22% of AI Agents That Reach Production Lose Money. None of the Reasons Are the Model.
Forrester's State of Agentic AI 2026 found that 22% of AI agents that make it to production still de...
On July 2, 2026, the National Association of Corporate Directors told boards they are personally accountable for AI agent oversight — named ownership, audit trails, and the ability to explain what an agent did and why. Most businesses can't answer the first question. Here's what accountable AI actually requires.
On July 2, 2026, the National Association of Corporate Directors published Director Essentials: Implementing AI Governance, and the message was blunt. AI oversight is a board-level responsibility, not a technical one. Boards must assign formal ownership for AI systems and agents, integrate agent risk into enterprise risk management, and track agent incidents with the same rigor they apply to financial controls.
Strip away the boardroom language and the guide is asking one question of every business, large or small: when an AI agent does something wrong, who is responsible, and can you prove what happened?
Most businesses cannot answer that today. Not because they're careless, but because the way they've deployed AI makes the question structurally unanswerable. The agents live in apps. The actions leave no durable trail. And "who was responsible" resolves to a shrug and a vendor's support queue.
The NACD guide lands the same week Microsoft's Agent 365 and Google's Workspace AI control center pushed agent governance into mainstream enterprise IT. The direction is unmistakable. Accountability for AI agents is moving from "nice to have" to "the board's job." And for a small business, the board is you.
The instinct, when you hear "the board is accountable," is to reach for rules. Write a policy. Add approval steps. Tell the agent what it's not allowed to do. That's the behavioral approach to safety, and it's where most businesses stop.
It doesn't hold up. Accountability is a backward-looking property. It's not about what you told the agent to do — it's about your ability to explain, after the fact, what actually happened and who owns it. Guardrails are forward-looking instructions. The two are not the same thing, and confusing them is why so many businesses feel governed but can't survive a single hard question.
Here's the test. An invoice went out with a wrong number. A customer got an email they shouldn't have. A discount got applied that shouldn't exist. Can you answer, within an hour: which agent did it, what instruction or data led to it, who in the business is the named owner of that agent's behavior, and what would you change so it doesn't happen again?
If the answer to any of those is "we'd have to reconstruct it" or "that lives in the vendor's system," you don't have accountability. You have hope.
What good looks like: every agent action is attributable to a specific agent with a named human owner, the reasoning and inputs are inspectable after the fact, and the fix is a change you make to a configuration you control. What bad looks like: an action happened somewhere in a vendor's app, nobody's name is attached, and the only record is whatever the vendor decided to log.
The NACD guide, read against how businesses actually run agents, points to four concrete requirements. None of them are about smarter models. All of them are about structure.
This is the one that quietly breaks most multi-agent setups. When one business runs a support agent, a billing agent, and a scheduling agent — often across three different vendors — an action that goes wrong frequently can't be traced to its source. We wrote about the rollback crisis where 70% of businesses in multi-agent environments couldn't identify which agent was responsible, and attribution is the root of that failure.
You cannot hold anything accountable if you can't identify it. Attribution means every agent is a distinct, named entity with a distinct identity — not an anonymous session spun up inside a tool. A real AI coworker has a name, a role, and a record. A tool invocation has none of those.
The NACD guide is explicit: accountability must be assigned, not left to informal practice. Someone in the business owns each agent's behavior the way a manager owns a direct report's output. This is not about blame. It's about having a person who understands what the agent is supposed to do, reviews how it's doing it, and has the authority to change it.
The guide notes that named ownership more than doubles the odds an agent project reaches production successfully. That's not a coincidence. An agent nobody owns is an agent nobody tunes, nobody reviews, and nobody catches before it drifts.
What good looks like: every Teammate in your org chart has a named owner, the same way every role in a company has a manager. What bad looks like: "the AI" is a diffuse capability that IT set up once and nobody has looked at since.
You cannot explain what an agent did if the record lives in a system you can't inspect. This is where the app model quietly fails the accountability test. Each vendor logs what it chooses to log, in a format it controls, retained for as long as it decides. When the board asks "what happened," you're asking a vendor's support team for a partial answer.
Accountability requires that the agent's actions, inputs, and reasoning are recorded in infrastructure you own and can query directly. Not a marketing dashboard — an actual, inspectable record. This is the same principle behind why durable, governed agent memory has to belong to you and not the vendor. If you can't inspect it and export it, you can't be accountable for it.
This is what the observability platform in Associates AI is built to provide. Each customer gets an isolated observability workspace where authorized team members can inspect Teammate runs and conversations, trace what happened when something goes wrong, see errors, and attribute model costs to the Teammate and person involved. Instead of reconstructing an incident from scattered vendor logs, the business has one place to investigate the record behind an action. That turns “why did the AI do that?” from a support ticket into a question your team can answer directly.
The last requirement is the one everyone forgets. After you've identified the agent and understood what went wrong, accountability means you can change the behavior. If the agent's instructions live inside a vendor's console, tuned for a vendor's model, your fix is a support ticket and a wait. If the agent's behavior is defined in a configuration layer you own, the fix is an edit you make and verify the same day.
Accountability without the ability to correct is just documentation of failures you can't prevent from recurring.
