operationalize it. This divergence is not a disagreement about values — it is a consequence of missing infrastructure. Without a shared substrate for implementing governance, each organization invents its own approach.

F2
The medical ethics analogy underlying AI ethics fails because AI development lacks three supporting structures.
Type  theoretical (comparative institutional analysis)
Strength  theoretical argument

Mittelstadt (2019) demonstrated in Nature Machine Intelligence that AI ethics initiatives implicitly follow a medical ethics paradigm — but medicine has three things AI development lacks: (1) common aims and fiduciary duties binding practitioners, (2) centuries of professional history establishing norms, and (3) proven methods to translate abstract principles into operational practice (clinical guidelines, ethics review boards, malpractice liability). Without these, Mittelstadt concluded, principled approaches are "unlikely to succeed." This is the sharpest diagnosis of the principles-practice gap: the failure is not in the principles but in the absence of translation infrastructure.

F3
Even guidelines explicitly seeking operationalization fail to translate social concepts into implementable rulesets.
Type  empirical (systematic evaluation of 22 guidelines)
Strength  meta-analytic

Hagendorff (2020) evaluated 22 AI ethics guidelines in Minds and Machines. He found that most guidelines omit entire governance domains (democratic control, ecological networks, care ethics) and that the translation from social aspiration to operational specification is "non-trivial" — meaning no one has solved it. The gap between principle and practice is not a temporary implementation delay but a structural deficit: the translation mechanism is missing.

F4
Six major jurisdictions converge on the same regulatory requirements and share the same infrastructure gap.
Type  convergent (six-jurisdiction regulatory analysis)
Strength  expert consensus (established regulatory requirements)

The EU AI Act (2024) mandates risk management, data governance, technical documentation, record-keeping, transparency, and human oversight (Articles 9-15). NIST AI RMF (2023) specifies GOVERN/MAP/MEASURE/MANAGE. ISO/IEC 42001 (2023) provides the first certifiable AI management system standard. OECD Principles (2019, updated 2024), adopted by 47 nations, establish five recommendations. IEEE P7000 series requires "discoverable decision basis" and "unambiguous rationale for all decisions." Singapore's Model AI Governance Framework (updated January 2026) includes the first global framework for agentic AI governance. China's AI Safety Governance Framework (2024) requires algorithm filing from 1,400+ algorithms. Despite different legal traditions, all six converge on transparency, accountability, fairness, and human oversight — and all specify requirements without specifying the infrastructure to implement them. The regulatory landscape tells organizations WHAT to do. No framework provides the structural substrate for HOW to do it at the infrastructure level.

F5
Responsible AI fails in organizations because structures are missing, not because values are missing.
Type  empirical (qualitative study, practitioner interviews)
Strength  experimental

Rakova, Yang, Cramer & Chowdhury (2021) documented in ACM CSCW through interviews with practitioners at major technology companies three critical organizational findings: (1) responsible AI practitioners lack organizational authority — they can identify problems but cannot mandate solutions; (2) responsible AI is organizationally disconnected — ethics teams, engineering teams, and product teams lack a shared governance substrate; (3) responsible AI metrics are absent — organizations cannot measure governance effectiveness because they lack infrastructure to capture governance activities in queryable form. The failure is structural: organizations lack the structures to translate their own stated values into operational practice.

F6
Five abstraction traps systematically undermine technical approaches to fairness, and each is an infrastructure failure.
Type  theoretical (sociotechnical systems analysis)
Strength  theoretical argument

Selbst, Boyd, Friedler, Venkatasubramanian & Vertesi (2019) identified five traps at FAT* 2019: the Framing Trap (defining fairness computationally rather than socially), the Portability Trap (assuming solutions transfer across contexts), the Formalism Trap (reducing social concepts to mathematical constraints), the Ripple Effect Trap (ignoring how interventions reshape dynamics), and the Solutionism Trap (assuming technology alone solves social problems). Each trap occurs because organizations lack the infrastructure to maintain contextual richness through technical implementation. The Framing Trap occurs without infrastructure for integrating social and technical perspectives. The Portability Trap occurs when governance infrastructure is treated as context-independent. The Formalism Trap occurs without epistemic infrastructure that distinguishes what an organization declared from what an external authority established from what a system derived.

