Addressing Trust, Safety, and Privacy Challenges in Agentic AI
By Leah Ferentinos, strategic advisor with All Tech Is Human
Though a new topic to many consumers, Agentic AI is already being rolled out at scale, with corporations deploying it in customer service, operations, and other core business functions, and the potential impact is enormous. These systems are not just incremental improvements — they represent a shift toward AI that can reason, plan, and act across different contexts, potentially revolutionizing how individuals and organizations get things done.
If realized responsibly, agentic AI could redefine productivity, reduce friction in daily life, and reshape entire industries. But alongside this promise come challenges: agents can be misused for fraud or illicit activities, they may widen inequalities if access and benefits aren’t evenly distributed, and they introduce evolving risks such as prompt injection, bias, cybersecurity vulnerabilities, and deterioration of the information ecosystem. They also raise questions of liability and oversight, and the speed of deployment means many of these risks are outpacing the safeguards, regulations, and shared standards we currently have in place.
Balancing the transformative potential of agents with these challenges will require thoughtful trust, safety, and governance frameworks designed specifically for this new class of systems.
Summary from the livestream conversation:
What is Agentic AI?
Agentic AI systems are a new generation of AI that can autonomously plan, decide, and act to achieve complex goals with minimal human oversight. Unlike traditional AI, which is designed for specific, predefined tasks, agentic AI operates across various workflows and uses external tools to accomplish multi-step tasks without step-by-step human intervention. These systems are proactive, adaptable, and can learn from experience and feedback to improve over time.
Key Challenges and Risks
The autonomy of agentic AI introduces a new set of trust, safety, and privacy challenges.
Privacy and Data Security: Agentic AI systems ingest and synthesize diverse personal data, creating a multi-dimensional privacy attack surface. The distributed nature of these systems makes it difficult to contain data flows, and there is an increased risk of data leaks and breaches. Threats include data poisoning, prompt injection, and memory tampering, which can cause an agent to leak proprietary information.
Unpredictability and Lack of Transparency: Agentic AI's autonomous nature and continuous learning can lead to unpredictable behavior. The reasoning behind decisions made by an LLM-driven agent is often opaque, making it difficult to trace or explain its actions. This lack of transparency complicates compliance and erodes user trust.
Accountability and Misalignment: When a privacy breach or an error occurs, it can be difficult to determine who is responsible. Agents designed to optimize performance metrics may access sensitive data without proper checks. This can lead to goal misalignment, where the agent's actions don't align with the intended purpose or ethical standards.
Solutions and Governance Strategies
To mitigate these risks, a holistic approach to governance and security is required.
Privacy by Design: This involves embedding privacy-enhancing technologies like data minimization and anonymization into the development of agentic components.
Human Oversight and Control: Implementing a "human-in-the-loop" approach is crucial for sensitive or high-impact actions, allowing for human review and intervention. This can also help build trust with the workforce.
Identity Management: Treating AI agents as "Non-Human Identities" (NHIs) with unique, traceable identities and lifecycle governance can help with accountability and secure access.
Robust Governance Frameworks: Organizations should establish clear permissions for agents, implement data retention policies, and conduct regular audits to ensure compliance with regulations like GDPR or the EU AI Act.
Continuous Monitoring: Moving from periodic audits to real-time, continuous monitoring of agent actions and data flows is essential to detect anomalies and prevent misuse.

