KEY LEARNING OUTCOMES

 

• Understand AI risks in business environments
• Map AI systems, tools, and data flows
• Identify data protection risks in AI systems
• Build structured AI governance frameworks
• Move from compliance to continuous monitoring
• Analyse real risk scenarios and failures
• Conduct AI governance & privacy risk audits

Session 1: AI Governance & Privacy – Why Companies Are Unprepared

• What AI governance actually means (beyond buzzwords)
• How privacy and AI overlap (and where they conflict) 
• Why most companies lack structured governance
• Current reality:
• AI adoption first
• governance later (risk!)

 

Session 2: Mapping AI Systems & Data (Foundation Step)

• Identifying AI use cases in your organisation
• Mapping:
• tools (internal vs third-party AI)
• users & access points
• data sources (personal, confidential, business data)
• Understanding:
• where data enters AI systems
• where it goes (risk zones)

 

Session 3: Data Protection Risks in AI Systems

• Personal data risks in AI processing
• Data leakage via generative AI tools
• “Privacy by design” in AI systems 
• Purpose limitation & misuse risks
• Cross-border and third-party exposure

 

Session 4: Building an AI Governance Framework (Core Session)

• Key components of AI governance:
• policies
• roles & responsibilities
• accountability structures
• Who should own AI governance:
• legal
• IT
• compliance
• leadership

• Acceptable use policies for AI
• Vendor governance (third-party AI tools)
• Human oversight in AI decisions

 

Session 5: From Compliance to Continuous Monitoring

• Why audits alone are not enough
• Moving to continuous governance models
• Monitoring AI outputs and risks
• Incident response for AI failures
• Documentation for accountability

 

Session 6: Real Risk Scenarios (Where Companies Fail)

Case-based discussion:

• AI hiring tool → bias/discrimination
• Employee uploads confidential data into AI
• AI-generated content → IP violation
• Vendor AI tool causes data breach

 

Session 7: AI Governance & Privacy Risk Audit (Conversion Engine)

• Do you have:
• AI inventory?
• usage policy?
• data safeguards?
• governance owner?
• Identify:
• gaps
• high-risk exposure

WHO SHOULD ATTEND

 

This workshop is designed for professionals responsible for technology adoption, governance, risk management, and data protection within organizations, including:

• CXOs and Business Leaders overseeing AI adoption and digital transformation

• Chief Technology Officers (CTOs) and Technology Heads

• Chief Information Security Officers (CISOs) and Cybersecurity Leaders

• Legal and Compliance Professionals dealing with technology regulation and data protection

• Data Protection Officers (DPOs) and Privacy Professionals

• Risk, Audit, and Governance Teams

• HR Leaders managing AI-enabled recruitment and employee monitoring tools

• Product Leaders and Innovation Teams building or deploying AI-enabled solutions

• Founders and SME Owners integrating AI into business operations

SUBATHRA MYLSAMY 

Managing Partner, AK Mylsamy & Associates LLP

 

Ms. Subathra Mylsamy brings over two decades of legal excellence to India’s legal landscape. Her expertise spans over corporate & cyber tech laws, privacy, and AI governance along with intellectual property rights, As an AI governance professional and Chairperson of the AI Ethics Committee of the Applied AI Association India Chapter, she is a recognised voice. In the world of dynamic legal developments she is an established speaker, engaging federations and corporates. Her leadership seamlessly blends legal depth with technological foresight.

 

As an AI Governance professional, she has designed and led multiple high-impact workshops and executive programs that bridge the gap between AI innovation and regulatory accountability. Her work focuses on translating complex AI and technology risks into practical governance frameworks for businesses, institutions, and policymakers

 

Vision & Thought Leadership
Subathra Mylsamy believes that sustainable innovation lies in aligning technology, law, and ethics. Her work focuses on enabling responsible AI adoption, strong digital governance, and regulatory resilience, helping businesses innovate with confidence while safeguarding trust, compliance, and societal impact. She brings a pragmatic, future-focused perspective to how organisations navigate emerging technologies in an increasingly regulated digital economy.