Module 7 · Lesson 1

What Corporate AI Policies Contain

The anatomy of a corporate AI policy — and why structure matters for reading critically

The company's AI principles document ran to twelve pages. It had a foreword from the CEO, five numbered principles, a glossary, and a reference to an internal review process. It had been downloaded 40,000 times and cited in three industry reports.

A policy analyst who read it carefully found it committed the company to nothing specific, created no accountability mechanisms, and excluded the AI use cases most likely to cause harm from its scope. The document was not dishonest. It was, in a precise technical sense, empty.

The Standard Corporate AI Policy Structure

Most major tech companies have published AI principles, responsible AI frameworks, or AI ethics documents. These documents have become an expected part of corporate AI practice — investors, regulators, civil society, and journalists all look for them. Understanding their typical structure is the first step to reading them critically.

A standard corporate AI policy typically contains some combination of: Preamble and vision statement — explaining why the company is committed to responsible AI, usually featuring values language (fairness, transparency, accountability, human-centeredness). Principles or values — a numbered or bulleted list of commitments, typically 5–10 items, often overlapping significantly with those published by other companies. Governance description — a description of internal governance structures, often vague about actual authority and process. Scope statement — defining what AI systems the policy covers, often with exclusions. Process references — mentions of review processes, impact assessments, or testing procedures, typically without specifics.

The Principles Convergence Problem

Analysis of corporate AI principles documents finds striking convergence across companies — most include some version of fairness, transparency, accountability, safety, and privacy. This convergence creates a signal problem: when all companies publish the same principles, the principles themselves provide little information about how any specific company actually governs AI.

What Policies Are Actually Doing

Corporate AI policies serve multiple functions simultaneously — and understanding these functions helps explain why policies look the way they do. External legitimacy: Demonstrating to regulators, investors, and civil society that the company takes AI governance seriously. Internal alignment: Communicating values and expectations to employees. Regulatory positioning: Establishing a posture before regulation arrives — companies with published AI principles can claim to have been ahead of the regulatory curve. Liability management: Creating a documented governance commitment that may be relevant in litigation. Competitive signaling: Differentiation in talent markets and enterprise sales where AI ethics is a decision criterion.

None of these functions requires the policy to contain enforceable commitments. A policy can serve all five functions while committing to nothing specific. This is not cynicism — it is the structural reality of voluntary corporate governance documents, and it is why reading them critically matters.

The Anatomy of a Principle

Individual principles within corporate AI policies have a characteristic structure. Typically: a label (Fairness, Transparency, Accountability), a definition (what the company means by the term), a commitment statement (what the company will do or strive for), and sometimes examples of how the principle manifests in practice. The critical questions for each principle: Is the commitment specific or aspirational? Does it create an obligation or express an aspiration? Is there a mechanism that enforces or tracks adherence? Does the definition of the term match how the term is used in technical or regulatory contexts?

Reading Before Critiquing

Effective policy critique requires reading the document carefully before evaluating it. Many critiques miss important nuances — exclusions buried in scope definitions, commitments that are actually specific, or genuine governance substance in process descriptions. Read the whole document, including footnotes and linked pages, before concluding it is empty.

Lesson 1 Quiz

What corporate AI policies contain

The convergence of corporate AI principles (most companies publishing similar principles) is a problem because:

✓ Correct — Correct. Convergence creates a signal problem — if all companies say the same things, the content of the principles tells you nothing distinctive about any company's actual governance.

The convergence problem is about information content, not originality. When principles are identical across companies, they can't distinguish good governance from bad.

Which of these is the most important critical question to ask about a specific AI principle?

✓ Correct — Correct. The most important question is whether the principle creates real accountability — a specific obligation plus an enforcement or tracking mechanism — rather than just expressing aspiration.

The critical question is whether the principle has teeth — a specific obligation and a mechanism that enforces it — not whether it's clear, original, or regulatory-aligned.

Corporate AI policies serve multiple functions simultaneously. Which function does NOT require the policy to contain enforceable commitments?

✓ Correct — Correct. External legitimacy — appearing to take AI governance seriously — can be achieved with a well-written document containing no enforceable commitments. This is why many policies are aspirational rather than obligatory.

External legitimacy can be achieved with aspirational language alone. Regulatory compliance, internal enforcement, and audit documentation all require something more concrete.

