惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

A
Arctic Wolf
U
Unit 42
爱范儿
爱范儿
WordPress大学
WordPress大学
博客园 - 司徒正美
腾讯CDC
酷 壳 – CoolShell
酷 壳 – CoolShell
钛媒体:引领未来商业与生活新知
钛媒体:引领未来商业与生活新知
freeCodeCamp Programming Tutorials: Python, JavaScript, Git & More
Last Week in AI
Last Week in AI
美团技术团队
博客园_首页
宝玉的分享
宝玉的分享
Hugging Face - Blog
Hugging Face - Blog
P
Palo Alto Networks Blog
H
Hacker News: Front Page
博客园 - 叶小钗
cs.AI updates on arXiv.org
cs.AI updates on arXiv.org
罗磊的独立博客
TaoSecurity Blog
TaoSecurity Blog
让小产品的独立变现更简单 - ezindie.com
让小产品的独立变现更简单 - ezindie.com
Help Net Security
Help Net Security
雷峰网
雷峰网
S
Security @ Cisco Blogs
cs.CV updates on arXiv.org
cs.CV updates on arXiv.org
Forbes - Security
Forbes - Security
T
Troy Hunt's Blog
V
V2EX
博客园 - 聂微东
Cloudbric
Cloudbric
大猫的无限游戏
大猫的无限游戏
Google Online Security Blog
Google Online Security Blog
S
Security Affairs
奇客Solidot–传递最新科技情报
奇客Solidot–传递最新科技情报
Recent Commits to openclaw:main
Recent Commits to openclaw:main
IT之家
IT之家
S
SegmentFault 最新的问题
T
Threat Research - Cisco Blogs
J
Java Code Geeks
H
Heimdal Security Blog
Security Archives - TechRepublic
Security Archives - TechRepublic
Know Your Adversary
Know Your Adversary
小众软件
小众软件
Microsoft Azure Blog
Microsoft Azure Blog
The GitHub Blog
The GitHub Blog
AWS News Blog
AWS News Blog
The Cloudflare Blog
Simon Willison's Weblog
Simon Willison's Weblog
月光博客
月光博客
OSCHINA 社区最新新闻
OSCHINA 社区最新新闻

