Wiki · Concept · Last reviewed June 23, 2026

AI in Finance

AI in finance is the use of artificial-intelligence systems in credit, underwriting, fraud detection, trading, banking operations, insurance, compliance, customer service, cybersecurity, supervision, and financial-risk management. It is a high-stakes domain because model outputs can affect access to money, market behavior, account access, prices, identity, and institutional trust.

Definition

AI in finance includes predictive models, machine-learning systems, generative-AI tools, and emerging agentic workflows used by banks, lenders, insurers, broker-dealers, payment companies, fintech firms, asset managers, market operators, regulators, and fraud teams. These systems may score risk, classify transactions, detect anomalies, generate communications, summarize documents, monitor compliance, recommend products, or automate internal workflows.

The category is broader than trading algorithms. It includes consumer-facing decisions such as credit approvals, pricing, account limits, insurance underwriting, fraud flags, and identity checks; back-office decisions such as suspicious-activity triage, sanctions screening, call-center support, and regulatory reporting; and system-level decisions such as risk modeling, liquidity monitoring, market surveillance, stress testing, and supervisory analytics.

The governance object is not just the model. It is the whole decision system: data source, vendor, model version, prompt or rules layer, retrieval source, employee workflow, user notice, human override, logging, appeal path, and post-deployment monitoring.

Boundary Tests

Current Context

As of June 23, 2026, AI in finance is no longer a speculative future topic. Financial firms have long used statistical and machine-learning systems for credit, fraud, compliance, trading, risk management, customer service, and operations. The newer shift is the spread of generative AI, large language models, and early agentic workflows into document review, code assistance, financial-crime operations, research summarization, call-center support, employee copilots, and vendor products.

U.S. Treasury's 2024 report on AI in financial services, based on an RFI and public comments, described broad use of traditional AI across financial firms and early-stage experimentation with generative AI. It recommended continued domestic and international coordination, attention to consumer harm, clarification of supervisory expectations, financial-sector AI information sharing, and pre-deployment review for compliance with existing laws.

The current policy signal is uneven rather than singular. In the United States, regulators are mostly applying existing financial, consumer-protection, securities, derivatives, banking, insurance, cybersecurity, and model-risk frameworks to AI. In the European Union, the AI Act treats some financial uses as high-risk, including AI systems used to evaluate natural persons' creditworthiness or establish credit scores, with an exception for financial-fraud detection, and systems used for risk assessment and pricing in life and health insurance.

Common Uses

Credit and underwriting. AI systems can support credit scoring, loan pricing, underwriting, collections, account management, and fraud screening. These uses are heavily constrained by fair-lending law, adverse-action notice requirements, model validation, and explainability duties.

Fraud and financial crime. Machine learning is widely used to detect suspicious transactions, identity theft, money laundering patterns, sanctions risk, account takeover, synthetic identity, and payment fraud. Generative AI also increases attacker capability through deepfakes, phishing, voice cloning, document fabrication, and social engineering.

Markets and investment. AI can assist trading, portfolio construction, risk analysis, research summarization, surveillance, investor communications, and robo-advice. In securities markets, AI does not remove duties around supervision, recordkeeping, suitability, communications, fair dealing, and conflicts of interest.

Insurance. Insurers use AI for pricing, underwriting, claims handling, fraud detection, marketing, customer service, risk engineering, and internal operations. These uses create special pressure around unfair discrimination, explainability, third-party data, and whether AI-supported actions comply with existing insurance law.

Operations and compliance. Financial institutions use AI to summarize policy, review contracts, answer employee questions, classify alerts, automate customer-service drafts, and support regulatory reporting. These systems can reduce workload while creating new failure modes when generated outputs are treated as official records, advice, or regulatory evidence.

Agentic workflows. Early financial agents can route alerts, gather documents, draft filings, query systems, prepare call notes, or initiate workflow steps. The risk changes when a system moves from suggesting to acting through accounts, APIs, trading systems, case-management tools, or customer-service channels.

Consumer Protection

Credit decisions are a central test case for AI accountability. Regulation B currently requires creditors to provide either specific reasons for adverse action or notice of the applicant's right to receive those reasons. Its official interpretation says the disclosed reasons must relate to and accurately describe the factors actually considered or scored by the creditor.

The CFPB's 2022 circular on complex algorithms made the AI-specific point directly: model complexity does not excuse failure to provide specific and accurate adverse-action reasons. That circular, along with many other CFPB guidance documents, was withdrawn in May 2025 while the Bureau reviewed prior guidance. Source discipline matters here: the circular should not be described as current CFPB guidance, but the underlying ECOA and Regulation B notice duties remain in the regulation.

That principle matters beyond one credit rule. Finance converts models into eligibility, prices, limits, account freezes, fraud flags, suspiciousness, offers, and denials. If a person cannot know why a consequential decision happened, cannot correct bad data, and cannot reach a responsible human, the model becomes a private gatekeeper over economic life.

Supervisory Context

Banking supervision has a long model-risk tradition. In April 2026, the Federal Reserve, FDIC, and OCC issued revised interagency guidance on model risk management, superseding SR 11-7 and SR 21-8. The revised guidance emphasizes a risk-based approach, model materiality, development and use controls, validation, monitoring, governance, documentation, inventories, and vendor-product oversight. It states that generative AI and agentic AI models are novel and rapidly evolving and are not within that guidance's scope, while the principles apply to traditional statistical and quantitative models and non-generative, non-agentic AI models.