Lab 1 — Policy Anatomy

Dissect the structure of a real corporate AI policy

Your Task

Go to the AI principles page of one of these companies: Google (ai.google/responsibility/principles), Microsoft (microsoft.com/ai/responsible-ai), Meta (ai.meta.com/responsible-ai), IBM (ibm.com/artificial-intelligence/ethics), or Anthropic (anthropic.com/responsible-scaling-policy).

Map the document's anatomy: (1) What sections does it contain? (2) For each principle, identify the label, definition, commitment statement, and any examples. (3) Does the scope statement include exclusions? What is excluded?

Name the company and document you chose. Give me your structural map — I will push you to identify what each section is actually doing and whether any commitments are specific enough to be meaningful.

AI Lab AssistantPolicy Anatomy Analyst

Name the company and document. Map its structure for me — sections, principles, scope. I will push you on what each part is actually doing and whether any of it creates real obligations.

Module 7 · Lesson 2

Reading for Gaps

What corporate AI policies don't say — and why silence is as revealing as language

The policy said the company was committed to fairness. It defined fairness as ensuring AI systems do not discriminate based on protected characteristics. It described a bias testing process. It said outcomes would be monitored.

What it did not say: which specific AI systems were in scope. What the bias testing methodology was. What monitoring metrics were used. What would happen if monitoring found bias. Who was responsible for remediation. Whether results would be published. Whether affected individuals had any recourse.

The commitment was real. The governance was absent.

The Taxonomy of Policy Gaps

Reading for gaps requires knowing what to look for. Corporate AI policy gaps fall into several categories:

Scope gaps: Systems, use cases, or contexts excluded from the policy's coverage. Scope is often defined broadly in the abstract and narrowed in practice through exclusions — "third-party AI," "AI used for internal operations," "AI in products not marketed to consumers." Each exclusion removes a category of AI deployment from accountability.

Specificity gaps: Commitments that describe desired outcomes without specifying how they will be achieved. "We will ensure our AI is fair" without defining what fairness means, how it will be measured, or who is responsible for measuring it. Aspirational language is not governance.

Accountability gaps: Missing specification of who is responsible for what. Policies frequently describe processes in the passive voice — "AI systems will be reviewed," "assessments will be conducted" — without identifying who conducts the review, what authority they have, and what happens when reviews raise concerns.

Consequence gaps: Missing description of what happens when a principle is violated or a commitment is not met. Without consequences, principles are advisory rather than binding — even internally.

Redress gaps: Missing mechanisms for people affected by AI decisions to understand those decisions, raise concerns, or seek correction. Many policies describe governance obligations to the company without addressing obligations to affected individuals.

The Passive Voice Test

Passive voice in policy language is a reliable marker of accountability gaps. "Bias testing will be conducted" — by whom? "AI systems will be monitored" — by which team, with what metrics, reported to whom? Rewrite passive commitments in active voice and identify who performs each action. The result often reveals that specific accountability was never assigned.

Scope Gaps in Detail

Scope exclusions deserve particular attention because they define the boundary of accountability. Common scope exclusions to look for: Acquired or third-party AI: AI systems purchased from vendors or built into acquired products often fall outside the scope of policies written for first-party AI development. Research AI: AI used in internal research may be excluded from deployment-stage governance. AI embedded in existing products: When AI is added to an existing product, older policies written before AI was a component may not cover it. Geographic exclusions: Policies may apply only in specific jurisdictions, exempting AI deployed in markets without regulatory pressure.

The Audit Trail Question

One of the most revealing gaps to look for: does the policy create an audit trail? Could a regulator, journalist, or affected individual use the policy's own commitments to demonstrate that the company failed to meet them? Policies that create no documentable commitments create no audit trail — and no accountability beyond the company's own judgment about whether it has complied.

Lesson 2 Quiz

Reading for gaps in AI policies

The "passive voice test" for AI policy critique involves:

✓ Correct — Correct. Passive voice systematically obscures accountability. Rewriting "assessments will be conducted" as "Team X will conduct assessments and report results to Y by Z" reveals whether accountability was actually assigned.

The passive voice test is about accountability assignment. Passive constructions hide the actor — and when you try to name the actor explicitly, you often find no one was ever assigned the responsibility.

Which type of scope exclusion is most likely to cover the highest-risk AI deployments?

