Corporate Governance Glossary
65 terms covering corporate governance, AI governance, compliance, and institutional design. Clear definitions with practical explanations.
Showing 65 of 65 terms
Accountability Framework
A structured system that defines who is responsible for what, how performance is measured, and what consequences apply for governance failures.
Agentic AI Governance
Governance specifically designed for autonomous AI agents that take actions in the real world — requiring structural enforcement because behavioural guidelines cannot be relied upon.
AI Agent Governance
The infrastructure and processes for governing individual AI agents — including identity, trust levels, access scope, constraint enforcement, and activity monitoring.
AI Delegation
The governed transfer of decision-making authority from humans to AI agents — requiring clear scope, constraints, trust levels, and accountability.
AI Governance
The set of policies, processes, and infrastructure that determine how an organisation develops, deploys, and oversees artificial intelligence systems.
AI Governance Framework
A structured approach to governing AI systems — typically a document that outlines principles, processes, roles, and controls for AI governance.
AI Guardrails
Safety mechanisms that constrain AI system behaviour — ranging from content filters and output restrictions to structural governance enforcement.
Audit Trail
A chronological record of activities, decisions, and changes that provides evidence of what happened, when, by whom, and under what authority.
Authority Boundary
The explicit limit of what a person, role, or AI agent is authorised to do — defined structurally rather than implied informally.
Board Governance
The governance responsibilities and processes specific to a board of directors — including oversight, strategic direction, risk management, and accountability to stakeholders.
Compliance Automation
Technology that automates compliance-related tasks such as evidence collection, control testing, questionnaire responses, and regulatory reporting.
Compliance Fatigue
The organisational exhaustion caused by excessive, often duplicative compliance requirements — leading to corner-cutting, rubber-stamping, and reduced governance effectiveness.
Constitutional Constraint (Invariant)
A governance constraint that cannot be overridden by any actor within the system — analogous to a constitutional right that no law can violate.
Constraint Evaluation
The process of checking an attempted action against all applicable governance constraints to determine whether it should be allowed, blocked, or escalated.
Contestation
The structured process by which anyone in an organisation can challenge any governance decision — ensuring governance is legitimate, not just enforced.
Corporate Governance
The system of rules, practices, and processes by which an organisation is directed and controlled — encompassing decision-making authority, accountability, and oversight.
Corporate Governance Best Practices
Widely accepted principles and methods for effective corporate governance — evolving to include AI governance, real-time enforcement, and structural accountability.
Corporate Governance Infrastructure
Live, structural systems that enforce governance decisions, authority, and constraints at the moment of action — as opposed to static documents, policies, and periodic reviews.
Decision Genealogy
The traceable chain of precedents, authorities, and context that led to a specific governance decision — the institutional equivalent of a git commit history.
Decision Rights
The formally defined authority of specific roles or individuals to make particular types of decisions — specifying who can decide what.
Delegation Framework
A structured system for defining what authority is delegated to whom, under what conditions, and with what limitations.
Director Liability
The personal legal risk that board directors face when governance failures cause organisational harm — increasingly relevant as AI agents create new categories of risk.
Duty of Care
The fiduciary obligation of directors to make informed decisions with appropriate diligence — requiring them to understand risks, seek relevant information, and exercise reasonable judgment.
Duty of Loyalty
The fiduciary obligation of directors to put the organisation's interests above their own — requiring conflict disclosure, avoiding self-dealing, and maintaining confidentiality.
Escalation Chain
The predefined path that a governance violation or exception follows — from detection through notification, review, and resolution.
EU AI Act
The European Union's comprehensive regulatory framework for artificial intelligence — creating legal obligations for AI governance based on risk classification.
Fail-Closed Governance
A governance principle where, if the system cannot evaluate a constraint, the action is blocked (fail closed) rather than allowed (fail open).
Fiduciary Duty
The legal obligation of board directors and officers to act in the best interests of the organisation and its stakeholders — including the duty of care and the duty of loyalty.
Governance Automation
The use of technology to automate governance processes — from simple workflow automation to structural enforcement of institutional rules.
Governance Charter
The foundational document (or system) that defines an organisation's governance structure — including decision rights, authority boundaries, and core commitments.
Governance Compression
The structural elimination of compensatory governance layers (assurance, audit reconstruction, defensive documentation, alignment meetings) that become unnecessary when governance is institution-carried.
Governance Constraint
An active rule that is evaluated and enforced at the moment of action — distinct from a policy (a document) or a guideline (a suggestion).
Governance Coordination Index (GCI)
A composite metric that measures governance effectiveness across five dimensions: authority clarity, escalation efficiency, documentation proportionality, coordination velocity, and structural stability.
