“We conclude that the purchase of cyber insurance is indicative of an overall higher risk profile, but that having that insurance after experiencing a breach and formalizing cyber risk oversight within the audit committee reduces auditors’ perceptions of risk.”
“… in a world where algorithmic opacity has become a strategic tool for firms to escape accountability, regulators in the EU, the US, and elsewhere should adopt a human-rights-based approach to impose a social transparency duty on firms deploying high-risk AI techniques.”