F7
Algorithmic accountability requires assessment infrastructure that current systems cannot provide.
Type  convergent (accountability frameworks + regress analysis)
Strength  theoretical argument

Diakopoulos (2016) established algorithmic accountability reporting in Communications of the ACM — systematic investigation of algorithms by sampling along key dimensions. Raji et al. (2020) proposed the SMACTR framework at FAccT (Scoping → Mapping → Artifact Collection → Testing → Reflection) — one of the few accountability frameworks specifying an operational process. But SMACTR requires organizational capacity for documentation collection, testing protocols, and structured reflection. Metcalf et al. (2021) identified the "assessor's regress" at FAccT — justifying an assessment requires another assessment, forming an endless chain. Without structural foundations (shared constructs, agreed invariants, common epistemic classification), assessment quality depends on assessor judgment, which must itself be assessed. The regress terminates only when structural governance primitives define what must be assessed and what counts as compliance.

F8
AI-driven accountability gaps in public administration collapse governance chains.
Type  theoretical (public administration analysis)
Strength  theoretical argument

Busuioc (2021) documented in Public Administration Review that AI creates automation bias — humans over-relying on automated recommendations — producing accountability gaps where responsibility diffuses across human-algorithm chains. She found that "the twin foundations of bureaucratic legitimacy — expertise and accountability — are being simultaneously diminished" by AI adoption. Her recommended solution: models with built-in audit trails of decision-making. The authority relationship between humans and AI is the critical governance challenge — when AI recommends and humans rubber-stamp, the governance question of who exercised authority becomes unanswerable without structural lineage.

F9
External accountability audits drive concrete improvements — but only reactively.
Type  empirical (longitudinal audit impact study)
Strength  experimental

Raji & Buolamwini (2019) demonstrated at AIES that the Gender Shades audit — identifying performance disparities in commercial facial recognition — drove all three audited companies (IBM, Microsoft, Megvii) to release improved API versions within seven months, reducing error rates by 17.7–30.4% for darker-skinned females. This demonstrates that governance infrastructure is often built reactively under external accountability pressure. The infrastructure for proactive, continuous accountability — detecting disparities before external audits find them — requires deviation measurement infrastructure that most organizations lack.

F10
AI safety establishes that alignment is a systems engineering problem requiring governance infrastructure, not a principle.
Type  convergent (safety + alignment research)
Strength  theoretical argument + experimental (RLHF, Constitutional AI)

Amodei et al. (2016) defined five concrete AI safety problems: avoiding negative side effects, avoiding reward hacking, scalable oversight, safe exploration, and robustness to distributional shift. Each requires infrastructure: monitoring systems, reward specification processes, oversight mechanisms, safety evaluation protocols. Russell (2019) proposed that AI systems should maintain deference to humans as a core alignment mechanism — requiring preference learning, deference protocols, and uncertainty quantification. Christiano et al. (2017) developed RLHF at NeurIPS 2017 — now foundational alignment infrastructure for modern language models. Bai et al. (2022) proposed Constitutional AI — training harmless AI using written principles (constitutions) as governance infrastructure embedded in training objectives. The convergence: safety is a systems engineering problem, governance must be architectural (not advisory), and organizations using AI systems inherit alignment infrastructure they neither understand nor control.

F11
"Interpretability" is critically important and critically undefined — requiring epistemic infrastructure to disambiguate.
Type  convergent (XAI + interpretability + human-AI interaction)
Strength  meta-analytic (multiple research programs converging)

Lipton (2018) showed in Communications of the ACM that different communities mean different things by "interpretability": transparency, post-hoc explanation, simulatability, decomposability. Without definitional infrastructure, organizations cannot implement interpretability requirements. Rudin (2019) argued in Nature Machine Intelligence that organizations should use inherently interpretable models rather than explaining black boxes — an infrastructure argument requiring different algorithms, pipelines, and incentive structures. Doshi-Velez & Kim (2017) proposed three evaluation approaches (application-grounded, human-grounded, functionally-grounded), each requiring different organizational infrastructure. Gunning's (2021) DARPA XAI retrospective demonstrated that explanation is a sociotechnical system, not a technical feature. Steyvers & Kumar (2024) identified three challenges for AI-assisted decision-making in Perspectives on Psychological Science: complementarity recognition, mental model accuracy, and interaction design — each requiring infrastructure for decision routing, model transparency, and cognitive load management.