Governance Cost
The total cost of governance — including direct costs (tools, personnel, audit), indirect costs (time spent in governance processes), and hidden costs (governance debt, fear-drag).
Governance Culture
The attitudes, values, and behaviours that characterise how an organisation approaches governance — from compliance-driven to governance-embracing.
Governance Debt
The accumulated cost of missing, incomplete, or outdated governance structures — analogous to technical debt in software engineering.
Governance Effectiveness Measurement
The practice of quantifying how well an organisation's governance is working — moving beyond compliance checklists to measure whether governance achieves its purpose.
Governance Gate
A structural enforcement mechanism that intercepts AI agent actions before they execute, checks them against institutional constraints, and blocks or escalates violations in real time.
Governance Health Check
An assessment of an organisation's governance infrastructure maturity — measuring authority clarity, constraint coverage, escalation efficiency, and institutional memory depth.
Governance Maturity Model
A framework for assessing an organisation's governance sophistication — from ad hoc governance through to structural, institutional governance.
Governance Operating System
The comprehensive infrastructure layer that manages all governance functions — decisions, authority, constraints, evidence, and contestation — analogous to how an OS manages computing resources.
Governance ROI
The return on investment from governance infrastructure — measured in reduced governance debt, faster decisions, lower compliance costs, and avoided losses.
Governance Structure
The formal arrangement of decision-making authority, accountability relationships, and oversight mechanisms within an organisation.
Governance Theatre
Governance activities that create the appearance of governance without actually governing — policies that aren't enforced, committees that don't decide, and audits that don't change behaviour.
Governance Trace
A contemporaneous record of a governed action — capturing what was attempted, which constraints were evaluated, what the outcome was, and who or what was responsible.
Governance Transparency
The degree to which governance processes, decisions, and their rationale are visible and accessible to stakeholders.
Governance, Risk & Compliance (GRC)
The integrated approach to managing governance, enterprise risk, and regulatory compliance — typically retrospective in focus and document-heavy in practice.
Guardian Mode
The most restrictive governance mode — maximum constraint enforcement, heightened escalation sensitivity, and reduced delegation. Used during audits, incidents, or periods requiring elevated oversight.
Human-Carried Governance
The traditional governance model where humans bear the burden of remembering rules, checking authority, documenting decisions, and reconstructing evidence after the fact.
Human-in-the-Loop Governance
A governance model where human approval is required for certain AI agent actions — appropriate for high-stakes decisions but unsustainable as the sole governance mechanism.
Institution-Carried Governance
A governance model where the institution itself enforces its rules through explicit boundaries, structural enforcement, and contemporaneous evidence — rather than relying on humans to carry governance through fear, informal checking, and defensive documentation.
Institutional Drift
The gradual deviation of an organisation from its stated mission, values, or governance principles — often imperceptible until a crisis reveals how far the institution has drifted.
Institutional Memory
The retained knowledge of why decisions were made, what precedents exist, and what the organisation has learned — captured in infrastructure rather than in people's heads.
Institutional Resilience
An organisation's ability to maintain governance effectiveness through leadership changes, crises, growth, and external shocks — without depending on specific individuals.
Internal Controls
The mechanisms, rules, and procedures an organisation implements to ensure the integrity of financial and operational processes and to prevent fraud.
Mission Drift
The gradual shift of an organisation away from its core mission — often driven by funding pressures, growth ambitions, or leadership changes.
Moment-of-Action Enforcement
Evaluating and enforcing governance constraints at the exact point when an action is attempted — not before (in planning) or after (in audit).
Progressive Trust
A framework for gradually increasing AI agent autonomy based on demonstrated compliance — from shadow (observe-only) through preview, active, and autonomous levels.
Real-Time Governance
Governance that operates continuously and contemporaneously with organisational action — as opposed to periodic governance (quarterly reviews, annual audits).
Responsible AI
The practice of developing and deploying AI systems that are fair, transparent, accountable, safe, and aligned with human values and societal wellbeing.
Retrospective Governance
Governance that operates after the fact — reviewing, auditing, and assessing actions that have already been taken, rather than governing them at the moment of action.
Segregation of Duties
The governance principle that no single person should have unchecked control over a complete process — requiring multiple people to be involved in critical functions.
Shadow Mode
A governance mode where the system monitors and records actions but does not block any — used for observation, calibration, and building confidence before enforcement.
Speed-Safety Paradox
The counterintuitive principle that real-time governance makes organisations both faster and safer simultaneously — resolving a false dichotomy that only exists because governance is human-carried.
Structural Enforcement
Governance enforcement that operates at the infrastructure level — making violations structurally impossible rather than behaviourally discouraged.
See governance infrastructure in action
Constellation enforces these governance concepts at the moment of action — for both humans and AI agents.