informationweek

2026 tech company layoffs How Sedgwick scaled AI in legacy claims workflows InformationWeek Podcast: CTOs on using AI in regulated spaces How top CIOs are measuring the real ROI of IT automation What AI must learn from Roosevelt, conservation and 1929 Experian's chief innovation officer gleans AI gains with startup collab ETS CIO on competing with AI startups 'running with scissors' Before the next VMware: How CIOs prepare for vendor shocks The strategic alignment powering cyber-resilient organizations The AI infrastructure bottleneck is becoming a CIO problem InformationWeek Podcast: CTOs on reining in rogue AI agents Workplace equity in the age of AI Why and how to implement an AI asset rationalization strategy Why companies are shifting toward private AI models AI agents in automation: When to build, when to buy Navan CTO AI on trial: The Workday case that CIOs can The AI infrastructure boom is coming for enterprise budgets How CIOs can manage LLM costs: A practical guide What CIOs miss when buying vertical SaaS software InformationWeek Podcast: How CTOs balance AI and their teams Whirlpool, Duke Energy, Cleveland Clinic CIOs on scaling AI Where CIOs get stuck rebuilding the enterprise: What 'Rewired' reveals As AI makes projects harder to track, will CIOs need new controls? Why disaster recovery plans fail in geopolitical crises A silent erosion of enterprise AI by data poisoning Priceline CTO prioritizes engineers able to 'hold a room and a roadmap' InformationWeek Podcast: When CTOs need to restart IT projects Wayfair CTO maps agentic path across digital and brick-and-mortar commerce The AI contract gaps the Google-Pentagon deal just made visible Non-human identity sprawl is agentic AI's real risk Anthropic's Mythos forces a rethink of vulnerability management Outsourcing contracts weren't built for AI. CIOs are renegotiating now The AI spend hangover companies didn't plan for The power of CIO networking in the competitive AI world Why CIOs see AI projects stall: Speed without structure kills scale IT leaders should never let a good crisis go to waste SFO's digital twin maps airport operations from the curb to takeoff CIOs caught in the middle as AI startups disrupt vertical Saas Submit an IT Leadership column to InformationWeek Podcast: Rightsizing AI frameworks to avoid failure modes The invisible labor crisis inside IT: AI work the org chart can't see Why AI teams treat training data like capital Ask the Experts: How CIOs can identify and overcome cultural barriers to innovation Meta's new 'AI Zuckerberg' is a mirror for every C-suite Will the music stop for AI's funding dance? Rethink tech talent: Local is the smartest play for IT InformationWeek Podcast: Catching errors in AI-powered code CIOs can combat talent scarcity with AI-augmented leadership -- Gartner How Bellevue, Wash., is applying AI to streamline a broken permitting process Ignore the hype: Smarter tech bets at speed of change Who controls the fix? Colorado's repair fight tests CIO power Ask the Experts: The red flags that signal an AI project isn't worth pursuing The hidden high cost of training AI on AI Red Hat's Marco Bill: Resource control is key for AI sovereignty InformationWeek Podcast: New IT architecture, cloud, edge and AI Enterprises need Tier 1 provider relationships to deliver on AI How CIOs run and rebuild the business at the same time in the AI era It's not your tech stack, it's your structure -- fix it Confidential computing resurfaces as security priority for CIOs FinOps: Helpful tool, or a cloud control placebo for CIOs? Cleveland's open data overhaul: From sticky notes to public dashboards As Microsoft expands Copilot, CIOs face a new AI security gap Why build vs. buy doesn't fit modern IT systems InformationWeek Podcast: Is quantum computing slumbering? Your AI vendor is now a single point of failure Vibe coding: Speed without security is a liability A practical guide to controlling AI agent costs before they spiral AI fuels a new wave of technical debt The sunsetting of Sora: A hard lesson in AI portfolio resilience HP pushes broad internal AI use after early productivity gains Why value-based pricing is inevitable InformationWeek Podcast: Safeguarding ecosystems from outsiders Why AI scaling is so hard -- and what CIOs say works Humans are the North Star for AI-native workplaces -- Gartner How IT leaders build a culture for what comes next Compliance costs risk widening the AI gap AI-driven layoffs add new demands on CIOs to prove value AI transformation: Early wins are not enough for CIOs Why CIOs can't let users wait on IT Memory shortage doesn't have to spell disaster for IT budgets Accelerate AI adoption: 3 reasons for adopting MCP How techno-nationalism is complicating IT resilience and supply chains for CIOs InformationWeek Podcast: Compliance crackdown on AI and BYOD Workday’s AI reset: Agents and the race to remake SaaS Why enterprise AI initiatives keep dying before production Metrics of meaning: What do we really measure in AI? Techno-nationalism is reshaping CIO infrastructure strategy Using AI to pick team leaders -- without crossing legal or ethical lines What Oracle's layoffs reveal about running IT with fewer people Chief AI Officer on course-correcting when AI moves too fast Large enterprises need high-performing networks to scale AI InformationWeek Podcast: When do smaller AI models make sense? The future belongs to AI-driven IT Ways AI supercharges risk awareness and data insights for CIOs How automation prepares you for agentic NetOps Should the CIO, CFO or CEO hold the kill switch on AI? The CIO's new mandate: Redesign work itself Ask the Experts: CIOs say they wouldn’t pull workloads back from the cloud How AI is Reshaping the Enterprise
Nobody told legal about your RAG pipeline -- why that's a problem
Pam Baker · 2026-04-17 · via informationweek

Every regulated enterprise running an AI system is sitting on a discovery liability it can't see. Retrieval-augmented generation, commonly referred to as RAG, is the architecture that lets large language models (LLMs) pull from internal document repositories before generating a response. Yet legal teams are rarely aware of the liabilities that lurk there. 

How did RAG become such a universal blind spot?

"Engineering teams don't think of vector stores as data stores in the governance sense, even though they contain representations of sensitive source documents. And legal teams don't know these systems exist, so they can't ask the right questions," said Andre Zayarni, co-founder and CEO of Qdrant, an open source vector search engine for production workloads.

The gap has real consequences, Zayarni said. His company has seen healthcare deployments where a security review "failed specifically because the vector database lacked native audit logging," as well as regulated-industry deals where legal review "added months to timelines because nobody had involved compliance early enough."

Related:The hidden high cost of training AI on AI

RAG's ragged edges: No clear owner

In a little less than two years, RAG has become the default plumbing for enterprise AI -- with legal approving the vendor, IT deploying the pipeline -- and nobody auditing the database.

"RAG isn't invisible -- it's unowned," said Alok Priyadarshi, vice president of strategic AI advisory and legal transformation at QuisLex, a legal services company and compliance firm. 

"RAG spans legal, information governance and IT but is usually built inside AI teams outside those control frameworks," Priyadarshi said. So, while its shortcomings look like a communication, knowledge-transfer and process problem, the root cause is structural: engineers optimize performance while governance optimizes defensibility, with no shared vocabulary or gate between them.

Regulators will expect traceability 

That gap is about to close, and not on anyone's preferred timeline. Recent actions by the Securities and Exchange Commission, Federal Trade Commission and the Health and Human Services Office for Civil Rights suggest a common regulatory expectation: If an organization uses AI, especially RAG-based systems, it should be able to show where the underlying content came from, how it was retrieved how it influenced the output, and whether that process aligns with legal and policy requirements. 

That is far easier said than done, let alone prove.

