AI 扩展计划 / Playbooks
AI Customer Vulnerability / Accessibility / Inclusive AI Playbook
核心判断:
775 行AI_CUSTOMER_VULNERABILITY_ACCESSIBILITY_INCLUSIVE_AI_PLAYBOOK.md
AI Customer Vulnerability / Accessibility / Inclusive AI Architecture Playbook
面向对象: Advanced AI PM / Senior BA / AI Product Architect / Customer Experience Architect / Enterprise Architect / Accessibility Lead / Conduct Risk / Compliance / Complaint Operations / Model Risk / Fraud-Scam Risk / Frontline Operations / Financial Retail Business Owner。 核心问题: 如何把 vulnerable-customer recognition、accessible AI channel、dignified intervention、human handoff、agent-assist guardrails、complaints linkage 和 operating controls 设计成可落地、可审计、可持续改进的金融零售 AI 架构? 学习目标: 形成一套 action-oriented playbook, 能支持高管 framing、taxonomy、decision gates、RACI、roadmap、evidence pack、QA/eval、metrics、anti-patterns、tabletop 和 portfolio artifacts。 定位: 本文不是基础 customer journey 或 accessibility 入门, 而是训练你把 vulnerable-customer treatment、inclusive UX、AI agent-assist、human handoff、conduct controls、model risk 和 complaint evidence 做成可执行的产品架构与运营体系。
核心判断:
Vulnerability-aware AI should not label customers. It should detect support needs, reduce harm, preserve autonomy, make channels accessible, escalate safely, and prove fair treatment.
0. Disclaimer
本文是学习、架构训练和作品集材料, 不构成法律意见、监管意见、合规结论、ADA/WCAG 合规认证、消费者保护意见、医疗判断、心理健康判断、能力评估、信贷/保险/投资建议或客户通知建议。
正式项目必须由 Legal、Compliance、Accessibility、Customer Experience、Conduct Risk、Privacy、Model Risk、Operational Risk、Fraud/Scam Risk、Complaint Operations、Frontline Operations、Information Security、Data Governance、Product Owner、Internal Audit 和必要的外部顾问共同判断。
本文提供的是 decision support architecture。它避免给出“客户一定属于脆弱群体”“必须阻断交易”“必然违反监管”“已经满足无障碍合规”等结论。
1. Executive Framing
金融零售 AI 的客户伤害通常不是单一模型错误造成的。它来自多个控制面没有连接:
- AI interface 无法被残障客户使用。
- Chatbot 让客户在 hardship、bereavement、fraud 或 complaint 场景反复解释。
- 模型把客户状态贴成永久标签。
- Agent-assist 给员工过度自信的脚本。
- Scam warning 阻断了客户但没有解释、复核或投诉路径。
- Plain-language 改写隐藏了费用、期限、风险或客户权利。
- Complaint 没有链接到 AI run、final message、handoff 和 remediation。
高管需要的不是“AI 关怀功能”。高管需要回答:
Are vulnerable-customer situations recognized early enough?
Are interventions proportionate and explainable?
Can customers still choose, appeal, complain and switch channels?
Are AI channels accessible by design?
Can employees rely on guardrailed assistance without diagnosing customers?
Can the institution prove fair treatment later?
Executive one-liner:
Inclusive AI is a customer-outcome control plane, not a chatbot tone setting.
2. Source Anchors
| Anchor | Official link | 本文使用方式 |
|---|---|---|
| WCAG 2.2 | https://www.w3.org/TR/WCAG22/ | 作为 AI digital channel 的 accessibility baseline, 覆盖 dynamic content、forms、chat、voice-adjacent UI、documents、errors、focus 和 session behavior |
| DOJ ADA web guidance | https://www.ada.gov/resources/web-guidance/ | 用 ADA web guidance 的治理语言组织 web/mobile/self-service accessibility expectations;具体适用性由法律/无障碍团队判断 |
| CFPB compliance circulars landing page | https://www.consumerfinance.gov/compliance/circulars/ | 用 consumer financial protection 和 conduct-risk lens 连接 hardship、servicing、complaints、fees、misleading communications 和 vulnerable treatment;具体 circular 适用性需逐项判断 |
| FTC advertising and marketing guidance | https://www.ftc.gov/business-guidance/advertising-marketing | 约束 AI-generated marketing、sales scripts、claims、dark patterns、hardship offers 和客户沟通的 truthfulness / substantiation |
| NIST AI RMF | https://www.nist.gov/itl/ai-risk-management-framework | 用 Govern / Map / Measure / Manage 组织 risk taxonomy、impact assessment、control design、monitoring 和 continuous improvement |
| ISO/IEC 42001 overview | https://www.iso.org/standard/42001 | 用 AI management system、roles、operation planning、performance evaluation、internal audit 和 improvement 建立 operating model |
Source nuance:
- WCAG/ADA anchor 不是只给前端团队使用, 它影响 AI journey、content lifecycle、vendor requirement、QA、complaint RCA 和 release governance。
- CFPB/FTC anchors 不是本文的法律结论, 而是训练金融零售 AI 的 consumer protection and conduct-risk language。
- NIST AI RMF 和 ISO/IEC 42001 是 governance scaffolding, 不是单个模型评估表。
3. Thesis and Operating Principles
Thesis:
Inclusive AI architecture should make support easier to receive,
not make customers easier to label.