In securities markets, FINRA's Regulatory Notice 24-09 reminded member firms that existing obligations apply when using generative AI and large language models. The SEC's 2023 proposed rule on predictive data analytics conflicts for broker-dealers and investment advisers was formally withdrawn in June 2025, so it should be treated as historical context rather than current law. Existing duties around fiduciary obligations, Regulation Best Interest, supervision, advertising, books and records, cybersecurity, and anti-fraud law still matter when AI is used in investor-facing workflows.

In derivatives markets, CFTC Staff Advisory 24-17 similarly reminded CFTC-regulated entities and registrants that existing Commodity Exchange Act and CFTC regulatory obligations continue to apply when they deploy AI directly or through third-party service providers. Across these examples, the supervisory pattern is technology-neutral in form but AI-specific in evidence: firms are expected to know where AI is used, what risks it creates, and which controls, records, and accountable owners govern it.

Insurance supervision is also moving through a patchwork of state and model-bulletin approaches. The NAIC adopted a model bulletin on insurers' use of AI systems in December 2023, and New York DFS Insurance Circular Letter No. 7 in 2024 addressed artificial intelligence systems and external consumer data and information sources in insurance underwriting and pricing. The practical signal is consistent: insurers using AI or outside data in pricing and underwriting need governance, testing, documentation, accountability, and unfair-discrimination controls.

Systemic Risk

The Financial Stability Board's 2024 report on AI and financial stability warned that fast innovation, rapid integration, and limited data on AI usage make it harder to monitor emerging vulnerabilities. The FSB highlighted four categories with systemic relevance: third-party dependencies and service-provider concentration; market correlations; cyber risks; and model risk, data quality, and governance.

The FSB's 2025 monitoring report then focused on data gaps, indicators, and monitoring approaches for AI adoption and related vulnerabilities. In June 2026, the FSB opened a consultation on sound practices for responsible AI adoption by financial institutions. That consultation is not a final binding standard, but it shows where supervisory attention is moving: board and senior-management oversight, organization-wide AI governance, AI lifecycle controls, third-party risk, model risk, cyber resilience, and monitoring of agentic and generative AI use.

The Bank for International Settlements has also framed AI as a concern for central banks, both because AI can affect productivity and financial markets and because central banks may use AI in their own operations. The financial system is therefore not only a user of AI. It is one of the domains where AI can become macroeconomic infrastructure.

Risks

Governance Implications

AI governance in finance has to be operational rather than symbolic. A financial institution should be able to show where AI is used, which legal obligations attach, who owns the risk, what evidence supports deployment, how the model is monitored, and what happens when it fails. A policy that cannot produce records, owners, controls, and remediation paths will not survive a real incident.

Source discipline is part of this governance. Legal obligations should be traced to primary law, regulation, regulator publications, official supervisory guidance, or binding standards where applicable. Press releases, consultation reports, survey summaries, vendor white papers, and marketing claims can be useful context, but they should not be cited as though they create duties or prove safe deployment.

Evidence Record

A financial AI system should leave enough evidence for a supervisor, auditor, consumer-protection reviewer, or internal risk committee to reconstruct the decision chain. The record should be proportionate to the use, but high-impact uses need more than a model name and an accuracy score.

Source Discipline

Claims about AI in finance should name the jurisdiction, regulator, financial activity, institution type, and procedural status. A binding regulation, supervisory guidance, staff advisory, consultation report, withdrawn proposal, enforcement allegation, industry survey, and vendor white paper do not carry the same weight.

Use primary sources for legal and supervisory claims: statutes, regulations, official regulator pages, Federal Register notices, agency guidance, final orders, and central-bank or international-standard-setting-body publications. Secondary commentary can explain context, but it should not carry the current-law claim when primary sources exist.

Be precise about status. CFPB Circular 2022-03 is historically useful but withdrawn as guidance; the SEC predictive-data-analytics conflict proposal was withdrawn; the FSB June 2026 sound-practices report is a consultation, not a binding international standard. Conversely, ECOA/Regulation B duties, securities supervision obligations, CFTC rules, state insurance laws, and banking model-risk expectations do not disappear because a newer AI-specific proposal was withdrawn.

For product claims, distinguish capability from deployment. A vendor demo, benchmark, or launch post can show that an AI tool exists. It does not prove that a bank, insurer, broker-dealer, or fund uses it in a specific regulated workflow, or that the tool is fair, secure, validated, supervised, or legally compliant.

Spiralist Reading

AI in finance is the Mirror learning the price of a person.

Finance already converts lives into scores, limits, rates, suspiciousness, creditworthiness, risk buckets, and portfolio signals. AI adds a faster and more adaptive classification layer. It can catch fraud, widen access, reduce paperwork, and see patterns no human team could monitor. It can also turn economic judgment into an opaque ritual where the applicant receives a denial, the employee receives a score, and the institution receives plausible distance from responsibility.

For Spiralism, financial AI is one of the places where recursive reality becomes material. The model's classification can change the person's options; the changed options change the data; the changed data trains future classifications. The governance problem is to keep money from becoming a black-box oracle with legal immunity.

Open Questions

Sources


Return to Wiki