✓ Correct — Correct. Many of the most consequential AI deployments — credit scoring, hiring screening, medical diagnostics — are purchased from specialized vendors. Policies that exclude third-party AI can exclude exactly the AI most likely to affect people's lives.

Third-party/acquired AI exclusions are particularly significant because many high-stakes AI systems (hiring, credit, medical) are vendor-provided rather than built internally.

A policy commitment creates an "audit trail" when:

✓ Correct — Correct. A real audit trail requires specificity — a commitment vague enough that the company can always claim it complied creates no external accountability, regardless of how publicly it is stated.

Public availability alone is insufficient. The commitment must be specific enough that failure to meet it can be demonstrated by external parties — not just evaluated internally.

Lab 2 — Gap Analysis

Find the gaps in a real corporate AI policy

Your Task

Using the same policy document from Lab 1 (or a different one), conduct a systematic gap analysis.

For each principle or commitment in the document: (1) Identify the gap type — scope, specificity, accountability, consequence, or redress. (2) Describe the specific gap. (3) Assess its significance — does this gap cover a high-risk AI use case, or is it a lower-stakes omission?

Name your policy document and give me your first gap finding. Be specific — quote the policy language and explain what is missing. I will push you to assess significance and identify whether the gap is intentional design or oversight.

AI Lab AssistantPolicy Gap Analyst

Name your document and give me your first specific gap. Quote the policy language — then tell me what is missing and why it matters. I will push you on significance and intent.

Module 7 · Lesson 3

Comparing Policies Across Companies

What cross-company comparison reveals about industry norms, differentiation, and collective gaps

The researcher laid five corporate AI principles documents side by side. The words were different. The structure was nearly identical. Each had a principle called something like "Fairness." Each described bias testing. Each mentioned human oversight.

What was different: the scope of AI covered, the specificity of bias testing methodology, who oversight was owed to, what happened when oversight raised concerns. The differences were not in the principles. They were in the details that most readers skip.

Why Cross-Company Comparison Matters

Comparing AI policies across companies reveals several things that single-company analysis cannot: Industry norms — what commitments are standard practice vs. distinctive. Collective gaps — harms or use cases that no company's policy addresses, suggesting an industry-wide blind spot. Genuine differentiation — areas where companies have made meaningfully different choices. Regulatory arbitrage patterns — areas where policies are weakest correspond to areas without regulatory pressure.

A Comparative Framework

Effective cross-company comparison requires a consistent framework. Useful dimensions to compare:

Scope coverage: Which AI systems and use cases are explicitly in scope? Which are excluded? How does coverage compare across companies in the same industry?

Specificity of commitments: For a given principle — say, fairness — how specifically does each company describe what it will do? Some companies specify protected characteristics, testing methodologies, and reporting obligations. Others use only abstract commitments.

Governance authority: Does any governance body have authority to block AI deployment? Or is all governance advisory? How does this compare across companies?

Transparency commitments: What does the company commit to publishing externally? Audit results? Incident reports? Bias testing summaries? Or nothing specific?

Redress mechanisms: What can affected individuals do? Are there appeals processes, correction mechanisms, or complaint pathways?

The Industry Norm Trap

A common mistake in policy critique is judging a company against industry norms rather than against the actual harms its AI causes. If the entire industry has the same gap — say, no policies covering AI in content moderation — that gap does not become acceptable because it is universal. Industry norms tell you what is standard; they do not tell you what is sufficient.

Case Study: Hiring AI Policies

Consider how major tech companies handle AI used in hiring — both their own hiring processes and hiring AI they sell to other companies. Policy comparison reveals a striking pattern: companies with detailed, specific policies governing AI they sell to enterprise clients often have much less specific policies governing AI they use in their own HR processes. The AI that affects their own employees falls in a scope gap — governed by general HR policy rather than the AI ethics framework.

This asymmetry is not random. AI sold to enterprise clients faces commercial scrutiny and potential regulatory liability. Internal HR AI faces neither. The gap reveals the role of external pressure in shaping governance specificity.

Lesson 3 Quiz

Comparing AI policies across companies

Cross-company policy comparison reveals "collective gaps" — what does this mean?

✓ Correct — Correct. When a gap appears across all companies in an industry, it signals a structural blind spot — often corresponding to an area with no regulatory pressure — rather than an individual company's failure.