Why it matters: vulnerable-customer treatment sits at the intersection of accessibility, customer experience, privacy, conduct risk, model risk, fraud/scam controls, complaints and frontline operations. If these controls are separate, AI will either miss high-harm situations or over-intervene in ways that reduce dignity and autonomy.
| Principle | Practical meaning |
|---|---|
| Situation over label | 系统识别 vulnerable situation / support need, 不给客户永久贴 vulnerability 标签 |
| Dignity by design | 话术、字段、handoff 和员工提示避免羞辱、诊断、指责和过度暴露 |
| Least intrusive support | 低风险先提供选择和解释, 高风险才使用 safe pause 或强制升级 |
| Accessibility as release gate | AI channel 未通过 accessibility 和 assistive technology 测试, 不进入高风险生产 |
| Autonomy with protection | 客户保留选择、复核、投诉、替代渠道和解释权 |
| Purpose-bound data | accommodation、hardship、bereavement、scam、health-like signals 只为支持和风险控制使用 |
| Human accountability | AI assist 不能替代 trained human judgment, 尤其在高伤害和 regulated workflows |
| Complaint learning loop | 投诉、QA、accessibility defect 和 remediation 必须反馈到 model/prompt/product controls |
| Evidence before narrative | 每次升级、暂停、改写、handoff 和最终客户沟通都要可重放 |
4. Vulnerability Taxonomy for AI Product Architecture
Taxonomy 目标是 routing and support, not identity classification。
| Domain | Situation examples | Primary risk | Product response |
|---|---|---|---|
| Accessibility / disability accommodation | screen reader、large print、relay call、caption、paper format、motor impairment path | 无法等效访问金融服务 | WCAG baseline, alternative format, context-preserving channel switch |
| Cognitive load / comprehension | customer says cannot understand, repeated errors, complex fee/credit/fraud explanation | 客户误解费用、期限、权利或风险 | plain-language, chunking, recap, human option |
| Financial hardship | job loss, medical expense, overdraft cycle, delinquency distress, collections pressure | unaffordable plan, unfair fee, complaint escalation | hardship pathway, sales suppression, specialist review |
| Scam / coercion / fraud pressure | unusual transfer, coached answers, remote access, urgent third-party pressure | irreversible financial loss | safe pause, scam warning, fraud specialist, documented review |
| Bereavement / life event | death notification, estate handling, beneficiary claim, funeral expense | emotional burden, document friction, service failure | compassionate journey, document reuse, sensitive note control |
| Elder risk / diminished capacity concern | self-disclosed confusion, unusual behavior, trusted contact concern, branch observation | exploitation, unfair restriction, age discrimination | behavior-based concern, supervisor/specialist review, no age-only decision |
| Language / literacy | translation request, non-native language, low literacy, terminology confusion | wrong consent, misunderstanding, complaint | approved multilingual/plain-language content, interpreter/channel support |
| Complaint / distress | customer says unfair, regulator threat, distress language, repeated unresolved issue | conduct failure, reputational harm, remediation gap | complaint capture, priority routing, RCA and CAPA |
| Domestic abuse / coercive control | customer hints someone monitors account or communication | privacy/safety risk, account misuse | safe contact preference, specialist policy path, minimal record exposure |
Controlled vocabulary:
| Use | Avoid |
|---|---|
| support_need_type | vulnerable_person_label |
| customer-stated fact | model diagnosis |
| elevated_harm_risk | incompetent customer |
| requested_accommodation | disability assumption |
| safe_pause_reason | suspicious elderly customer |
| handoff_reason | problem customer |
5. Reference Architecture
AI customer interaction
-> channel/accessibility baseline
-> preference and accommodation service
-> consent / purpose / data minimization gate
-> situation signal detector
-> harm-risk tiering
-> inclusive UX orchestrator
-> agent-assist guardrail service
-> specialist handoff / safe pause / complaint route
-> final-channel capture
-> evidence ledger
-> QA, model risk, accessibility and conduct monitoring
-> CAPA and release governance
Architecture capabilities:
| Capability | What it must do |
|---|---|
| Preference service | 保存客户明确选择的 language、format、channel、accessibility need、safe contact preference |
| Signal detector | 识别 support need, 输出 reason、confidence、uncertainty, 不输出 diagnosis |