It's tempting to read board-governance guidance and assume it's an enterprise problem. It's the opposite. A large enterprise has a risk committee, a general counsel, and the budget to buy a governance control plane. A ten-person business running agents across four SaaS tools has none of that — and the owner is personally on the hook.
Regulators and courts are not going to accept "the AI did it" as a defense. Someone approved putting that agent in the loop. When an agent sends a discriminatory rejection, mishandles customer data, or commits the business to something it shouldn't, the accountability lands on the owner. The NACD guide is early formalization of a standard that will reach every business, because the harm reaches every business.
This is why the encoding of organizational intent — what the agent is for, where it can act, when it must stop and ask a human — matters more than model quality. We've argued that most AI deployments fail on intent, not on the model, and accountability is intent made auditable. An agent that knows its boundaries, escalates at the right moments, and leaves a clean record is an agent you can stand behind. One that's smart but ungoverned is a liability with good grammar.
You don't need a governance committee. You need structure. Here are the concrete steps, in order.
1. Inventory your agents and name an owner for each. List every AI agent acting in your business right now — including the ones buried in SaaS tools. For each, write down one human name: who owns this behavior. If any agent can't get an owner, that's the first one to shut off.
2. Run the hard-question drill. Pick a plausible failure — a wrong invoice, a bad email — and try to answer, out loud: which agent, what caused it, who owns it, what's the fix. Time yourself. The gaps you hit are your accountability gaps.
3. Move attribution and logging into infrastructure you control. An agent's actions and reasoning should be recorded where you can query them, not scattered across vendor dashboards. This is the difference between a coworker with a personnel file and an anonymous tool invocation.
4. Define each agent's boundaries as configuration, not hope. Where can it act? What requires a human's sign-off? When must it stop and escalate? Encode it in a layer you own so the answer is inspectable and changeable — not buried in a prompt inside someone else's app.
5. Set a review cadence. Agents drift. The board-level expectation is ongoing oversight, not a one-time setup. Put a recurring calendar hold on reviewing what each agent did and whether its boundaries still fit. Fifteen minutes a week beats a forensic investigation after something breaks.
The businesses that do this won't just satisfy a governance checklist. They'll run better, because an agent you can hold accountable is an agent you can actually trust with real work.
Q: What does "AI agent accountability" actually mean? A: It means being able to answer, after an agent acts, which specific agent did it, what inputs and instructions led to the action, who in the business owns that agent's behavior, and how to correct it. It's a backward-looking property — distinct from guardrails, which are forward-looking instructions. Accountability is about provable explanation and clear ownership.
Q: Does the NACD guidance apply to small businesses, or just public companies? A: The July 2, 2026 guide targets corporate boards directly, but the standard it formalizes reaches every business. Small businesses are more exposed, not less — the owner is personally accountable, without the risk committee or legal team a large enterprise has. The harm from an ungoverned agent doesn't care how many employees you have.
Q: Aren't approval steps and guardrails enough to stay accountable? A: No. Guardrails reduce the odds of a bad action, but they don't give you attribution, ownership, an audit trail, or the ability to explain what happened. A business can have guardrails everywhere and still be unable to answer "which agent did this and who's responsible." Accountability is a structural property, not a set of rules you write.
Q: Why can't I just rely on my AI vendor's logs and dashboards? A: Because each vendor logs what it chooses, in a format it controls, and governance that stops at one vendor's boundary isn't governance across your business. If you run agents in several tools, you have several partial records and no single place to answer the board's question. Accountability requires an audit trail in infrastructure you own and can inspect directly.
Q: How is a named human owner different from just "IT owns the AI"? A: "IT set it up" is not ownership — it's installation. A named owner understands what a specific agent is supposed to do, reviews how it's doing it, and has the authority and the tools to change its behavior. Named ownership is the single factor most correlated with agents that reach production and stay reliable, because owned agents get tuned and reviewed while unowned ones drift.
The NACD guidance is the early edge of a standard every business will meet: you are responsible for what your AI agents do, and "the AI did it" is not a defense. The businesses that treat accountability as a policy document will keep failing the hard questions. The ones that build it into their structure — named Teammates, named owners, audit trails they control, and boundaries they can change — will be the ones that can put real work in an AI coworker's hands without lying awake about it. Associates AI Teammates gives your business that accountable operating layer, including isolated observability for runs, conversations, errors, and costs. Explore the Associates AI platform and build your team of Teammates.
Written by
Founder, Associates AI
Mike is a self-taught technologist who has spent his career proving that unconventional thinking produces the most powerful solutions. He built Associates AI on the belief that every business — regardless of size — deserves AI that actually works for them: custom-built, fully managed, and getting smarter over time. When he's not building agent systems, he's finding the outside-of-the-box answer to problems that have existed for generations.
More from the blog
Forrester's State of Agentic AI 2026 found that 22% of AI agents that make it to production still de...
On July 6, 2026, OpenAI made workspace agents generally available inside ChatGPT Business, Enterpris...
A June 2026 industry read put it plainly: SMBs are all-in on AI agents, but conviction is running ah...
Want to go deeper?
Get started today. Hire your first Teammate in minutes and put it to work on what you're reading about.
Get Started