F12
The principles-practice gap is an instance of the "requirements without infrastructure" meta-pattern identified in S1.
Type  convergent (cross-sprint synthesis)
Strength  theoretical argument (convergent validation across domains)

S1 found the same pattern across provenance, design rationale, institutional memory, process mining, AI accountability, and audit compliance: the requirement is established, the consequences of absence are documented, but no infrastructure provides it as a by-product of operation. S2 confirms this pattern in the AI governance domain specifically. The 84+ ethics documents (F1), six regulatory frameworks (F4), and dozens of standards all specify requirements. The organizational failure documented by Rakova et al. (F5) and the translation failure documented by Mittelstadt (F2) and Hagendorff (F3) are consequences of the same structural gap. The convergence across S1 and S2 strengthens the meta-pattern: it holds for data provenance AND AI governance — two very different domains arriving at the same boundary.

F13
Fairness requires epistemic infrastructure distinguishing types of organizational knowledge.
Type  convergent (fairness + legal + practitioner research)
Strength  meta-analytic

Barocas & Selbst (2016) established in the California Law Review that algorithms inherit the prejudices of prior decision-makers through flawed training data — data mining finds correlations reflecting historic prejudice. Kaminski (2019) showed in the Berkeley Technology Law Journal that GDPR's algorithmic accountability regime is broader than commonly understood, creating requirements for data access, impact assessments, and human review. Wachter, Mittelstadt & Russell (2018) proposed counterfactual explanations in the Harvard Journal of Law and Technology — requiring computational infrastructure for explanation generation. Madaio et al. (2020) co-designed AI fairness checklists with 48 practitioners at CHI (Best Paper Award), finding that even checklists require cross-functional coordination, trained facilitators, and organizational commitment. The pattern: fairness is not a mathematical property of a model but a sociotechnical property requiring infrastructure for data quality assessment, bias detection, historical auditing, remediation tracking, and epistemic classification (distinguishing what was organizationally declared from what was externally validated from what was system-derived).

§4Scope + Limitations

Included:
Excluded (with reasons):
Known gaps:
Confidence:

§5Research Synthesis

C1
The AI governance principles-practice gap is structural — an infrastructure deficit, not a values deficit.
Confidence  strongly supported
Based on  F1, F2, F3, F4, F5

84+ ethics documents, six regulatory frameworks, dozens of standards: the principles are not the problem. The gap persists because organizations lack the infrastructure to translate principles into operational practice. This is confirmed by meta-analysis (Jobin et al.), institutional analysis (Mittelstadt), guideline evaluation (Hagendorff), and practitioner research (Rakova et al.).

C2
Selbst et al.'s five abstraction traps are infrastructure failures addressable through structural governance.
Confidence  strongly supported
Based on  F6

Each trap occurs because organizations lack infrastructure to maintain contextual richness through technical implementation. The reframing from conceptual error to infrastructure failure changes the solution space.

C3
The AI governance gap is a domain-specific instance of the "requirements without infrastructure" meta-pattern (S1).
Confidence  strongly supported
Based on  F12

The same structure holds across data provenance, design rationale, institutional memory, process mining, audit compliance (S1), AND AI governance (S2). The convergence across independent domains strengthens both.

C4
Organizational governance of AI requires structural lineage that makes authority relationships explicit.
Confidence  strongly supported
Based on  F4, F5, F8

The accountability gap Busuioc documented, the EU AI Act's human oversight requirement, and Rakova et al.'s authority finding all converge on the same need: every AI-augmented action must carry structural lineage tracing to the human authority that authorized it.

