International 
Politics 
Local 
Finance 
Sports 
Entertainment 
Lifestyle 
Technology 
Literature 
Science 
Health 
1 hour ago
1
Ajit Sahu, Senior Engineering Leader – Health & Wellness Application Innovation, AI, digital transformation.
getty
AI governance is more than just training a model. It's also about what happens after that. Can people access hidden information? How do we store the data that helps the model? And how can we show that we're following the rules?
When companies start using artificial intelligence (AI) in areas like money, health, shopping, insurance and human resources, a big question often comes up: What happens to the information used to teach the AI system after it's been trained?
The answer matters because training data does not simply disappear. Even if the original dataset is deleted, its influence may remain through learned patterns, parameters, embeddings or outputs. In my experience, I've found that this often creates privacy, security, fairness and compliance implications that boards, legal teams, privacy officers and CISOs can't afford to ignore.
The Misconception: The Data Is Gone After Training
A lot of companies think that once they've trained a model, they don't need the original data anymore. But that's not really how it works. When a model is trained, it doesn't actually store the data like a database would. Instead, it learns patterns and relationships from the data, kind of like how we learn from experience. These patterns are what the model uses to make predictions or decisions, so even though the original data isn't stored, its influence is still there.
But the risk can remain. If a model was trained on personal data, sensitive data, confidential business data, health information, financial data or customer behavior data, the organization must still understand how that data was collected, whether it was lawfully used, whether its use was minimized and whether the model can expose that sensitive information later.
What Happens To The Data?
When data is done being used, it can go down a few different roads. Some of it gets kept for things like audits, so we can repeat the process, test it and follow any regulations surrounding that process. Then there's the data that gets tossed when there's no good reason to hang onto it anymore.
Some data is anonymized, pseudonymized, tokenized or aggregated to reduce risk. But organizations should not assume that data is truly anonymous unless its re-identification risk has been assessed.
When we use data to fine-tune or evaluate models, or keep improving them, there's a risk that the data might be used for things it wasn't originally meant for. Sometimes, data can even stay inside the model, which isn't ideal. If a model is overfitted or not well-managed, it might remember specific examples or accidentally share sensitive information. This can happen in a few ways, like when the model's output or the way it embeds data gives away too much—or when someone uses a special kind of attack to get sensitive information out of the model.
Why This Matters For Regulation
AI training data governance intersects directly with privacy and AI regulations. Under GDPR, organizations must consider data lawfulness, fairness, transparency, purpose limitation, data minimization, storage limitation, security and accountability. If personal data is used for AI training, organizations need a lawful basis, clear notice, safeguards and evidence that the data was used only for an authorized purpose.
The EU AI Act adds another layer of complexity here, especially for high-risk AI systems. Its tenets require a closer look at risk management, data governance, documentation, human oversight, accuracy, robustness and monitoring.
In California, CCPA obligations are also relevant, especially as automated decision-making, profiling, consumer rights, access, deletion and opt-out expectations become connected to AI governance. India’s DPDP framework reinforces consent, purpose limitation, retention discipline, security safeguards and accountability.
Across these regulations, there are a few key commonalities. Organizations must know what data was used, why it was used, whether it was permitted and whether the resulting model remains within guidelines.
Can Data Be Removed From A Trained Model?
Deleting raw data from storage is relatively straightforward. Removing its influence from a trained model is much harder. In some cases, the model may need to be retrained without the relevant data. In other cases, machine unlearning, differential privacy, output filtering, access controls or red-teaming may reduce the risk of that data having an undue influence on the model's outputs.
The bigger challenge, I've found, is that many organizations do not know where that training data went, which model versions used it or whether it entered fine-tuning pipelines, evaluation datasets, logs or embeddings.
The New Governance Standard
Governance cannot begin after training. Before data enters training, teams should classify it, validate lawful basis and purpose, minimize unnecessary fields, document lineage and confirm whether it can be used for training, fine-tuning, testing or decision-making.
During training, organizations should secure their test environment, test for bias, evaluate data quality and maintain audit logs. After training, teams should test for memorization and leakage, define retention and deletion rules and maintain approval evidence.
The way companies handle AI will change a lot in the future. They need to show that their AI systems follow the rules, are safe and can be explained. It's not just about making AI smarter, but also about making sure people can trust it and understand how it works. This means companies have to be able to check their AI systems, explain how they make decisions and make sure they are fair and accountable. And that all starts with training data.
Forbes Technology Council is an invitation-only community for world-class CIOs, CTOs and technology executives. Do I qualify?
English (US)