AI Ethics, Privacy & Data Sharing

Stuart Russell (UC Berkeley, TIME100 AI 2025)

"In the early days, OpenAI was collecting conversations with ChatGPT users and using that data to retrain the system, but there are huge privacy issues because people use them in companies and put in data with company proprietary information." Many companies have banned commercial LLMs because they do not trust conversations will remain proprietary.

Timnit Gebru (DAIR Institute)

"There needs to be a lot more independent research and there needs to be oversight of tech companies." AI concentrates power in the hands of governments and companies, away from individuals whose data feeds these systems.

European Data Protection Board (March 2025)

Published opinion on using AI in compliance with GDPR, specifically addressing legitimate interest, purpose limitation, and the right to object to AI processing of personal data.

Current Stance (February 2026)

SEC Division Director Brian Daly stated the SEC is exploring how AI should be addressed within federal securities law but recognized that "by the time rules take effect, the market and technology may have moved on."

2026 Examination Priorities

• Review registrant representations about AI capabilities for accuracy ("AI washing" enforcement)
• Assess whether firms have implemented adequate policies and procedures for AI use
• Examine how registrants protect against loss or misuse of client records from third-party AI tools
• Regulation S-P compliance: Larger firms ($1.5B+ AUM) by Dec 3, 2025; smaller firms by June 3, 2026

Fiduciary Duty Position

Ropes & Gray (Dec 2025): Asset managers' fiduciary duties require "appropriate diligence in selecting, engaging and overseeing AI service providers and disclosure to investors of risks and conflicts of interest associated with the use of AI."

Guidance Note 08/2024 (Dec 18, 2024)

• Accountability: "Responsibility for decisions cannot be delegated to AI or external providers"
• Governance: Comprehensive inventories of all AI systems, tools, data flows. Clear roles and accountability frameworks.
• Data Quality: Prioritize data quality over model selection. Regular testing and continuous monitoring.
• Personnel: Sufficient staff training on ethical AI use.

Swiss Regulatory Timeline: No AI-specific legislation yet. Draft consultation legislation expected by end of 2026. FINMA follows "same business, same risks, same rules."

FCA (United Kingdom)

No AI-specific regulations planned. Relies on existing frameworks: Consumer Duty, SM&CR, SYSC, operational resilience. AI LAB launched Oct 2024 for supervised testing. Treasury Committee recommended comprehensive AI guidance by end of 2026.

JFSC (Jersey)

No AI-specific guidance. Firms must comply with Data Protection (Jersey) Law 2018, aligned closely with GDPR. JFSC is implementing data-driven supervisory models using AI internally. 2025-2026 priorities focus on growth, risk management, and financial crime prevention.

EU AI Act Timeline

• Feb 2, 2025: Prohibited AI practices provisions came into effect
• Aug 2, 2026: Full high-risk system obligations enforceable
• Penalties: Up to 7% of global annual turnover or EUR 35 million

Credit scoring, loan approval, fraud detection, AML risk profiling, and automated decision-making affecting access to financial services classified as high-risk AI systems. Fund management AI affecting investor outcomes may fall into this category.

GDPR Core Issues for Fund Managers

• GDPR applies to PE/VC firms processing EU resident data regardless of firm location
• LP personal data qualifies as personal data under GDPR
• Data Protection Impact Assessments (DPIA) required for new high-risk processing
• Purpose limitation: data collected for fund management cannot be used for AI training without separate legal basis
• Right to be forgotten creates challenges for AI systems that retain learned information

Core Legal Position

Using AI without explainability or validation could be interpreted as a breach of the duty of care — analogous to relying on an unverified third-party analyst without due diligence. Investment advisers cannot delegate responsibility for decisions to algorithms.