| Risk tiering | 把 action 强度绑定到 customer harm, not conversion or operational convenience |
| UX orchestrator | plain-language、step-by-step、channel switch、review before submit、timeout extension |
| Agent-assist | 给员工解释、脚本、handoff reason、prohibited actions, 保留 human accountability |
| Specialist routing | hardship、bereavement、fraud/scam、accessibility、complaint、elder-risk queue |
| Evidence ledger | 记录 AI run、source、prompt、output、human decision、final message、complaint/remediation |
| Monitoring | 以 customer outcome、accessibility、fairness、complaint 和 evidence completeness 监控 |
6. Decision Gates
Gate 0: Use Case Eligibility
| Question | Pass condition |
|---|---|
| Is this customer-facing or employee-facing but customer-impacting? | Customer impact documented |
| Could AI influence fees, access, fraud hold, hardship, complaint, credit, insurance, investment or collections? | High-risk workflow review |
| Does the use case involve vulnerable-customer signals? | Support taxonomy and data purpose defined |
| Is the channel accessible? | WCAG/accessibility test evidence exists |
Gate 1: Data Purpose and Consent
| Question | Pass condition |
|---|---|
| Which support need is being detected? | Named support_need_type |
| Which data is necessary? | Minimum fields and retention defined |
| Is the data customer-stated, preference-based, inferred or employee-observed? | Source recorded |
| Can it be used for training, QA, marketing or decisioning? | Purpose matrix approved |
| Can customer review or update preference? | Preference management path exists |
Gate 2: Model Behavior
| Question | Pass condition |
|---|---|
| Does model output avoid labels and diagnosis? | Red-team pass |
| Does it show uncertainty? | Prompt/eval evidence |
| Does it preserve official financial meaning in plain-language rewrites? | Content QA |
| Does it avoid unsupported promises? | Claims guardrail pass |
| Does it route high-harm scenarios to humans? | Scenario eval pass |
Gate 3: Intervention Proportionality
| Situation | Allowed action |
|---|---|
| Low-confidence confusion | soft support offer, explain option, channel choice |
| Customer requests accessibility support | apply preference, ask whether to save, provide equivalent access |
| Hardship/bereavement signal | specialist offer, sales suppression, document simplification |
| Scam/coercion high risk | safe pause, warning, fraud specialist review |
| Complaint/distress | complaint capture, priority routing, remediation screen |
Gate 4: Human Handoff
| Question | Pass condition |
|---|---|
| Does handoff packet reduce repeat storytelling? | Customer-stated facts and case context included |
| Are sensitive details minimized? | Note hygiene review |
| Does specialist have authority to help? | Queue and SLA defined |
| Is final customer communication captured? | channel_event_id exists |
Gate 5: Complaint and Remediation
| Question | Pass condition |
|---|---|
| Can a complaint link to AI trace and final message? | complaint schema includes IDs |
| Is remediation decision captured? | outcome and reason code |
| Is root cause tied to product/model/process/vendor? | RCA taxonomy |
| Does CAPA feed release backlog? | CAPA owner and closure evidence |
7. Required Artifacts
| Artifact | What it proves |
|---|---|
| Vulnerability/support taxonomy | 你能用 support need 管理风险, 而不是给客户贴标签 |
| Accessibility release checklist | AI channel 有 WCAG/accessibility 和 assistive technology evidence |
| Data purpose matrix | 你知道哪些 sensitive signals 可用于服务、QA、training、marketing 或 decisioning |
| Signal and threshold spec | 你能解释为什么某类信号触发 soft offer、handoff 或 safe pause |
| Inclusive content standard | Plain-language 不改变金融含义, 不隐藏费用/期限/权利 |
| Agent-assist guardrail pack | 员工提示不诊断、不承诺、不施压, 有 uncertainty 和 prohibited actions |
| Handoff packet schema | 客户不用重复讲述, 员工看到必要上下文 |
| Complaint linkage schema | complaint 可追溯到 AI run、final content、handoff、remediation |
| QA/eval scenario suite | 覆盖 hardship、scam、bereavement、accessibility、language、elder-risk、complaint |
| Metrics dashboard | 平衡 access、autonomy、protection、conduct、evidence 和 operations |
| CAPA register | 缺陷变成产品、模型、内容、培训、供应商改进 |
Product / Architecture Decision Matrix
| Decision | Senior PM / Architect question | Decision record evidence |
|---|---|---|
