US financial regulators have proposed a unified framework to govern AI-driven workflow agents within banks and fintech firms. Developed jointly by the Federal Reserve, Office of the Comptroller of the Currency (OCC), and Federal Deposit Insurance Corporation (FDIC), the framework targets standardization in interoperability, risk management, decision documentation, and incident reporting. The aim is to harmonize governance across vendor platforms while strengthening oversight across the banking sector. The proposal outlines a phased rollout, with large banks scheduled to implement the framework by late 2026 and smaller institutions following in early 2027.
Background
Regulators have addressed AI governance through existing risk management frameworks, such as Model Risk Management guidance from the Federal Reserve, OCC, and FDIC. These frameworks include mandates for risk validation, governance, and controls that apply to AI systems. In February 2026, the Treasury Department released the Financial Services AI Risk Management Framework (FS AI RMF), which translates policy principles into 230 actionable control objectives. These objectives address lifecycle governance, data quality, vendor risk, cybersecurity, and human oversight. The framework also established a standardized AI lexicon to align terminology across financial institutions. Regulatory agencies, including the Federal Reserve, OCC, FDIC, and Treasury, are expanding internal use of AI for supervisory functions, raising expectations for documentation and bias controls. The latest proposal extends these efforts by focusing specifically on AI workflow agents and interoperability standards.