Five Considerations for Advisers

1. Appropriate diligence in selecting and overseeing AI service providers
2. Disclosure to investors of risks and conflicts associated with AI use
3. Policies requiring independent verification of AI outputs
4. Data governance (knowing what data is retained, where, for how long)
5. Training personnel on risks of AI including prompt injection and data leakage

NDA and Confidentiality

Updated Practice (2025-2026): AI-specific NDA provisions are becoming standard: prohibiting upload to public AI, restricting tools that retain data for training, requiring consent before AI use in diligence.

How Leading Institutions Approach AI

Goldman Sachs: Launched GS AI Assistant firmwide in mid-2025 after piloting with ~10,000 employees. Model-agnostic (GPT, Gemini, Claude) but operates within Goldman's audited environment. Client-facing AI deferred until accuracy and compliance thresholds are met.

JPMorgan Chase: Grants access to its LLM Suite to 200,000+ employees, generating ~$1.5B in annual business value. 300+ use cases in production. All within internal infrastructure.

VC Industry AI Adoption

Formal published AI governance policies from VC firms remain rare in the public domain.

Governance Frameworks

• NIST AI RMF: Govern, Map, Measure, Manage (voluntary U.S. guideline)
• ISO/IEC 42001: Certifiable international standard for AI Management Systems
• EU AI Act: Regulatory framework with risk classifications

Recommended approach: Start with NIST for risk management, add ISO 42001 for systematic management, layer EU AI Act for European compliance.

Data Breach and Leakage

Indirect injection (attacks in documents, emails, web pages) accounts for 80%+ of attempts. Shadow AI breaches disproportionately affected customer PII (65%) and intellectual property (40%).

Training Data Contamination

Prompt Injection & Data Extraction

EchoLeak vulnerability: Zero-click prompt injection enabling data exfiltration without user interaction. Attacker sends email with hidden instructions, AI ingests malicious prompt, AI extracts sensitive data from connected systems.

What PureBrain Does Right

• Conversations processed via Anthropic Claude API
• "We do not permit Anthropic to use your conversation data to train their foundation models without your consent"
• 30-day post-cancellation data retention, then permanent deletion
• Cloudflare DDoS and WAF protection
• HTTPS/TLS encryption in transit

What PureBrain Lacks

• No SOC 2 or ISO 27001 certification
• No explicit data residency commitment
• No disclosed at-rest encryption standard
• No formal enterprise vs. consumer data handling distinction
• Their own privacy policy: "No system is perfectly secure"

Third-Party Data Flow

Tier 1: RESTRICTED — Highest Sensitivity

Tier 2: CONFIDENTIAL — High Sensitivity

Tier 3: INTERNAL — Moderate Sensitivity

Tier 4: PUBLIC — Low Sensitivity

Anticipated LP Questions on AI:

• What AI tools do you use in fund operations?
• What data is shared with AI platforms and third parties?
• What contractual protections exist with AI vendors?
• How do you prevent LP data from being used for model training?
• What is your data classification and handling policy?
• How do you comply with GDPR and other data protection laws regarding AI?
• What incident response procedures exist for AI-related data breaches?

Regulatory Bodies

1. SEC — AI and the Future of Investment Management (Daly Speech, Feb 2026) [Link]
2. SEC — Artificial Intelligence at the SEC [Link]
3. FINMA — AI in the Swiss Financial Market [Link]
4. FINMA Survey: AI Gaining Traction (April 2025) [Link]
5. FCA — AI and the FCA: Our Approach [Link]
6. JFSC — Data Protection [Link]
7. NIST — AI Risk Management Framework [Link]