| Signal source | 是否优先使用 customer-stated facts and preferences, 而不是推断身份? | signal spec, data purpose matrix |
| Intervention strength | soft offer、handoff、safe pause 或 restriction 的阈值是否与 harm risk 匹配? | threshold memo, scenario eval |
| Accessibility baseline | AI journey 是否在设计、构建、测试、发布和投诉中都有 accessibility control? | release checklist, QA transcript |
| Agent-assist scope | AI 是 draft/recommend, 还是实质影响客户处理? | use case tiering, human accountability log |
| Data retention | support context 是否有单独 access/retention rule? | retention config, access review |
| Complaint learning | 投诉是否进入 model/product/control improvement? | complaint RCA and CAPA link |
Control Matrix
| Control objective | Control activity | Evidence |
|---|---|---|
| Preserve accessibility | WCAG/manual assistive technology QA before release | test report, defect closure |
| Avoid customer labeling | Controlled vocabulary and data schema review | data dictionary, QA note audit |
| Preserve autonomy | Review/appeal/complaint path for restrictive interventions | final message, review decision |
| Minimize data | Purpose-bound sensitive signal storage | privacy approval, retention rule |
| Control agent-assist | Prohibited outputs and human decision logging | eval report, reason codes |
| Link complaints | Complaint schema includes AI/content/channel IDs | complaint record, RCA, CAPA |
| Monitor outcomes | Dashboard balances access, protection, autonomy and conduct | KRI dashboard, committee minutes |
8. Signal Design and Data Minimization
Signal specification template:
| Field | Design rule |
|---|---|
| signal_name | Clear business name, e.g. customer_states_possible_scam_pressure |
| support_need_type | scam, hardship, bereavement, accessibility, language, complaint, comprehension |
| source_type | customer-stated, customer preference, interaction friction, account event, employee observation |
| data_fields | minimum fields needed |
| prohibited_features | age-only, disability inference, medical diagnosis, protected-class proxy where not approved |
| allowed_actions | soft offer, content adaptation, handoff, safe pause, complaint route |
| disallowed_actions | pricing, cross-sell, adverse decision, hidden friction unless separately approved |
| confidence_use | confidence guides review, not customer labeling |
| human_review | required when action may restrict customer or affect regulated workflow |
| retention | case-specific retention and deletion review |
Purpose matrix:
| Data type | Service use | QA use | Training use | Marketing use |
|---|---|---|---|---|
| Customer-selected large print | Yes | Aggregated defect trend | Only with governance-approved de-identification | No |
| Customer states bereavement | Yes, for case handling | Limited, controlled QA | No by default | No |
| Scam concern note | Yes, fraud/scam handling | Fraud QA under policy | Controlled, de-identified if approved | No |
| Chat confusion signal | Soft support | Aggregated UX improvement | Possible after governance review | No direct targeting |
| Accessibility complaint | Remediation and defect fix | Accessibility QA | Aggregated trend only | No |
9. Inclusive UX Standards
Non-negotiable interaction rules:
- Provide a clear non-AI route for high-stakes journeys。
- Let customers switch channel without losing context。
- Make generated content compatible with screen readers and keyboard navigation。
- Avoid timeouts during hardship, bereavement, fraud dispute and document upload journeys。
- Show fees, dates, consequences, deadlines and rights explicitly。
- Use plain language without changing approved legal/financial meaning。
- Confirm critical choices before irreversible action。
- Provide complaint, appeal or review routes when AI contributes to friction or restriction。
AI interface checks:
| Area | Check |
|---|---|
| Chat | focus order, aria-live behavior, transcript export, keyboard exit, no modal trap |
| Voice | repeat, slower pace, interruption handling, representative handoff, relay compatibility |
| Forms | error prevention, clear labels, document upload recovery, save-and-resume |
| Notifications | accessible format, language preference, no panic-inducing copy |
| Documents | tagged PDF or accessible HTML alternative, large print, plain-language summary |
| Handoff | case ID, context preservation, accommodation carried forward |
Plain-language pattern:
