Techniques to consider when creating consumer-facing generative AI applications
Purus suspendisse a ornare non erat pellentesque arcu mi arcu eget tortor eu praesent curabitur porttitor ultrices sit sit amet purus urna enim eget. Habitant massa lectus tristique dictum lacus in bibendum. Velit ut viverra feugiat dui eu nisl sit massa viverra sed vitae nec sed. Nunc ornare consequat massa sagittis pellentesque tincidunt vel lacus integer risu.
Mauris posuere arcu lectus congue. Sed eget semper mollis felis ante. Congue risus vulputate nunc porttitor dignissim cursus viverra quis. Condimentum nisl ut sed diam lacus sed. Cursus hac massa amet cursus diam. Consequat sodales non nulla ac id bibendum eu justo condimentum. Arcu elementum non suscipit amet vitae. Consectetur penatibus diam enim eget arcu et ut a congue arcu.
Vitae vitae sollicitudin diam sed. Aliquam tellus libero a velit quam ut suscipit. Vitae adipiscing amet faucibus nec in ut. Tortor nulla aliquam commodo sit ultricies a nunc ultrices consectetur. Nibh magna arcu blandit quisque. In lorem sit turpis interdum facilisi.
Vitae vitae sollicitudin diam sed. Aliquam tellus libero a velit quam ut suscipit. Vitae adipiscing amet faucibus nec in ut. Tortor nulla aliquam commodo sit ultricies a nunc ultrices consectetur. Nibh magna arcu blandit quisque. In lorem sit turpis interdum facilisi.
“Nisi consectetur velit bibendum a convallis arcu morbi lectus aecenas ultrices massa vel ut ultricies lectus elit arcu non id mattis libero amet mattis congue ipsum nibh odio in lacinia non”
Nunc ut facilisi volutpat neque est diam id sem erat aliquam elementum dolor tortor commodo et massa dictumst egestas tempor duis eget odio eu egestas nec amet suscipit posuere fames ded tortor ac ut fermentum odio ut amet urna posuere ligula volutpat cursus enim libero libero pretium faucibus nunc arcu mauris sed scelerisque cursus felis arcu sed aenean pharetra vitae suspendisse ac.
As enterprises shift toward consumer-facing GenAI solutions, a common question we receive at Dynamo AI — especially from consumer-facing financial services organizations — is what controls should we test to mitigate UDAAP risk?
These enterprises, including their operational units (such as business and product teams, technology, risk management (model, technology, and data risk), compliance, and legal departments), are developing internally facing GenAI tools to enhance employee productivity. But it's clear the GenAI governance components they're establishing, including risk management, controls, and technology protocols, are setting a foundation for future consumer-facing deployments.
UDAAP, or Unfair, Deceptive, or Abusive Acts or Practices, is aimed at mitigating consumer harm by prohibiting misconduct by financial services organizations. UDAAP is a legal standard, referenced in the Dodd-Frank Wall Street Reform and Consumer Protection Act (Dodd-Frank Act) of 20101, and gives rule-making authority to the Consumer Financial Protection Bureau (CFPB), along with the Federal Trade Commission (FTC) under act by Congress. The CFPB has a broad mandate to define UDAAP and utilize its powers through enforcement. Over the years, distributed guidance and historical precedent resulting from CFPB enforcement have shaped how financial institutions understand and apply this standard.
"When a person’s financial life is at risk, the consequences of being wrong can be grave."
-Consumer Financial Protection Bureau
Now with the use of GenAI pivoting towards consumer-facing scenarios, UDAAP standards are front and center for regulators and financial institutions. As the CFPB has noted, "When a person’s financial life is at risk, the consequences of being wrong can be grave." This is particularly true when a customer engages with GenAI to access information about their financial health or has time-sensitive questions about financial products or services. There is heightened sensitivity from past examples of customer-facing technology deployments that left consumers unable to reach a human customer service representative or receive timely answers to their questions (through ‘doom loop’ scenarios).
Risk of UDAAP infringement when deploying GenAI may be broad, but a few key concerns stand out:
Dynamo AI is at the forefront of building, testing, and deploying controls that mitigate the types of risks identified as part of UDAAP. And while a holistic people, process, technology AI governance and risk management control ecosystem is required, targeted guardrails deployed within DynamoGuard play a critical, front-line control role to mitigate many of the UDAAP risk regulators and consumers have highlighted.
We've observed the growing need for four core categories of guardrails on consumer-facing GenAI to mitigate UDAAP risks:
Applying guardrails is one critical part of a comprehensive strategy to mitigate the full breadth of UDAAP risk. Use cases should be vetted through a GenAI risk assessment process, with the appropriate process-risk-control framework established, tested, and deployed.
While each guardrail development journey will be different, tailored to the size and complexity of the use case and enterprise, there are clear thematic guardrail requirements emerging.
It's an exciting time to expand the depth and breadth of financial services access and support to consumers everywhere. And doing so in a responsible way, with the appropriate guardrails to mitigate the risks we, as consumers, are concerned about.
Learn more about how DynamoAI can help you deploy responsible GenAI across financial services. Schedule a product demo.