Law Firm Analysis

8. Venable LLP — AI in Investment Management (Dec 2025) [Link]
9. Ropes & Gray — AI Integration: Legal & Regulatory Essentials (Dec 2025) [Link]
10. Duane Morris — The Perils of Privilege Waivers Through AI (March 2026) [Link]
11. K&L Gates — Generative AI Data, Privilege (Feb 2026) [Link]
12. Morgan Lewis — When AI Meets Privilege (Feb 2026) [Link]
13. Morrison Foerster — AI Compliance Tips for Investment Advisers [Link]
14. Goodwin Law — 2026 SEC Exam Priorities [Link]
15. Pestalozzi Law — FINMA Guidance on AI Governance [Link]
16. Kennedys Law — Deploying AI in UK Financial Services (2026) [Link]
17. KJK — AI and M&A NDAs (March 2026) [Link]
18. Roth Jackson — NDAs 2.0: AI Provisions (Dec 2025) [Link]
19. Sapience Law — NDA and AI Confidentiality Risk [Link]
20. Sidley Austin — US Securities and AI Guidelines (Feb 2025) [Link]

Court Cases

21. Chapman and Cutler — Federal Court Rules AI Documents Not Privileged (Heppner) [Link]
22. Perkins Coie — Federal Court Rules Client's Use of GenAI Not Privileged [Link]
23. National Law Review — AI Tools May Waive Privilege [Link]

Industry and Frameworks

24. Athennian — Impact of GDPR on PE and VC Firms [Link]
25. Orrick — EDPB Opinion on AI and GDPR (March 2025) [Link]
26. OWASP — LLM01:2025 Prompt Injection [Link]
27. Cloud Security Alliance — AI and Privacy 2024-2025 [Link]
28. PureBrain Privacy Policy [Link]
29. Anthropic Consumer Terms Update [Link]
30. AIhub — Top AI Ethics and Policy Issues 2025/2026 [Link]

The standard of care in 2026 requires: (a) vendor due diligence on AI platforms, (b) written AI use policies, (c) LP disclosure of material AI use, and (d) independent verification of AI outputs. Failure on any creates potential Section 206 liability.

The conflict: The GP benefits from operational efficiency, but the LP bears the data security risk. This is a material conflict requiring disclosure.

Section 204A of the Investment Advisers Act mandates written policies to prevent MNPI misuse. The SEC has brought enforcement actions against advisers whose policies did not account for specific data transmission channels.

Required: Classification of data as MNPI before sharing with any AI platform. Prohibition on sharing pre-announcement deal terms. Logging of all MNPI-adjacent data shared with AI.

The SEC uses existing anti-fraud provisions (Section 206), not new AI-specific rules. Firms cannot wait for "AI regulations."

Rule 204-2 (Books and Records Rule) requires 5-year retention of written communications relating to advice, recommendations, and transactions. AI-drafted LP reports, IC memos, and investor communications all qualify.

The gap: PureBrain retains conversation data for 30 days post-cancellation, then deletes. If the fund relies solely on PureBrain, it fails the 5-year requirement.

The amended Reg S-P (compliance deadline June 3, 2026 for smaller firms) requires covered institutions to "take reasonable steps to select and retain service providers capable of maintaining appropriate safeguards."

The absence of SOC 2 or ISO 27001 certification from PureBrain creates a gap: the fund cannot demonstrate it took "reasonable steps" to verify the service provider's safeguards.

Options: (a) Restrict LP personal data from AI entirely, (b) obtain from PureBrain a detailed written information security program, or (c) wait for PureBrain to obtain SOC 2 certification.

Unlike GDPR which fines organizations, Swiss law makes the individual personally criminally liable. This is not an academic distinction — it means the GP's personal assets are at risk.

A privacy policy is NOT a Data Processing Agreement. Under GDPR Article 28(3), a DPA must include:

The fund CANNOT lawfully process LP personal data through PureBrain until a compliant Art. 28 DPA is in place.

Under GDPR Art. 35, a DPIA is required before processing "likely to result in a high risk." The EDPB guidelines state that when two or more of nine criteria are met, a DPIA is "more likely to be required." This scenario meets at least four:

• New technologies — AI/LLM processing qualifies
• Innovative use of technology — Persistent AI memory storing personal data
• Systematic evaluation of personal aspects — AI analyzing LP profiles and communications
• Data transfer outside EU/EEA — Transfer to US-based servers

A DPIA is legally mandatory before any LP personal data enters the AI system.

