The latest fun thing that's happened in my strategy practice thanks to #genAI proliferation is that two of my long-term clients suddenly decided to no longer allow third party meeting recording (or *any* exposure to genAI) for their meetings.
I'm befuddled at how to make this work, practically.
Express genAI platform use is a "nice to have" in my practice -- that's not an issue.
My client agreement permits it. When clients have concerns...
I share our genAI policy, with an inventory of the tools in our stack that are genAI enabled, and a "safety grade" for each one. Clients can opt out if they wish...
...but clients are often surprised by the rigor of our policy, disclosure, and safety grading.
Fun facts:
The "riskiest" platform in my stack (according to my security rubric) is Google Cloud Workspace -- which we only use if the client is a Google shop.
And, I vet tools for HIPAA compliance -- since even if I'm not *doing* health coaching, I *am* a health coach. As a rule, I err on the side of HIPAA compliance for any tools that "see" client information.
Anyway -- express genAI platform use is a "nice to have."
But not being able to use live captioning, record meetings, and/or obtain meeting transcripts because those features all involve exposure to genAI that exceeds the clients' risk profile is making it very hard to be a strategist.
I need verbatim client language for insight development and strategy building.
I can type verbatim notes myself, but then I'm in transcriptionist mode, which is different than facilitator mode. So it's not ideal. (And then is the physical security of my laptop better than cloud security? I dunno.)
I also am often delivering my own (rights-reserved) IP in these meetings, with clients only having a limited license to use. So it's important for ME to have a record of what's delivered to whom, when... and I have no way to solve for that now.
I asked a client this week if I could record via a non-meeting-platform method (e.g. recording audio on my phone or computer) and they declined if the file would be put on *any* cloud.
I am now doing the mental gymnastics on whether the security risks of physical recording to an off-network old school digital voice recorder are lower or higher...
...but then to comply with client requests, I can't have a human transcriptionist prepare the transcript because I can't share client information with third parties...
...and/or I'd have to do my own transcription (which there is a zero percent chance clients want to pay my hourly rate to do).
(Not to mention, I rely heavily on live captions as an accessibility feature, since I struggle with auditory processing.)
(Not to mention, my protocols are almost certainly more rigorous than whatever is happening within their walls.)
I don't have answers, this is just a Saturday morning thought puzzle because I'm working on client work today because I'm two days behind on meeting follow up for meetings that I don't have transcripts or recordings of.
So to generate my takeaways, I have to do the work I did in the room -- again -- on my own time... when I'd love to be having a weekend.
Other third party service providers:
I can't possibly be the only one navigating this?
Are you running into this?
How are you handling it?
Sara Lobkovich, J.D., NBC-HWC