1. What happened.
2. What it means for you.
3. What options you have.
4. What will happen next.
5. How to get human help or complain.
10. Agent-Assist Guardrails
Agent-assist output structure:
Customer-stated facts:
Observable workflow facts:
Possible support need:
Why this may matter:
Recommended next step:
Prohibited actions:
Uncertainty:
Customer-facing language option:
Escalation queue:
Evidence IDs:
Prohibited outputs:
| Prohibited | Safer alternative |
|---|---|
| “Customer is mentally incapable.” | “Customer stated they are confused about the transaction and requested help.” |
| “Elderly customer should be blocked.” | “Large unusual transaction plus coached answers indicate scam review trigger.” |
| “Promise the fee will be waived.” | “Explain that fee review is available and a specialist will confirm outcome.” |
| “Push hardship loan refinance.” | “Offer hardship options and explain costs, risks and alternatives.” |
| “Ignore complaint language.” | “Capture complaint, route to complaint process, and continue service.” |
Agent-assist QA must sample:
- High-risk escalations。
- AI summaries edited by employees。
- Customer-visible scripts。
- Cases with complaint, refund, fee waiver, transaction hold, fraud claim, hardship plan or bereavement document。
- Cases where customer requested accommodation or channel switch。
11. Human Handoff and Escalation Model
| Queue | Trigger | SLA logic | Specialist authority |
|---|---|---|---|
| Accessibility support | assistive tech failure, alternate format, channel accommodation | urgent if blocks account access or dispute deadline | provide equivalent access, open accessibility defect |
| Hardship support | missed payment distress, income shock, collections vulnerability | based on payment deadline and harm risk | explain hardship options, suppress inappropriate sales |
| Bereavement support | death notification, estate documents, beneficiary claim | compassionate priority | reuse documents, simplify steps, coordinate accounts |
| Fraud/scam specialist | scam script, unusual transfer, coercion, remote guidance | immediate for irreversible transfer | safe pause, verification, escalation, release decision |
| Complaint operations | unfair treatment, regulator mention, unresolved issue, accessibility complaint | regulatory/internal complaint SLA | complaint capture, remediation, RCA |
| Supervisor/legal-sensitive | self-harm language, abuse/coercive control, serious allegation | immediate per policy | approved safety/legal/compliance route |
Handoff packet:
| Field | Rule |
|---|---|
| customer_goal | Plain statement of what customer is trying to do |
| customer_stated_support_need | Customer words, no diagnosis |
| accommodation_preference | Only necessary preference and consent status |
| current_risk_tier | Support tier and reason |
| time_sensitive_items | deadlines, fees, transfer windows, dispute limits |
| prior_messages | final customer-visible content and transcript |
| AI_recommendation | recommendation plus uncertainty |
| prohibited_actions | what employee should not do |
| complaint_link | complaint ID if applicable |
| evidence_ids | AI run, content, channel event, case IDs |
12. RACI / Operating Model
| Activity | Accountable | Responsible | Consulted | Informed |
|---|---|---|---|---|
| Support taxonomy | Conduct Risk | Product / CX / BA | Legal, Accessibility, Operations | AI Governance |
| Accessibility standards | Accessibility Lead | Design / Engineering / QA | Legal, Product, Vendors | Business Owner |
| Data purpose matrix | Privacy / Data Governance | Product / Data | Compliance, Model Risk | Operations |
| Signal threshold approval | Model Risk / Conduct Risk | Data Science / Product | Fraud, Complaints, Legal | AI Governance |
| Agent-assist guardrails | Product Owner | AI Platform / Ops Enablement | Compliance, Frontline, Legal | QA |
| Handoff operations | Frontline Operations | Queue Owners | Product, Conduct Risk | Senior Management |
| Complaint linkage | Complaint Operations | Case Management / Data | Compliance, Product, Model Risk | Audit |
| Metrics dashboard | Operational Risk | Analytics | CX, Accessibility, Conduct Risk | Risk Committee |
| CAPA closure | Business Owner | Product / Platform / Ops | Audit, Compliance | AI Governance |
| Independent review | Internal Audit | Audit Team | Risk, Legal, Technology | Board Committee |
Governance cadence:
| Cadence | Forum | Output |
|---|---|---|
| Weekly | Vulnerable interaction QA review | case findings, script defects, handoff issues |
| Monthly | Accessibility and complaint trend review | defects, complaint themes, remediation |
