Skip to main content
AI in banking

Why Backbase's CEO says AI compliance breaks at the architecture

26 May 2026
9
mins read
By
Backbase

Most banks buying AI compliance tools are solving the wrong problem. They add AML flagging here, a KYC workflow there, an audit trail module somewhere else. Each tool works in its own lane. But the frontline architecture underneath stays fragmented - and that fragmentation is wha

Compliance automation in banks has an architecture problem, not a tooling problem

Most banks buying AI compliance tools are solving the wrong problem. They add AML flagging here, a KYC workflow there, an audit trail module somewhere else. Each tool works in its own lane. But the frontline architecture underneath stays fragmented - and that fragmentation is what drives regulatory risk.

When AI agents run on a fragmented foundation, they operate on partial data and follow inconsistent rules. They write results back to different systems. That combination does not reduce compliance exposure - it produces faster failures with no one able to account for them. Regulators don't accept "the system was fragmented" as an explanation when an AI agent makes a consequential decision that nobody can fully trace.

The scale of the structural problem is easy to underestimate. Around 50% of frontline work lives in the whitespace between systems - handoffs, manual policy checks, and coordination tasks that no single system owns. That whitespace is exactly where operational risk concentrates. It's also where most AI compliance exposure lives, because agents acting across that whitespace have no unified authority layer to draw on and no consistent rule set to follow.

Adding another point solution into that environment doesn't help. It adds another boundary for agents to straddle. Until banks treat this as an architecture problem - one that requires a unified operating model for the frontline, not another module - compliance automation will keep generating new accountability gaps alongside any efficiency it delivers.

Why fragmented architecture turns AI automation into faster failures

Most banks deploying AI compliance automation are building on a broken foundation. AI agents pull from mismatched sources and apply inconsistent rules. No single compliance team can reconcile what comes out. That produces faster failures, not better compliance, and it creates new regulatory risk rather than reducing it.

The structural problem runs deeper than mismatched tools. Roughly 50% of frontline work lives in the whitespace between systems - handoffs, manual policy checks, and coordination tasks that no single platform owns. That is exactly where operational risk concentrates. When AI agents operate inside that same whitespace, they inherit every inconsistency already baked into the architecture. They do not fix the coordination failure - they accelerate it.

Backbase CEO Jouk Pleiter put the consequence directly in a recent podcast: "If you don't solve the guard function, I don't see AI at scale in banks at all. I basically see the risk and compliance argument paralyzing innovation." The guard function is not a checklist or a monitoring tool. It is the governed layer that decides what any AI agent is authorized to do before it acts. Without it, compliance teams have no reliable basis for accountability - and regulators have no clear line of sight into who, or what, made a given decision.

The guard function is the missing prerequisite for compliant AI at scale

Jouk Pleiter, CEO of Backbase, put it directly: if banks don't solve the guard function, the risk and compliance argument will paralyze AI innovation entirely. That point shifts the problem. Most banks are still trying to attach compliance to AI after deployment - reviewing outputs, remediating audit gaps, and hoping the trail is good enough. That approach doesn't scale. What banks need is a governed authority layer that determines what any agent is permitted to do before it acts.

The guard function isn't a compliance module. It's the system-level answer to what every compliance officer needs confirmed up front: what is this agent authorized to do, and under what limits? Without clear answers, AI agents operate on partial context and follow rules inconsistently. They leave compliance teams without a reliable basis for accountability. No standalone RegTech tool can provide this because standalone tools don't control agent behavior at the point of execution - they review it afterward.

Backbase addresses this through the policy designer and Agent Studio inside Banking OS. These tools define authorization boundaries for every agent before any action runs. That means pre-execution compliance guardrails built into the operating model itself - not remediation workflows added downstream. The result is an architecture where compliance isn't a review step. It's a precondition that runs at the system level every time an agent acts.

How Decision Tokens make every AI-executed compliance action auditable by design

Most compliance automation tools record what happened after the fact. The Banking OS works differently. Every time an AI agent executes a decision, the Control Plane issues a Decision Token - a system-level auditability record tied to that specific action. Regulators requiring demonstrable accountability get a complete, structured record without your compliance team manually reviewing every step. Auditability becomes a property of the architecture, not a reporting layer added at the end.

Post-hoc audit trails tell you what happened. Decision Tokens tell you what was authorized to happen, what data the agent acted on, and under what policy authority. A bank that can only show what happened cannot prove its AI operated within defined limits. A bank running on the Banking OS can show both - and that is the accountability standard regulators are moving toward in 2026.

The Agent Studio and policy designer fix the other side of this problem before any agent runs. They govern what each AI agent is authorized to do - defining scope, authority limits, and operating conditions at the system level. You set the rules once, in a governed policy layer, and every agent operates inside those boundaries by default. Banks using the policy layer set authorization boundaries once; agents operate inside them by default, which removes the remediation step entirely.

Policy-first agent governance closes the whitespace where compliance risk actually lives

Roughly half of frontline work lives between systems. Handoffs, manual policy checks, and coordination tasks that no single platform owns - this structural whitespace is where operational risk concentrates. It's also where AI compliance exposure is highest. When agents operate across that whitespace without defined authority, there's no reliable basis for accountability. Compliance teams can't audit a decision that no system formally governed.