"When a document gets ingested into a RAG pipeline, it stops being a document in any sense that legal understands," said Evan Glaser, co-founder at Alongside AI, a fractional AI team. Instead, it becomes hundreds or thousands of vector embeddings that don't map cleanly back to the original file, page or paragraph.

Related:Scaling AI value demands industrial governance

"Legal teams are trained to think in terms of custodians, document holds and chain of custody," Glaser said. "None of those concepts have obvious equivalents in a vector database. They assume RAG works like traditional document retrieval. It doesn't."

The missing retrieval trail

For RAG, the compliance message from regulators is not just "be accurate," it's "keep the retrieval trail." That means preserving the source corpus, document versions, retrieval results, timestamps, model prompts, and human review steps so you can explain why the system returned a particular answer if a regulator asks. Again, easier said than done. 

"Since RAG is so new and its use cases are evolving so rapidly, legal teams may not know these pipelines exist, understand how they work or have the tools to inspect them," said Suresh Srinivas, co-founder and CEO of Collate, a semantic intelligence platform, and formerly founder at Hortonworks and chief architect at Uber.

The lapse is partly due to how RAG systems ingest, chunk, embed and silently retain enterprise data, creating functional -- and potentially legal -- records that exist entirely outside existing governance frameworks, Srinivas said.

Related:Who really sets AI guardrails? How CIOs can shape AI governance policy

"For example, in a case involving misinformation from a chatbot that draws on a RAG database, a governance team would want to ask, 'Can I trace this AI answer back to its source?' The metadata that could answer that question often doesn't exist. In a RAG database, data gets chunked -- whether that's documents, database query results or structured data exports -- and the metadata that establishes provenance, ownership and classification rarely travels with it," Srinivas said.

Regulators are catching up

The only upside, if you can call it that, is that regulators are stumped at how to inspect RAG, too. But the window for getting ahead of this is closing, Glaser stressed.

"Right now, most regulators are still learning how these systems work. … But regulatory understanding is catching up fast, and the questions are going to get very specific, very quickly," Glaser explained. "'Show me your vector database audit trail' is not a hypothetical future question. It's the kind of thing that emerges naturally once an examiner understands what RAG is."

Other AI blind spots

Glaser also noted that RAG is just the most visible example of AI systems that will come under scrutiny as regulators dig into AI systems that transform data in ways that break traditional governance assumptions. Fine-tuning, agent workflows, prompt templates and system prompts are all major blind spots that will likely be subjected to official audits. 

Fine-tuning. "When you fine-tune a model on company data, that data becomes embedded in the model weights. It can't be selectively retrieved, deleted or placed on hold," Glaser said. He cited as an example a scenario wherein an employee's data is used in fine-tuning, and they later exercise a deletion right under GDPR or a similar regulation. "You may not be able to comply without retraining the model from scratch."

Agent workflows. "When AI agents chain multiple tools together -- by querying databases, calling APIs, or generating documents -- the decision trail becomes extremely difficult to reconstruct," Glaser said. "Each step may be logged individually, but the composite reasoning that led to a particular action often isn't captured anywhere." 

Prompt templates. "These instructions shape every output the AI produces. If a system prompt says 'prioritize speed over accuracy' or 'do not mention competitor products,' those are business decisions with legal implications -- often written by an engineer and stored in a config file nobody outside the team has seen," Glaser said.

He suggests a common check across all of these areas.

"If you can't explain to a regulator exactly what data went into a system, what instructions govern its behavior and how a specific output was produced, you have a governance gap. Apply that test to every AI system in your organization, not just RAG."

What CIOs should do

The good news is that this problem may eventually solve itself. "RAG exists because the LLM context windows have been too small to hold large document sets in a single prompt. That limitation is being demolished in real time," Blessing said.

Blessing points to Anthropic recently shipping a 1 million-token context window for Claude at standard pricing. "That's 750,000 words in a single pass. The architecture everyone is scrambling to govern is certainly transitional," he said.

Meanwhile, regulators aren't going to wait for the transition. They want to know what you're doing right now, or what you did before.

Audit readiness in RAG isn't about having documentation, but about being able to reconstruct and evidence how an output was generated, Priyadarshi said.

"In probabilistic systems, that doesn't mean reproducing the exact answer word for word. It means showing -- clearly and consistently -- what informed it and why, so regulators get evidence, not interpretation, Priyadarshi said. "Audit readiness is not a periodic exercise; it's a continuous capability built on traceability, and the CIO is accountable for building it." 

That requires three core capabilities, according to Priyadarshi: 

  • System visibility (know what exists and what it contains).

  • Decision traceability (reconstruct what informed the output).

  • Controlled change management (track what changed and when).

"Practically, this means embedding audit readiness checks into the AI development lifecycle at onboarding, at each material update, and at least quarterly for active systems," Priyadarshi said.