This means that even if a GP believes they are anonymizing data by feeding it to an LLM, the regulator's position is that the LLM likely still processes personal data and GDPR obligations apply in full.

Under GDPR Art. 17, data subjects have the right to erasure. PureBrain's persistent memory creates a specific compliance challenge:

• Can LP data be identified and extracted from unstructured AI memory?
• Can it be selectively deleted without destroying other data?
• What about derived insights the AI generated from the LP's data?
• Even if PureBrain deletes, Anthropic retains API data for safety monitoring

If a GP uploads an LP's passport copy to PureBrain for KYC workflow, the following violations occur simultaneously:

Penalty exposure: Up to EUR 20 million (GDPR) plus CHF 250,000 personal criminal fine (Swiss nFADP) against the GP who uploaded it.

The fund vehicle (Jersey LP) holds ALL LP data. Sharing ANY of this with a US AI platform without SCCs constitutes a breach of the DPJL 2018. This applies to 6 Jersey entities.

The UAE has THREE parallel data protection regimes, and the applicable one depends on where the entity is based:

DIFC amendments (July 2025): Now require documented adequacy assessments, Commissioner can withdraw adequacy decisions, data subjects have private right of action in DIFC Courts, fines USD 25,000-50,000 per violation.

No regime has an adequacy arrangement with the US. All require contractual safeguards.

The EU-US Data Privacy Framework faces active legal challenge. In September 2025, it survived its first courtroom test, but Philippe Latombe's appeal (October 31, 2025) keeps the threat alive. Changes to US independent agencies (PCLOB, FTC) are undermining the framework's foundations.

Recommendation: Maintain SCCs as a parallel backup mechanism for all jurisdictions, regardless of DPF status.

A direct legal collision exists between Swiss and US law:

Once data is on a US platform, the fund loses control over its disclosure in US legal proceedings. The most effective defense is not having the data on the platform in the first place.

BIS introduced controls on unpublished AI model weights trained above 10^26 FLOPS. If the fund invests in companies developing frontier AI models, sharing their technical data with PureBrain could trigger export controls.

If any portfolio company has defense/military applications, segregate ALL technical data from the AI platform entirely. No exceptions.

Under English law (governing most deal NDAs), inputting confidential information into PureBrain/Anthropic constitutes transmission to a third party. The breach occurs at the moment of transmission, NOT only if the platform subsequently misuses the data.

Remedy: Add AI-specific provisions to NDAs before processing any deal information through AI. For existing NDAs, request retroactive consent.

Stanford HAI (April 2026): Global corporate AI investments hit $581.7 billion in 2025 (+130% YoY). But reporting on responsible AI benchmarks remains sparse. AI governance roles grew 17%, and firms with no responsible AI policies fell from 24% to 11%.

AIMA Practical Guide for Advisers (2025)

• Establish formal governance committees including compliance, data scientists, and risk management
• Require human verification before implementing AI-driven strategies
• Implement acceptable use policies restricting uploads of proprietary/client data to public AI
• Flag both "AI washing" and "AI hushing" as compliance risks

CFA Institute (November 2025)

The AI+HI (AI + Human Intelligence) principle: ethical professional practice requires fairness, transparency, accountability, and privacy embedded in AI systems.

GAO Findings (May 2025)

Financial institutions use AI for customer service; regulators for risk identification. NCUA lacks authority to examine technology service providers despite increasing reliance on them. Most regulators report AI outputs inform but are not sole decision sources.

FINRA 2026 Report

First-ever dedicated GenAI section. Warns about autonomous AI agents acting "beyond the user's actual or intended scope and authority." Requires updated vendor contracts for AI usage, training data rights, security controls, and model change notifications.