C5
AI safety and alignment validate that governance must be architectural, not advisory.
Confidence  strongly supported
Based on  F10

RLHF and Constitutional AI demonstrate that governance principles can be embedded in system objectives. But this alignment operates at the model level. Organizational governance of AI-augmented decisions requires a parallel infrastructure at the organizational level.

§6Open Questions

Questions carried forward to the open-question registry
1
How does the EU AI Act's phased implementation affect the infrastructure gap argument?
2
Does Singapore's Agentic AI Framework validate or challenge the delegation governance model?
3
Is there an empirical measurement of the cost of the principles-practice gap?
4
How do Stalla-Bourdillon's legal provenance methods relate to AI governance infrastructure?

§7Citations & Provenance

Principles-Practice Gap
1. Jobin, A., Ienca, M. & Vayena, E. (2019). "The Global Landscape of AI Ethics Guidelines." Nature Machine Intelligence, 1, 389–399.
2. Mittelstadt, B. (2019). "Principles Alone Cannot Guarantee Ethical AI." Nature Machine Intelligence, 1(11), 501–507.
3. Hagendorff, T. (2020). "The Ethics of AI Ethics: An Evaluation of Guidelines." Minds and Machines, 30, 99–120.
4. Floridi, L. et al. (2018). "AI4People — An Ethical Framework for a Good AI Society." Minds and Machines, 28, 689–707.
Regulatory Frameworks
5. European Parliament & Council (2024). Regulation (EU) 2024/1689 (Artificial Intelligence Act).
6. Tabassi, E. (2023). "AI Risk Management Framework (AI RMF 1.0)." NIST AI 100-1.
7. NIST (2024). "AI RMF Generative AI Profile." NIST AI 600-1.
8. ISO/IEC 42001:2023. "AI Management System."
9. OECD (2019, updated 2024). "OECD Principles on Artificial Intelligence."
10. UNESCO (2021). "Recommendation on the Ethics of Artificial Intelligence."
11. IEEE (2019). "Ethically Aligned Design" (1st ed.) + IEEE 7000-2021.
12. IMDA Singapore (2026). "Model AI Governance Framework for Agentic AI."
13. China TC260 (2024). "AI Safety Governance Framework."
Algorithmic Accountability
14. Diakopoulos, N. (2016). "Accountability in Algorithmic Decision Making." Communications of the ACM, 59(2), 56–62.
15. Selbst, A. D., Boyd, D., Friedler, S. A., Venkatasubramanian, S. & Vertesi, J. (2019). "Fairness and Abstraction in Sociotechnical Systems." Proc. FAT 2019*, pp. 59–68.
16. Raji, I. D. et al. (2020). "Closing the AI Accountability Gap." Proc. FAccT 2020.
17. Raji, I. D. & Buolamwini, J. (2019). "Actionable Auditing." Proc. AIES 2019.
18. Metcalf, J., Moss, E., Watkins, E. A., Singh, R. & Elish, M. C. (2021). "Algorithmic Impact Assessments and Accountability." Proc. FAccT 2021.
19. Busuioc, M. (2021). "Accountable Artificial Intelligence: Holding Algorithms to Account." Public Administration Review, 81(5), 825–836.
Fairness
20. Barocas, S. & Selbst, A. D. (2016). "Big Data's Disparate Impact." California Law Review, 104, 671–732.
21. Kaminski, M. E. (2019). "The Right to Explanation, Explained." Berkeley Technology Law Journal, 34(1), 189–218.
22. Wachter, S., Mittelstadt, B. & Russell, C. (2018). "Counterfactual Explanations Without Opening the Black Box." Harvard Journal of Law and Technology, 31(2).
23. Madaio, M. A. et al. (2020). "Co-Designing Checklists to Understand Organizational Challenges and Opportunities around Fairness in AI." Proc. CHI 2020 (Best Paper Award).
AI Safety & Alignment
24. Amodei, D. et al. (2016). "Concrete Problems in AI Safety." arXiv:1606.06565.
25. Russell, S. J. (2019). Human Compatible: AI and the Problem of Control. Viking.
26. Christiano, P., Leike, J., Brown, T., Martic, M., Legg, S. & Amodei, D. (2017). "Deep Reinforcement Learning from Human Preferences." Proc. NeurIPS 2017.
27. Bai, Y. et al. (2022). "Constitutional AI: Harmlessness from AI Feedback." arXiv:2212.08073.
Explainability & Trust
28. Lipton, Z. C. (2018). "The Mythos of Model Interpretability." Communications of the ACM, 61(10), 36–43.
29. Rudin, C. (2019). "Stop Explaining Black Box ML Models for High Stakes Decisions." Nature Machine Intelligence, 1, 206–215.
30. Doshi-Velez, F. & Kim, B. (2017). "Towards A Rigorous Science of Interpretable Machine Learning." arXiv:1702.08608.
31. Gunning, D. (2021). "DARPA's Explainable AI (XAI) Program: A Retrospective." Applied AI Letters, 2(3).
32. Steyvers, M. & Kumar, A. (2024). "Three Challenges for AI-Assisted Decision-Making." Perspectives on Psychological Science, 19(5), 722–734.
Responsible AI in Organizations
33. Rakova, B., Yang, J., Cramer, H. & Chowdhury, R. (2021). "Where Responsible AI Meets Reality." Proc. ACM on HCI, 5(CSCW1), pp. 1–23.
34. Whittaker, M. et al. (2018). "AI Now Report 2018." AI Now Institute.
Cite As