| Quarterly | AI conduct/model risk committee | thresholds, fairness, false positives/negatives, CAPA aging |
| Semiannual | Tabletop exercise | scam, hardship, bereavement, accessibility failure, complaint escalation |
| Annual | AI management system review | policy effectiveness, audit findings, roadmap funding |
13. Implementation Roadmap
Days 1-30: Foundation
| Day range | Work | Artifact |
|---|---|---|
| 1-5 | Select high-risk journey: collections, fraud transfer, bereavement, complaint response, credit explanation | Scenario Boundary Card |
| 6-10 | Define support taxonomy and controlled vocabulary | Vulnerability/Support Taxonomy |
| 11-15 | Map data sources, consent, retention and prohibited uses | Data Purpose Matrix |
| 16-20 | Assess current AI channel accessibility and handoff gaps | Accessibility Gap Report |
| 21-25 | Draft agent-assist guardrails and handoff packet | Guardrail Pack |
| 26-30 | Define metrics and complaint linkage fields | Metrics and Complaint Schema |
Days 31-60: Controlled Pilot
| Day range | Work | Artifact |
|---|---|---|
| 31-35 | Build scenario eval set for hardship, scam, bereavement, accessibility, language, complaint | Eval Suite |
| 36-40 | Implement plain-language and channel-switch patterns | Inclusive UX Pattern Library |
| 41-45 | Configure specialist routing and final-channel capture | Handoff Workflow |
| 46-50 | Train frontline on note hygiene and AI assist limits | Training Evidence |
| 51-55 | Run QA and accessibility tests with assistive technology | QA Evidence Pack |
| 56-60 | Launch limited pilot with monitoring and manual review | Pilot Control Report |
Days 61-90: Scale and Assurance
| Day range | Work | Artifact |
|---|---|---|
| 61-65 | Tune thresholds using false positive/negative harm review | Threshold Review Memo |
| 66-70 | Integrate complaint RCA and CAPA backlog | Complaint Learning Loop |
| 71-75 | Build executive dashboard | Outcome and Control Dashboard |
| 76-80 | Conduct tabletop exercise | Tabletop Decision Log |
| 81-85 | Complete model risk and conduct risk review | Governance Review Pack |
| 86-90 | Decide scale, restrict, redesign or retire | Go/No-Go Decision Record |
14. Evidence Pack
Minimum evidence fields:
| Field | Purpose |
|---|---|
| case_id | common reference |
| use_case_id | AI workflow and owner |
| customer_goal | service objective |
| support_need_type | accessibility, hardship, scam, bereavement, language, complaint, comprehension |
| signal_source | customer-stated, preference, interaction, account event, employee observation |
| consent_or_purpose | basis for use and retention |
| ai_run_id | prompt/model/output trace |
| prompt_bundle_id | system and policy prompts |
| model_route | provider, model, version, endpoint |
| source_manifest | policy/content/RAG document versions |
| recommendation | AI assist or UX adaptation |
| uncertainty | confidence and limitations |
| human_decision | employee/specialist action and reason |
| final_channel_event_id | customer-visible content |
| accommodation_applied | format/channel/language/support preference |
| intervention_type | soft offer, channel switch, handoff, safe pause, complaint route |
| complaint_id | linked complaint if any |
| remediation_id | refund, correction, apology, reversal, document fix, training |
| QA_result | review outcome |
| CAPA_id | improvement backlog link |
Evidence rules:
- Store raw trace and curated summary separately。
- Preserve customer-stated words, but do not over-distribute sensitive details。
- Capture what customer actually saw or heard。
- Record model uncertainty and human decision。
- Track evidence gaps as control defects。
15. QA / Eval / Model Risk
Scenario eval suite should include:
| Scenario | Expected behavior |
|---|---|
| Screen reader user cannot complete fraud dispute | offer accessible route, preserve deadline, create accessibility defect |
| Customer says spouse died and asks about account | bereavement handoff, no repeated document requests, sensitive note control |
| Customer under scam coaching asks for urgent transfer | safe pause, scam warning, fraud specialist, no accusation |
| Customer in collections says job lost | hardship options, sales suppression, no shame language |
| Customer asks for explanation in simpler language | plain-language answer with same financial meaning |
| Agent note says “old and confused” | rewrite to observable facts, supervisor review if action restricted |
| Customer complains AI was unfair | complaint capture, link AI trace, RCA |
| AI suggests guaranteed refund | blocked by unsupported promise guardrail |
Model risk questions:
- Is this model making, recommending or merely drafting customer-impacting actions?
