Loading…
Judith C McKee
Legal & Regulatory Compliance SpecialistIndependent Reviewer
Judith C McKee is a legal and regulatory compliance specialist with more than ten years of experience advising technology companies on data protection law, AI-specific regulation, and corporate governance frameworks. With deep expertise across GDPR, the EU AI Act, and emerging national AI legislation, Judith provides independent expert review of AI Policy Desk content to ensure accuracy, regulatory currency, and practical applicability. Her reviews verify that every template, checklist, and guide reflects current legal standards and is appropriate for the jurisdictions and team sizes it targets. Judith brings a practitioner's eye to compliance content — cutting through regulatory complexity to confirm what small teams actually need to know and act on.
- Regulatory compliance specialist, 10+ years
18 articles reviewed by Judith C McKee
Governance·9 min
Read →Anthropic Says AI Could Soon Build Itself: What Recursive Self-Improvement Means for Your AI Governance Policy
Anthropic published research on June 4, 2026 showing Claude now writes 80% of its own codebase, and called for the ability to pause frontier AI development. What recursive self-improvement means for human oversight policies and agentic AI governance.
ai-governanceai-safetyagentic-aihuman-oversight
Governance·10 min
Read →ChatGPT Memory Upgrade (Dreaming V3): What It Means for Business Privacy and Data Governance
OpenAI''s Dreaming V3 memory update stores persistent user profiles across ChatGPT sessions including business plan users. What teams using ChatGPT need to govern, disable, and disclose under GDPR and CCPA.
ai-governancechatgptdata-privacygdpr
Governance·10 min
Read →California AB 2013 Compliance Guide: What AI Developers Must Disclose About Training Data (2026)
California AB 2013 requires generative AI developers to post 12 categories of training data information on their website before making a system available to Californians. Effective January 1, 2026. What to disclose, who is covered, and the xAI lawsuit that tried and failed to block it.
ai-compliancecaliforniatraining-dataai-transparency
Governance·10 min
Read →Amazon KiroRank and Tokenmaxxing: How to Measure AI Adoption Without Creating Perverse Incentives
Amazon shut down its KiroRank AI leaderboard after employees gamed it by running fake tasks to inflate token counts. The right AI adoption metrics measure outcomes, not usage. A practical framework for small teams.
ai-governanceai-adoptionai-metricsengineering
Governance·10 min
Read →Miasma Worm and Phantom Gyp: The npm Supply Chain Attack That Bypasses Security Tools (June 2026)
A self-spreading worm compromised 57 npm packages in under 2 hours using binding.gyp instead of postinstall scripts, bypassing security scanners. What it means for teams that run npm install, and the 5 controls that limit your exposure.
ai-securitysupply-chainnpmdeveloper-tools
Governance·10 min
Read →AI Support Chatbots with Account Actions Are a Security Risk: The Meta Instagram Incident and What Your Team Must Govern (2026)
Hackers social-engineered Meta AI into resetting passwords on high-profile Instagram accounts by simply asking. What the attack means for any team deploying an AI chatbot that can take account actions, and the 6 controls that prevent it.
ai-securityai-governancechatbotprompt-injection
Governance·10 min
Read →Reviewing AI-Generated Pull Requests: A Review Policy and 9-Point Checklist (2026)
AI now writes a large share of the pull requests your team reviews. A copy-paste policy and 9-point checklist for reviewing AI-generated PRs, who is accountable, what to require, and where AI code fails review.
ai-governancecode-reviewai-codingengineering
Governance·11 min
Read →AI Spend Governance: 5 Token Budget Controls That Stop Runaway AI Bills (2026)
One company burned $500M on Claude in a month with no usage limits. Five copy-paste controls, usage caps, budget alerts, per-seat limits, a kill switch, and a monthly review, to keep token-based AI billing from blowing up your budget.
ai-governanceai-costtoken-billingfinops
Governance·9 min
Read →Vetting AI Tools: How to Avoid Fake AI Apps and Malware (7-Step Check, 2026)
Searching for popular AI tools now surfaces fake malware sites and typosquatted packages at the top of results. A 7-step vetting check to confirm an AI tool is the real one before your team installs it.
ai-governanceshadow-aisecurityvendor-risk
Compliance·11 min
Read →AI Hiring Tool Compliance 2026: NYC, Illinois, Connecticut, Colorado: State-by-State Matrix
Four US states now regulate AI in hiring decisions. NYC Local Law 144 requires annual bias audits. Illinois HB 3773 requires consent before AI video interview analysis. Connecticut CART Act takes effect October 1, 2026. Colorado ADMT framework: January 1, 2027. State-by-state compliance matrix.
ai-hiringcomplianceemployment-lawnyc-local-law-144
Governance·10 min
Read →FTC AI Enforcement in 2026: Real Cases, the Rytr Reversal, and a Small-Team Checklist
What the FTC has actually done on AI, the real consent orders (Workado, DoNotPay, NGL Labs), the January 2026 Rytr reversal under the new administration, and a 9-item compliance checklist for small teams. Updated June 2026.
ftcai-enforcementai-governancecompliance
Governance·10 min
Read →AI Adoption Governance: Stop the Quiet Rebellion
80% of employees bypass or avoid company AI tools. How small teams close the governance trust gap and stop shadow AI use without triggering a rebellion.
shadow AIAI adoptionAI governanceworkplace AI