Governing AI Agents: What Organisations Need to Consider

In PwC’s 2025 AI agent survey, 79% of senior executives surveyed confirmed that AI agents were already being adopted in their businesses. These systems do far more than simply support decision-making. Agents can autonomously retrieve information, interact with systems, and act with limited human input.

The level of autonomy with AI changes an organisation’s risk profile considerably, raising challenges associated with governance, data protection and accountability. The biggest risk for any organisation is not the use of AI agents, but deploying them without the strategy, frameworks and skills needed to manage their impact.

In this blog, DPO Centre explores what AI agents are, how AI regulation varies across jurisdictions, and the key accountability and data protection considerations organisations should address before deployment.