SAO Governance Compliance (SGC) — Public Overview

Status: PUBLIC v0.1 (Council-Reviewed)

Note: This document is a public overview. It is not the SGC standard itself.

Purpose

SGC defines governance requirements for agentic systems — how actions are authorized, how evidence is produced and preserved, how disclosure is controlled, and how systems can be audited without exposing protected internals.

It does not define model architectures, training methods, or claim safety outcomes.

The problem SGC addresses

As AI systems become more agentic, they increasingly:

• take autonomous actions,
• modify environments,
• interact with tools and users,
• and produce outputs with real-world consequences.

Yet governance practices are often informal, unverifiable, or applied only after failures occur.

SGC addresses this gap by focusing on executable governance controls — governance mechanisms that can be tested, evidenced, and independently reviewed, rather than asserted by policy alone.

Core ideas (high-level)

• No silent bypass: Critical governance controls must fail loudly if circumvented.
• Verifier integrity: Governance checks are bound to identifiable, drift-detectable verifier bundles.
• Evidence immutability: Conformance evidence must be tamper-resistant and referentially intact.
• Disclosure discipline: Systems distinguish public-mode from protected-mode outputs by design.
• Non-destructive rollback: Governance artifacts can be rolled back and re-verified without loss.

What SGC is not

• Not a safety guarantee
• Not a certification of alignment
• Not a claim about correctness of outputs

SGC is a governance and auditability standard, not a performance benchmark.

Conformance (public posture)

Systems may claim conformance only when supported by evidence and appropriate disclosure status.

Public conformance statements are governed and may differ from internal conformance levels.

Status

SGC is currently maintained as an internally finalized standard.

Public review and release occur only through controlled processes.

Why this matters

Governance failures disproportionately affect users and communities with the least ability to contest or remediate harm.

By making governance testable and reviewable, SGC aims to reduce silent failure modes and improve accountability without forcing disclosure of protected system internals.

Built 2025-12-17 22:14 UTC. AICT is not a regulator and not a certification authority.