IBM, May 2026: only 18% of Canadian organizations have AI governance in place.

The IBM Institute for Business Value quantified the Canadian AI governance gap in May 2026. Three numbers from the study carry a board conversation.

18%

of Canadian organizations have AI governance systems in place

63%

of Canadian executives say governance gaps make it harder to deploy AI at scale

$144M

annual cost of AI irregularities to large Canadian enterprises (aggregate)

IBM INSTITUTE FOR BUSINESS VALUE · CANADIAN AI GOVERNANCE STUDY · MAY 2026
Three statistics from the IBM Institute for Business Value Canadian AI governance study, May 2026: 18 percent of Canadian organizations have AI governance systems in place; 63 percent of Canadian executives say governance gaps make it harder to deploy AI at scale; 144 million dollars in annual costs of AI irregularities to large Canadian enterprises in aggregate.

The IBM Institute for Business Value released its May 2026 study on AI adoption and governance in Canada. The headline number is the gap: only 18% of Canadian organizations have systems in place to govern AI across everyday operations. The remaining 82% have a policy document and an assumption.

The cost of the gap was quantified directly in the study:

“AI irregularities cost large Canadian enterprises an estimated $144 million per year, and half of those losses are governance failures, not technology failures.”
IBM Institute for Business Value, May 2026

A parallel number sets up the board conversation: 63% of Canadian executives say governance gaps already make it harder to deploy AI at scale. The friction is internal. Legal, compliance, and risk push back against AI initiatives because there is no evidence the policy is being enforced.

IBM’s September 2025 shadow-AI study points the same direction: 79% of full-time office workers say they use AI at work, and only 25% rely on enterprise-grade tools. The rest work in personal apps or a mix of personal and employer tools, with no audit trail behind any of it. The same study puts the added cost of shadow AI at nearly CA$308,000 per data breach.

The 18% number is the one that ends up in a CISO’s board deck. If your organization is in the 82%, the conversation has already started. The question is whether you can produce a structured, exportable record when someone asks for one. Mandate exists to make that record the default.

Want the numbers in a
one-page board summary?

Ask for the IBM and TELUS Digital references, with the figures your board needs already pulled out.

contact@mandateco.ca  ·  1-905-630-1908