OneTrust expands observability and enforcement for AI governance

OneTrust announced expanded observability and enforcement capabilities intended to deliver continuous, run-time control for Artificial Intelligence (AI) governance across agents, models, and data.

The company presented the enhancements as tools for data, risk, and AI teams and described a move away from static compliance workflows toward a continuous control plane for governing AI systems.

The update introduced cross-platform monitoring and programmatic guardrail enforcement, including continuous discovery and inventory of AI agents, models, and datasets; a policy manager and policy library that mapped frameworks such as the NIST AI Risk Management Framework (RMF) and the EU Artificial Intelligence Act (AI Act) into real-time oversight; and inspection and enforcement mechanisms for Generative AI (GenAI), traditional Machine Learning (ML) models, and agents that could block or limit personal data exposure when violations occurred.

OneTrust said the platform integrates with major AI and data environments and listed Amazon Bedrock, Amazon Sagemaker, Azure Foundry, Azure OpenAI, Databricks Unity Catalog, and Google Vertex among supported integrations. The company also cited customer use: Blackbaud used OneTrust to align AI practices with NIST’s AI RMF and to integrate governance with Databricks for stakeholder reviews; Kuehne + Nagel used OneTrust for centralized intake, risk classification under the EU AI Act, and lifecycle oversight across procurement, development, and production; and Lumen Technologies used automation, workflows, and centralized controls to scale privacy operations, accelerate regulatory compliance, and reduce risk exposure.

“As AI becomes more embedded across the enterprise, organizations need governance that keeps pace,” said DV Lamba, Chief Product & Technology Officer at OneTrust. “With these new capabilities, OneTrust advances AI governance from point-in-time compliance to continuous, run-time control across key data and AI platforms. This helps organizations innovate with confidence, move faster, reduce risk, and maintain trust as AI scales.”

The announcement also described the OneTrust AI-Ready Governance Platform as a means to define purpose, automate assessments, enforce controls, and continuously monitor new risks across domains.