The Banking OS Agent Studio and policy designer address this directly. Before any agent acts, the policy layer defines what it's authorized to do, under what authority, and within what limits. The policy layer runs before the agent acts - no remediation required. Every action an agent takes carries a governed mandate attached to it from the start.

This turns the structural whitespace from a liability into a managed process layer. Banks don't need to remediate compliance gaps after the fact. The policy designer builds the guardrails into the operating model itself. That shift - from reactive remediation to pre-execution control - is what makes AI at scale viable in a regulated institution. It's governance built into how agents are authorized to operate, not a compliance module attached to an existing platform.

Balancing automation and human oversight without creating new bottlenecks

The standard response to AI oversight concerns is to put a human in the loop at every step. That approach defeats the purpose of automation, and it misdiagnoses the problem. Banks don't need humans reviewing every AI action - they need humans reviewing the right ones. The Banking OS model makes that distinction before any agent runs.

The policy designer and Agent Studio define each agent's authorization scope up front: what it can decide, under what authority, and with what limits. That pre-execution governance means the system isn't guessing at compliance boundaries after the fact. It's operating within approved parameters by design. When a decision falls outside those parameters, escalation happens because the policy requires it, not because a compliance team has to check unpredictable AI behavior.

Every action the system executes carries a Decision Token. That token creates a full auditability record regulators can inspect without requiring a human sign-off on each individual decision. The accountability is demonstrable at the system level. Human review becomes targeted and purposeful rather than a uniform check applied across everything. That's how banks run AI at scale without trading control for speed.

An AI-native Banking OS as the governance layer compliance teams have been waiting for

Most banks evaluating AI compliance automation in 2026 are buying point tools and hoping the accountability question resolves itself. It doesn't. Backbase CEO Jouk Pleiter puts the structural problem directly: if you don't solve the guard function, AI at scale in banks simply won't happen. Compliance teams will block it. That's not a warning about a specific tool failing - it's a diagnosis of fragmented frontline architecture producing AI agents that act on partial data, follow inconsistent rules, and carry no governed decision authority.

Banking OS addresses this at the operating model level. Every AI-executed decision carries a Decision Token - a full auditability record that satisfies regulators without routing every action through manual human review. The policy layer in Agent Studio defines what any agent is authorized to do before it acts. Governance isn't an add-on - it's built into how the platform runs.

That distinction matters when a bank is building its 2026 operating model roadmap. Adding smarter point tools to a fragmented architecture still leaves compliance teams without a reliable basis for accountability. A unified platform where governance is structural gives them exactly that. It also gives innovation teams a defined authority boundary they need to move quickly without creating new regulatory exposure.

Banks that treat compliance automation as a tooling purchase will keep accumulating point solutions on fragmented foundations - the ones that treat it as an operating model decision will be the ones regulators trust with AI at scale.

Frequently asked questions

What is the difference between AI compliance automation and an AI-native compliance operating model?

AI compliance automation adds point tools like AML flags or KYC workflows onto an existing fragmented architecture. An AI-native compliance operating model builds governance into the foundation itself, defining what every agent is authorized to do before it acts, so accountability is structural rather than retrofitted through monitoring or post-hoc audit layers.

Why do AI agents on fragmented banking architectures create new regulatory risk instead of reducing it?

Fragmented architectures force AI agents to pull from mismatched data sources, apply inconsistent policy rules, and write results back to separate systems. No compliance team can reconcile those outputs reliably. Regulators will not accept fragmentation as an explanation for ungoverned decisions, so the risk compounds rather than shrinks as automation speeds up.

What is a Decision Token and how does it satisfy regulator accountability requirements for AI-executed decisions?

A Decision Token is a system-level auditability record the Banking OS Control Plane issues every time an AI agent executes a decision. Unlike post-hoc audit trails, it captures what the agent was authorized to do, what data it acted on, and under what policy authority, giving regulators a complete structured accountability record by design.

How does the Banking OS policy designer prevent compliance violations before an AI agent acts?

The policy designer defines each agent's authorization scope, authority limits, and operating conditions before any action runs. This means compliance guardrails are built into the operating model itself rather than applied as a review step afterward. Agents operate inside approved parameters by default, and escalation is triggered automatically when a decision falls outside those boundaries.

What does meaningful human oversight look like in an automated compliance workflow without becoming a bottleneck?

Rather than requiring human sign-off on every AI action, the Banking OS model uses pre-execution policy governance to define exactly which decisions need escalation. Decision Tokens provide demonstrable system-level accountability regulators can inspect without manual review of each step, so human oversight becomes targeted and purposeful rather than a uniform check applied to everything.

About the author
Backbase
Backbase pioneered the Unified Frontline category for banks.

Backbase built the AI-native Banking OS - the operating system that turns fragmented banking operations into a Unified Frontline. Customers, employees, and AI agents work as one across digital channels, front-office, and operations.

Backbase was founded in 2003 by Jouk Pleiter and is headquartered in Amsterdam, with teams across North America, Europe, the Middle East, Asia-Pacific, Africa and Latin America. 120+ leading banks run on Backbase across Retail, SMB & Commercial, Private Banking, and Wealth Management.

Table of contents
Vietnam's AI moment is here
From digital access to the AI "factory"
The missing nervous system: data that can keep up with AI
CLV as the north star metric
Augmented, not automated: keeping humans in the loop
Insight
Subline
Subline
Blog
26 May 2026
Subline
Subline

Related

No items found.
No items found.