Why insurers need provable governance to sustain AI-driven growth
Insurers are investing in AI as a growth engine for their business. Are they also investing in the governance models that will allow them to realize that investment over time?
This is the AI proof gap: governance is a critical missing link between AI adoption and measurable performance. This report explains why this gap exists — and why proven governance is the foundation for sustaining AI-enabled revenue.
AI is fueling insurer growth. Without governance, it could erode.
For an industry built to manage risk, it’s notable that insurers are taking unnecessary risks as they adopt AI.
Grant Thornton’s 2026 AI Impact Survey Report of 950 executives finds that insurance leaders are seeing real returns from AI: 52% report AI-enabled revenue growth, 62% say they’re seeing improved decision-making insights and half report cost reduction. But 44% say governance or compliance challenges have contributed to AI project failure or underperformance.
Insurers are already seeing commercial upside from AI, so the question is no longer whether AI can create value, but whether firms can scale it safely and defensibly.
Without clear policies and tested controls, insurers are leaving their organizations open to risk with regulators and customers, fueling financial pressure that could ultimately erode product profitability. Tested and provable governance gives insurers confidence to deploy AI across higher-value workflows, leading to improved ROI and revenue growth.
Insurance produces AI-enabled results it cannot yet govern consistently
Insurers rate their companies highly on the AI maturity scale — 62% of insurance executives say they’re scaling AI across multiple functions, 13% above the full survey sample. But only 24% say they are very confident they could pass an independent review of AI governance and controls with centralized evidence in the next 90 days. That means the remaining 76% are running AI in workflows where they cannot demonstrate, on demand, that those systems are governed adequately.
That creates risk because AI-supported decisions that cannot be traced with explainability create regulatory, conduct and financial risk, which limits performance potential across underwriting, claims, pricing and customer experience use cases where AI can drive efficiency and value creation.
Most insurers already have AI governance policies in place, but they haven’t built the operational infrastructure to prove and test them. Sixty-one percent of insurance leaders say their boards have set governance policies, but even when controls exist, evidence is fragmented across teams and tools, which often stems from poor guardrails and decision rights. Insurers that are successfully managing their AI-related risk define, assess and classify AI use cases and prioritize risk based on their potential impact and complexity.
CLIENT SUCCESS STORY
Operationalizing streamlined AI governance for a large insurance company
Scenario: A large insurance organization seeking AI growth enablement was manually reviewing AI use cases with hundreds of use cases in its portfolio. Their reviews relied on free‑form questionnaires, creating inconsistency, limited risk classification and delayed reporting.
Approach: Grant Thornton worked closely with the company’s AI governance team to reduce the existing backlog while simultaneously supporting new AI use cases entering the review queue. This included redesigning the AI risk review target state and intake questionnaire, with recommendations aligned to the company’s risk framework and organizational structure. The Grant Thornton team tested workflows and business requirements needed to initiate the redesigned operating model and began evaluating the feasibility of applying AI to the use-case review process to further reduce manual effort.
Result: The program completed reviews for over 200 AI use cases, reducing average review-closure time significantly. The redesigned target operating model was aligned to the organization’s structure and to accelerate the AI use-case reviews based on risk prioritization. The simplified, end‑to‑end AI use case review process improved consistency and speed for ongoing AI governance.
Insurers have an operating model problem, not a workforce problem
Many insurance firms are scaling AI across front-office customer experience functions as well as middle-office claims and policy management roles. But only 7% believe their workforce is fully ready to adopt AI.
Thirty-nine percent of insurance respondents say frontline employees need the most support to adopt AI-enabled ways of working, and 29% say talent or upskilling gaps is one of the top barriers preventing their organization from scaling AI. To address these challenges, insurers need to go beyond training and change management: they must address their operating model and role redesign. That requires clarifying how underwriters, adjusters, service representatives and compliance teams work differently with AI.
When AI tools are deployed on top of existing workflows without guardrails, rules or decision-making rights, teams may not have the guidance or clarity to deploy the tools with confidence, leading to poor adoption. Insurers that are enabling effective AI adoption across functions have established role-based AI operating models for underwriters, claims adjusters and back-office functions with strong governance embedded throughout.
As AI-enabled revenue grows, so do the risks
Insurance leaders are more likely than other industry leaders to say their customers are driving their company’s AI adoption. Thirty-eight percent say customer expectations are the greatest external pressure to the company adopting AI, 12 points above the cross-industry average. And 52% of insurance executives report revenue growth from those AI investments — 15 points above the cross-industry average.
Yet 56% name regulatory or compliance uncertainty as a top barrier to scaling AI. The scale and revenue uptick insurance executives are reporting will stall unless firms operationalize governance into live workflows, rather than treat it as policy documentation. Without it, they risk fines, reputational damage and margin pressure on their products.
