Duck Creek

Governance You Can Trust: Responsible Artificial Intelligence with Duck Creek 

Insurance Software as-a-Service (“SaaS”)

With rising regulatory scrutiny, reputational risk, and the complexity of business decisions, insurers need more than Artificial Intelligence (AI) innovation; they need information on the responsible development and use of AI. Duck Creek Technologies (Duck Creek) understands the concerns with technology innovation and AI. Duck Creek has spent decades building technology specifically for insurers. Duck Creek’s responsible AI commitments are grounded in global best practices for SaaS providers and are developed with the insurance industry in mind.

Our Principles for Responsible AI

Duck Creek is aware of the unique risks and responsibilities our customers face when adopting emerging technologies. That is why Duck Creek’s approach to AI is founded on principles of governance, transparency, and trust at its core.

Duck Creek’s responsible AI approach has eight core principles tailored to protect our customers and their data, along with being relevant and useful for the insurance industry.

Valid and Reliable

Duck Creek SaaS solutions perform consistently across insurance scenarios, minimizing risks and providing reliable outcomes for high-importance functions such as claims and underwriting.

Safety

AI systems are designed with safeguards to minimize unintended outcomes and promote responsible use.

Secure and Resilient

AI systems are designed to protect against malicious attacks and are able to recover from system failures.

Accountable and Transparent

Establish protocols to remedy adverse unintended outcomes, and to ensure that the data processing of AI systems is understandable to Duck Creek customers.

Explainable and Interpretable

AI systems are explainable in a way that users can understand how and why certain outcomes were reached. 

Privacy

AI systems are developed with user privacy and the protection of sensitive customer data in mind. 

Fairness

AI models built by Duck Creek are designed to minimize biases and promote fair treatment for Duck Creek customers.

Comprehensive

AI SaaS solutions are designed to be usable and advantageous for a diverse range of Duck Creek customers, regardless of their size or technical capabilities.

insurance agents processing claims using digital payment solutions

Governance and Oversight

Duck Creek knows that responsible AI development takes more than technology; it takes leadership, expertise, and oversight. That’s why we have assembled a cross-functional AI Innovation & Governance Council to guide our strategy, support ethical use, and deliver real value to Duck Creek customers.

The Duck Creek AI Innovation & Governance Council defines and enforces clear roles and responsibilities for AI initiatives.  The Council:

  • Conducts risk and impact assessments for new and existing AI use cases.
  • Stays abreast of evolving regulatory, legal, and ethical standards applicable to Duck Creek as a SaaS provider in the IT services industry.
  • Reviews sensitive use cases, especially those involving underwriting, claims, and the processing of personal data.

Enabling Responsible AI for Duck Creek Customers

Duck Creek knows that AI must work within the realities of our customers’ business and industry—regulated, complex, and constantly evolving. That is why everything we build allows for responsible AI development to be implemented from the ground up. This includes practical integration, configurability, and verifiable controls within an Insurtech environment.

Duck Creek Intelligence aims to enable Duck Creek customers to:

Easily incorporate AI into their business processes.

Maintain “human in the loop” capability by monitoring, reviewing, and validating outputs.

Train and fine tune models useful for each Duck Creek customer’s unique business and compliance needs.

Compliance and Industry Engagement – Worldwide

As a global SaaS company focused on the insurance industry, Duck Creek is prepared to assist its customers in complying with their AI-specific regulatory requirements. 

Duck Creek maintains robust security and compliance standards by monitoring global regulations that are applicable to providing SaaS solutions in the IT services industry. Duck Creek customers can be comfortable that Duck Creek is an established and responsible SaaS provider.

Security and Customer Data Protection

Duck Creek recognizes that safeguarding customer data is fundamental to responsible AI and the development of innovative insurance technology solutions. The Duck Creek approach is built on industry-standard security practices and a commitment to protecting customer information at every stage of the AI lifecycle.

Tenant and Data Isolation

Duck Creek’s SaaS architecture follows strict tenant isolation. This means Duck Creek customer provided data is logically and physically separated from other Duck Creek customer data.

Zero Trust Security Model

We employ a zero-trust framework, verifying users, devices, and connections before granting access to Duck Creek managed systems or customer data. 

Encryption

Customer data—whether at rest or in transit—is protected using strong encryption protocols.

Role-Based Access Controls (RBAC)

Access to Duck Creek customer provided data is managed using RBAC, so only authorized personnel can view data.

Privacy by Design

Duck Creek SaaS solutions are developed with data privacy and data security as foundational principles. Data collection and use are limited to what is necessary, and our processes are regularly assessed to address emerging risks and regulatory changes applicable to Duck Creek.

Duck Creek Customer – Frequently Asked Questions

Why should Duck Creek customers adopt AI?

  • Enhance decision making
  • Predict and reduce churn
  • Automate workflows to improve efficiency
  • Personalize customer experience
  • Maintain control and flexibility
  • Promote responsible innovation
  • Protect customer data
  • Stay ahead of regulations
  • Own your data
  • Industry expertise built in

Who is responsible for AI oversight at Duck Creek?

Oversight is managed by the AI Innovation & Governance Council, a group made up of leaders across human resources, security, technology, compliance, and legal. This council reviews AI initiatives for compliance with our responsible AI approach.

Do Duck Creek customers retain ownership of customer data in production even when Duck Creek uses AI?

Yes, Duck Creek customer data in production is owned by the customer.

Can Duck Creek customers control when AI features are used as part of Duck Creek’s SaaS offering?

Yes. Currently, Duck Creek AI products allow each customer to configure, manage, and monitor their AI workflows. Duck Creek customers control when SaaS AI functionality is available for use in their daily workflows.

How does Duck Creek keep up with AI regulations applicable to Duck Creek ?

Compliance with applicable laws and regulatory obligations are a priority for Duck Creek. This is reflected in the development of Duck Creek internal policies, processes, and the responsible AI approach. The Duck Creek responsible AI approach aims to provide transparency to Duck Creek customers and requires that Duck Creek implement internal controls that provide guidance for Duck Creek’s ethical and unbiased development of AI products.

AI at Duck Creek-Learn More

Duck Creek’s AI capabilities are built with strong ethical standards, transparency, and domain expertise. Our responsible approach to AI provides Duck Creek customers with intelligent automation that is safe, explainable, and under the customer’s control.

For more information, AI Governance Statement.

Please email Duck Creek Technologies at ai@duckcreek.com if you have any AI governance-related questions.

X