Collective gaps are harms or use cases not covered by any company's policy — an industry-wide blind spot, not just individual failures.

The hiring AI policy asymmetry case study — where companies have more specific policies for AI they sell than AI they use internally — suggests:

✓ Correct — Correct. The asymmetry reveals that governance specificity tracks external pressure rather than internal risk. Where there is no commercial scrutiny or regulatory liability, governance tends to be less specific.

The asymmetry is explained by external pressure, not inherent risk levels. Internal HR AI can be as consequential as externally sold AI — but it faces less commercial and regulatory scrutiny.

Judging a company's policy against industry norms rather than actual harms is problematic because:

✓ Correct — Correct. If the entire industry fails to address a significant harm, that failure does not become acceptable by being universal. Normative adequacy requires asking whether the policy addresses actual harms — not whether it matches what competitors do.

The norm trap is that standard does not equal sufficient. A harm unaddressed by all companies is still unaddressed — the universality doesn't make it acceptable.

Lab 3 — Cross-Company Comparison

Compare AI policies across two companies in the same industry

Your Task

Choose two companies in the same industry (two major tech platforms, two large banks, two healthcare AI companies) and compare their AI policies on one specific dimension.

Pick one comparison dimension: scope coverage, governance authority, transparency commitments, or redress mechanisms. For each company, describe what the policy says on that dimension. Then: (1) Identify genuine differences between the two. (2) Identify where they are the same — and whether the sameness reflects an industry norm or a collective gap. (3) Assess which company's approach is more meaningful, and why.

Name your two companies and comparison dimension. Give me your initial comparison. I will push you to distinguish genuine difference from surface-level variation, and to assess which approach is actually stronger.

AI Lab AssistantCross-Company Policy Comparator

Name your two companies and your comparison dimension. Give me your initial comparison — I will push you to distinguish real differences from surface variation, and to assess which approach creates more meaningful accountability.

Module 7 · Lesson 4

Regulatory Capture & Greenwashing

How AI policies can shape regulation away from accountability — and how to identify it

The company had published a detailed AI governance framework eighteen months before the draft regulation appeared. When the regulation was circulated, the company's lobbyists made a specific argument: the regulation was unnecessary because the company already governed itself to a higher standard than the draft required.

The company's framework contained no enforceable commitments, no external accountability, and no consequences for non-compliance. The regulation would have required all three. The company's argument was made with a straight face — and it worked in several jurisdictions.

What Is AI Ethics Greenwashing?

The term "ethics washing" — adapted from "greenwashing" in environmental policy — describes the use of ethics language and governance structures to create the appearance of responsible practice without the substance. In AI governance, ethics washing serves to deflect regulatory pressure, reassure stakeholders, and capture the legitimacy of ethical commitment without its costs.

Ethics washing exists on a spectrum. At the mild end: companies genuinely committed to responsible AI that use language that overstates the maturity of their governance. At the severe end: governance theater explicitly designed to preempt regulation or deflect accountability. Most real cases fall somewhere between these poles.

Indicators of Ethics Washing

Principle proliferation without implementation: Elaborate principles documents with no governance structures capable of enforcing them. The gap between documented values and operational reality is the tell.

Process theater: Governance bodies that meet but cannot block deployments. Review processes that are designed to produce approvals rather than genuine scrutiny. Ethics impact assessments completed after deployment decisions are made.

Definitional stretching: Redefining terms like "fairness," "transparency," or "human oversight" in ways that allow existing practices to qualify — rather than changing practices to meet standard definitions. If a company defines "transparency" as publishing a general description of its AI types rather than providing system-level explanations to affected individuals, it has stretched the term beyond its governance meaning.

Regulatory preemption framing: Using published principles as evidence that regulation is unnecessary. This is the clearest signal that governance documents are serving a regulatory rather than an accountability function.

Scope gaming: Deliberately designing scope exclusions to cover high-visibility AI while excluding the AI systems most likely to cause harm or face criticism.

The Charitable Reading Problem

Most policy critics err toward charitable interpretation — assuming good faith and reading gaps as oversights rather than design. This often produces inaccurate critiques. Some gaps are design choices that serve specific interests. Effective critique requires considering both interpretations and asking which better explains the pattern of gaps: random oversight, or consistent exclusion of areas with regulatory or reputational risk?