Smith, C. (2026). AI Governance & Responsible AI (Research Report RR-002, WMI Thesis). GrytLabs Research Institute. https://doi.org/10.5281/zenodo.20025334

© 2026 GrytLabs Dynamics Inc. Licensed under CC-BY 4.0.

Research Ethics Statement

This research is conducted under the GrytLabs Research Code of Ethics, derived from the IIA Code of Ethics and the GAO Yellow Book ethical framework, adapted for a research-institute context.

Four principles govern all research activity:

Integrity — findings are reported as found, not as convenient. Unfavorable results are published with the same rigor as favorable ones.

Objectivity — research questions are framed to be falsifiable. Conflicts of interest (including the founder's dual role as researcher and patent holder) are disclosed, not resolved by assertion.

Confidentiality — disclosure levels (L0–L3) govern what appears in public research. Embargoed findings, IP-critical details, and pre-publication material are withheld per the Disclosure Discipline (GOV-PS-006), not suppressed.

Competency — claims are bounded by the evidence that supports them. Architectural claims cite spec sections. Empirical claims cite research artifacts. Claims that exceed available evidence are flagged as open questions, not presented as conclusions.

The Executive Director is a Certified Internal Auditor (CIA), Institute of Internal Auditors, personally bound by the IIA Code of Ethics as a condition of that credential. This is a personal attestation, not an institutional conformance claim — GrytLabs has not undergone an IIA Quality Assessment Review and does not claim IPPF conformance.

The governing traditions (IIA, GAO, AICPA, COSO) are formally mapped to the operating model in GOV-PS-001. This research applies the principles those traditions codify; it does not claim endorsement, review, or certification by any standards body.

Publication Notice

Disclaimer

This publication is provided for research and informational purposes. GrytLabs makes reasonable efforts to ensure accuracy but does not warrant that this publication is free of errors or omissions.

If you believe this publication contains errors, omissions, or misattributions, please contact the lab at research@grytlabs.ai. Corrections will be acknowledged in subsequent versions.

AI-Assisted Research Statement

This work was produced through AI-assistive collaboration under GrytLabs' AI-assistive collaboration disclosure protocol. Claude (Anthropic) participated in literature synthesis, cross-domain pattern identification, and argumentation structuring. OpenAI Codex participated in citation and accuracy verification. AI actors participate with delegated authority, never inherent authority. Responsibility for all findings, claims, and conclusions rests with the named author.

Provenance

Full workpaper with attestation and provenance chain available at research.grytlabs.ai/docs. DOI: 10.5281/zenodo.20025334