Based on ILPA DDQ frameworks and regulatory direction, these are the specific AI questions GPs should expect:

1. What AI tools does the firm use in fund operations?
2. What categories of data are shared with AI platforms?
3. What contractual protections exist with AI vendors (DPA, no-training, deletion)?
4. Does the firm have a written AI use policy? Who approved it?
5. How does the firm prevent LP personal data from being used for model training?
6. What incident response procedures exist for AI-related data breaches?
7. Does the firm's insurance coverage address AI-related claims?
8. What audit trail exists for AI-assisted investment decisions?
9. How does the firm comply with GDPR/data protection laws regarding AI processing?
10. Has any employee used unauthorized AI tools for fund business?

1. SEC Press Release 2024-36: AI Washing Enforcement (March 2024)
2. SEC: Presto Automation Enforcement (January 2025)
3. SEC: Ally Invest Advisors (March 2026)
4. GAO: AI Use and Oversight in Financial Services (May 2025)
5. U.S. Treasury: AI in Financial Services Report (December 2024)
6. CFTC Staff Advisory on AI in Regulated Markets (2024)
7. FINRA 2026 Regulatory Oversight Report — GenAI Section (December 2025)

1. Stanford HAI: 2026 AI Index Report (April 2026)
2. UC Berkeley CLTC: AI Risk Is Investment Risk (November 2025)
3. Brookings: Responsible AI in Financial Services (September 2025)
4. Harvard Law: Hidden C-Suite Risk of AI Failures (September 2025)
5. Harvard Law: Decoding SEC's First AI Washing Actions (April 2024)
6. Cloud Security Alliance: The Right to Be Forgotten — But Can AI Forget? (April 2025)

1. AIMA: Practical Guide for Advisers on AI (2025)
2. CFA Institute: AI in Asset Management (November 2025)
3. ILPA Reporting Template Updates (January 2025)
4. NVCA 2026 Yearbook (April 2026)
5. World Economic Forum: AI in Financial Services (January 2025)
6. CAIA Association: Vision 2035 (September 2025)
7. EU-US Data Privacy Framework Overview

1. KPMG: Digital Innovation and AI in Asset Management (2025)
2. Deloitte: 2025 Investment Management Outlook
3. Deloitte: AI for Portfolio Valuation
4. BCG: Private Equity's Future (2026)
5. McKinsey: Global Private Markets Report 2026
6. EY Switzerland: AI in Private Equity (2025)

1. Mayer Brown: SEC AI Washing Enforcement (April 2024)
2. Foley & Lardner: Shadow AI in the Workplace (April 2026)
3. WilmerHale: Schrems III Challenge (December 2025)
4. Kitces: AI Compliance Risks for Advisors
5. Lenz & Staehelin: Swiss-US DPF (2024)
6. Bird & Bird: DIFC Data Protection Amendments
7. PropelFwd: Data Transfers from Jersey to the USA
8. Appleby: GDPR vs Jersey Data Protection Law
9. Clifford Chance: Data Transfers in UAE and KSA
10. Venable LLP: AI Fiduciary Implications (December 2025)

1. Insurance Business: AI Exclusions Creeping Into Insurance (2025)
2. Insurance Business: Cyber Insurance Enters AI Risk Era (2025)
3. ISACA: Cyber Insurance in Crisis with AI Blind Spots (2025)
4. Smith Law: Is Your Cyber Insurance Ready for AI? (2025)

1. Private Funds CFO: Drafting AI Policies into LPAs (September 2025)
2. Top1000Funds: CalSTRS AI Integration (July 2025)
3. CNBC: Norway NBIM Uses Claude for ESG Screening (February 2026)
4. Altss: Pension Funds as LPs — GP Guide 2026
5. PEI: LPs Have Mixed Feelings About AI (2025)
6. Citco: Agentic AI in Fund Administration (2026)
7. Carta: The Audit Trail (2025)

1. IBM/IP Consulting: Shadow AI — The $670,000 Problem (2025)
2. TechCrunch: Samsung Bans ChatGPT After Data Leak (May 2023)
3. SamMobile: Samsung Re-enables ChatGPT (2025)