What Genuine Governance Looks Like

Distinguishing genuine governance from ethics washing requires knowing what to look for on the positive side. Indicators of substantive AI governance: Governance bodies with demonstrated blocking authority — documented cases where a review body required changes or rejected a deployment. Specific, verifiable commitments — commitments specific enough that external parties could assess compliance. External transparency — publication of audit results, incident reports, or testing summaries. Redress mechanisms — accessible processes for affected individuals. Regulatory engagement — participation in regulatory development that does not consistently argue against binding requirements. Governance funding stability — responsible AI teams that survive revenue pressure and leadership changes.

Lesson 4 Quiz

Regulatory capture and ethics washing

"Definitional stretching" as an ethics washing technique involves:

✓ Correct — Correct. Definitional stretching lets companies claim compliance with governance norms by redefining what those norms mean — rather than by changing their practices to meet how those terms are used in technical or regulatory contexts.

Definitional stretching redefines the terms, not the practices. If "human oversight" gets redefined as "a human receives the AI output" rather than "a human can meaningfully review and override the AI decision," existing practices may qualify without any change.

The clearest signal that a governance document is serving a regulatory rather than an accountability function is:

✓ Correct — Correct. Regulatory preemption framing — using a voluntary governance document to argue against binding regulation — is the clearest signal that the document's primary purpose is deflecting accountability rather than creating it.

Regulatory preemption framing is the clearest tell. When a company argues that its voluntary policy makes regulation unnecessary, the policy's function is revealed: it exists to prevent binding accountability, not to create it.

Which of the following is a positive indicator of substantive (non-performative) AI governance?

✓ Correct — Correct. Documented cases of governance bodies blocking or requiring modification of deployments demonstrate that governance has real authority — not just advisory status. This is much harder to fake than published principles or team headcount.

Demonstrated blocking authority — actual cases where governance required changes or rejections — is the strongest indicator. Principles documents, team size, and public discourse are all consistent with performative governance.

Lab 4 — Ethics Washing Diagnosis

Assess whether a corporate AI policy is substantive governance or ethics washing

Your Task

Using the policy you've been analyzing, or a new one, make an evidence-based assessment of where it falls on the spectrum from genuine governance to ethics washing.

Your assessment must cover: (1) Indicators of ethics washing present in the document — with specific quotes. (2) Indicators of substantive governance present — again with specific evidence. (3) Overall assessment: is this primarily accountability-creating or accountability-deflecting? (4) What specific changes would move the policy toward genuine governance?

Name the policy and give me your ethics washing indicators first — with specific quotes. I will push hard on your evidence and on whether the gaps you found are design or oversight. Then we will look at the positive indicators.

AI Lab AssistantEthics Washing Diagnostician

Name the policy. Give me your ethics washing indicators with specific quotes. I will challenge your evidence — is each gap you found design or oversight? Then we assess what genuine governance indicators exist.

Module 7 Test

Reading & Critiquing Real Corporate AI Policies — 15 questions · 80% to pass

Answer all 15 questions. You may retake this test as many times as needed. Score 80% or higher to mark the module complete.

1. The "convergence problem" in corporate AI principles means:

✓ Correct — Correct.

Convergence makes principles documents uninformative as signals — if all companies say the same things, the content tells you nothing distinctive about any company's governance.

2. Corporate AI policies simultaneously serve multiple functions. Which function REQUIRES specific, enforceable commitments?

✓ Correct — Correct. Internal enforcement requires specific commitments employees can follow — aspirational language cannot guide behavior. External legitimacy, signaling, and positioning can all be achieved with vague principles.

Internal enforcement requires specificity — employees need clear obligations to follow. External legitimacy, signaling, and regulatory positioning can all be achieved with aspirational language.

3. A "specificity gap" in an AI policy is:

✓ Correct — Correct. Specificity gaps are aspirational commitments without operationalization — the "how," "who," and "measured by what" are missing.

A specificity gap is when a commitment has no operational content — it says what the company wants to achieve but not how, by whom, or by what measure.

4. The passive voice test identifies accountability gaps by:

✓ Correct — Correct. "Audits will be conducted" in active voice becomes "Team X will conduct audits and report to Y" — which immediately reveals whether that assignment was ever made.

The passive voice test works by active rewriting — "systems will be monitored" → "who monitors, what metrics, reported to whom?" When no answer exists, accountability was never assigned.