“Insurance companies that are ahead have built AI governance into their operating model across underwriting, claims, pricing and customer experience workflows with the specificity that regulators, external stakeholders and institutional clients are seeking. Most organizations have a policy. The ones with ironclad controls will be able to stand behind their AI-enabled outputs with confidence and drive revenue.”
As insurers use AI across front-, middle- and back-office functions, it’s essential that they’re operating under a defensible, AI-specific governance, risk and compliance (GRC) framework. This framework should include roles and responsibilities, escalation paths, tested controls for model inventory, use-case classification, human-in-the-loop, third-party AI oversight, decision traceability and ongoing monitoring to maintain regulatory compliance and customer trust.
CLIENT SUCCESS STORY
Conducting an independent AI audit for a mutual insurance company
Scenario: A mutual insurer deployed a GenAI solution to generate call summaries from customer service interactions, improving agent productivity. The organization had not validated whether those AI-generated summaries were accurate, consistent or free of personally identifiable information (PII) exposure before using them in downstream processes.
Approach: Grant Thornton conducted an independent audit covering functional accuracy against source recordings, bias and sentiment testing, PII identification and redaction controls, and human-in-the-loop review as a formal control.
Result: The audit identified gaps in output consistency, weaknesses in the human review process and undocumented data-handling steps, enabling remediation before the issues became regulatory or reputational events.
Three actions to strengthen AI governance that enables revenue
Many insurance firms are scaling AI, but those that gain competitive advantage will have defensible governance controls covering back- to front-office AI use cases that protect the firm while generating revenue.
In today’s competitive insurance landscape, insurers need to provide measurable value of their AI investments — quickly. But governance is what makes AI revenue scalable, defensible and sustainable.
Grant Thornton works with insurance companies across the P&C, life and retirement, health and insurtech sectors, along with brokers and reinsurers, to identify AI use cases that drive revenue and build operating models to deploy them effectively while maintaining strong governance and controls. Discover how our AI solutions help insurers build responsible AI programs that enable growth.
Methodology
Between Feb. 23 and March 18, 2026, Grant Thornton surveyed 950 business leaders, a group restricted to CFOs, CIOs/CITOs, COOs, and VPs, department heads, and directors who report directly to the C-suite. The insurance-specific subgroup comprises 100 respondents. Role-specific findings within the insurance subset of data are directional only.
Contact:
Global Insurance Practice Leader
Grant Thornton International
Head of Insurance Industry, Grant Thornton Advisors LLC
Content disclaimer
This content provides information and comments on current issues and developments from Grant Thornton Advisors LLC and Grant Thornton LLP. It is not a comprehensive analysis of the subject matter covered. It is not, and should not be construed as, accounting, legal, tax, or professional advice provided by Grant Thornton Advisors LLC and Grant Thornton LLP. All relevant facts and circumstances, including the pertinent authoritative literature, need to be considered to arrive at conclusions that comply with matters addressed in this content.
For additional information on topics covered in this content, contact a Grant Thornton professional.
Grant Thornton LLP and Grant Thornton Advisors LLC (and their respective subsidiary entities) practice as an alternative practice structure in accordance with the AICPA Code of Professional Conduct and applicable law, regulations and professional standards. Grant Thornton LLP is a licensed independent CPA firm that provides attest services to its clients, and Grant Thornton Advisors LLC and its subsidiary entities provide tax and business consulting services to their clients. Grant Thornton Advisors LLC and its subsidiary entities are not licensed CPA firms.
Tax professional standards statement
This content supports Grant Thornton Advisors LLC’s marketing of professional services and is not written tax advice directed at the particular facts and circumstances of any person. It is not, and should not be construed as, accounting, legal, tax, or professional advice provided by Grant Thornton Advisors LLC. If you are interested in the topics presented herein, we encourage you to contact a Grant Thornton Advisors LLC tax professional. Nothing herein shall be construed as imposing a limitation on any person from disclosing the tax treatment or tax structure of any matter addressed herein.
The information contained herein is general in nature and is based on authorities that are subject to change. It is not, and should not be construed as, accounting, legal, tax, or professional advice provided by Grant Thornton Advisors LLC. This material may not be applicable to, or suitable for, the reader’s specific circumstances or needs and may require consideration of tax and nontax factors not described herein. Contact a Grant Thornton Advisors LLC tax professional prior to taking any action based upon this information.
Changes in tax laws or other factors could affect, on a prospective or retroactive basis, the information contained herein; Grant Thornton Advisors LLC assumes no obligation to inform the reader of any such changes. All references to “Section,” “Sec.,” or “§” refer to the Internal Revenue Code of 1986, as amended.
Grant Thornton Advisors LLC and its subsidiary entities are not licensed CPA firms.
Share with your network
Share