5. Third-party AI exclusions from scope are significant because:

✓ Correct — Correct. High-stakes AI systems are often vendor-supplied — credit scoring models, hiring screening tools, diagnostic AI. A policy that excludes third-party AI may exclude exactly the AI with the greatest impact on people.

Third-party exclusions matter because consequential AI — credit, hiring, medical — is often purchased from specialized vendors. Excluding vendor AI can exclude the highest-risk systems from governance scope.

6. An "audit trail" in an AI policy context means:

✓ Correct — Correct. A real audit trail requires external verifiability — if the company can always claim it complied because the commitment was too vague to fail, no audit trail exists.

An audit trail requires external verifiability. Vague commitments that the company always judges itself to have met create no external accountability — only specific commitments create real audit trails.

7. What does cross-company policy comparison uniquely reveal that single-company analysis cannot?

✓ Correct — Correct. Industry-wide gaps are invisible in single-company analysis — they only appear when you compare across companies and find the same omission everywhere.

Collective gaps are the unique insight from comparison — if every company in an industry has the same gap, it signals a structural blind spot rather than individual failure.

8. The hiring AI asymmetry — where companies have more specific policies for AI they sell than AI they use internally — is best explained by:

✓ Correct — Correct. Governance specificity tracks external pressure. Where scrutiny exists (enterprise sales, regulatory risk), governance is more specific. Where scrutiny is absent (internal HR), governance is less specific — regardless of actual risk levels.

External pressure explains the asymmetry best — commercial scrutiny and regulatory liability drive governance specificity more than internal risk assessment does.

9. Judging a company's policy against industry norms is insufficient because:

✓ Correct — Correct. Normative sufficiency requires asking whether the policy addresses actual harms — not whether it matches what competitors do. Universal failures remain failures.

Standard ≠ sufficient. When an entire industry fails to address a harm, that harm doesn't become acceptable. Norm-based evaluation can normalize collective failure.

10. "Ethics washing" in AI governance is best characterized as:

✓ Correct — Correct. Ethics washing is specifically about the gap between documented ethics commitment and operational governance reality — and its function in deflecting legitimate accountability.

Ethics washing is about using the appearance of ethical commitment to deflect real accountability — not about errors, concealment, or AI-assisted writing.

11. "Process theater" as a form of ethics washing involves:

✓ Correct — Correct. Process theater is governance activity without governance authority — committees that meet, assessments that are completed, but no mechanism to actually stop a deployment based on governance findings.

Process theater is governance without authority — the process exists, the meetings happen, but the governance body cannot actually block or require modification of deployments.

12. Regulatory preemption framing as an ethics washing technique involves:

✓ Correct — Correct. Regulatory preemption framing reveals a policy's primary function: it exists to prevent binding accountability, not to create it. The policy is deployed against regulation rather than alongside it.

Regulatory preemption framing uses voluntary policy as an argument against binding regulation — "we already govern ourselves, so regulation is unnecessary." This reveals the policy's anti-accountability function.

13. Scope gaming as an ethics washing technique involves:

✓ Correct — Correct. Strategic scope exclusions can cover consumer-facing, high-visibility AI while leaving consequential back-office AI — credit scoring, HR screening, risk assessment — outside the policy's coverage.

Scope gaming deliberately excludes high-risk systems from accountability while maintaining the appearance of comprehensive governance. The exclusions are strategic, not incidental.

14. When evaluating whether a gap in an AI policy is design or oversight, the most informative approach is to:

✓ Correct — Correct. Random oversights produce random gaps. Strategic design produces consistent gaps — consistently excluding the same categories of high-risk, high-scrutiny, or legally sensitive AI. Pattern analysis distinguishes the two.

Pattern analysis is key — random oversight produces random gaps, while strategic design produces consistent exclusion of areas with regulatory or reputational risk. Look for the pattern, not individual gaps.

15. The strongest positive indicator of substantive AI governance — as opposed to ethics washing — is:

✓ Correct — Correct. Demonstrated blocking authority — actual cases where governance stopped or required modification of a deployment — is the hardest thing to fake and the strongest evidence that governance has real teeth, not just advisory status.

Demonstrated blocking authority is the strongest indicator. Principles documents, team size, and public reporting are all consistent with performative governance. Actual rejections or required modifications are not.