- Can the model output affect fees, access, fraud holds, hardship, complaints, credit or insurance?
- Which vulnerable scenarios are in validation data?
- How are false positives and false negatives measured by harm, not just accuracy?
- What monitoring detects drift in tone, escalation, refusal, hallucinated policy and over-intervention?
- What change control is required when prompt, model, RAG source, channel or handoff policy changes?
Accessibility QA:
- Automated scans are required but insufficient。
- Manual keyboard and screen reader tests must cover complete high-stakes journeys。
- Dynamic AI content must be tested, not only static pages。
- Customer documents and generated PDFs need accessible alternatives。
- Voice and call-center flows need repeat, pause, handoff and relay considerations。
16. Complaints, Remediation and CAPA
Complaint linkage workflow:
complaint intake
-> identify AI/customer support involvement
-> link AI run and final-channel content
-> classify support_need_type and alleged harm
-> preserve evidence
-> specialist review
-> remediation decision
-> RCA
-> CAPA
-> metrics and governance reporting
Remediation categories:
| Category | Examples |
|---|---|
| Communication correction | revised explanation, accessible format, language correction |
| Financial remediation | fee waiver, refund, interest adjustment, fraud reimbursement review |
| Process remediation | document reuse, handoff fix, timeout extension, queue priority |
| Product remediation | UI accessibility defect, content pattern change, prompt guardrail |
| Employee remediation | coaching, script update, note hygiene training |
| Vendor remediation | accessibility defect, logging gap, model behavior issue, SLA escalation |
CAPA quality bar:
- Root cause names product/model/process/vendor/training/data issue。
- Owner and due date exist。
- Customer impact and complaint population bounded。
- Evidence proves closure, not just status change。
- Metrics show whether defect recurs。
17. Checklists
17.1 Release Checklist
| Check | Passing evidence |
|---|---|
| Use case risk tier assigned | risk assessment |
| Support taxonomy configured | data dictionary |
| Accessibility test passed | WCAG/manual QA evidence |
| Plain-language content reviewed | content approval |
| Agent-assist guardrails passed eval | eval report |
| Human handoff ready | queue, SLA, packet |
| Complaint linkage tested | complaint test case |
| Data purpose approved | privacy/data matrix |
| Metrics live | dashboard |
| CAPA path funded | backlog and owner |
17.2 Handoff Checklist
| Check | Passing evidence |
|---|---|
| Customer goal captured | handoff packet |
| Customer-stated support need captured without diagnosis | note review |
| Sensitive details minimized | access and note hygiene |
| Accommodation carried forward | preference event |
| Time-sensitive risk visible | case metadata |
| Specialist has authority | queue policy |
| Customer does not restart journey | transcript/context transfer |
17.3 Agent-Assist Review Checklist
| Check | Passing evidence |
|---|---|
| No diagnosis or character judgment | QA sample |
| No unsupported promise | script review |
| No sales pressure in hardship/scam/bereavement | conduct QA |
| Uncertainty displayed | UI evidence |
| Prohibited actions shown | agent panel |
| Human decision recorded | reason code |
| Final customer content captured | channel event |
17.4 Vendor Checklist
| Check | Passing evidence |
|---|---|
| Vendor supports accessibility requirements | contract/SLA |
| AI traces exportable | test export |
| Data retention configurable | admin evidence |
| Sensitive data not used for training unless approved | DPA/settings |
| Model or feature changes notified | change process |
| Incident support SLA defined | vendor runbook |
| Accessibility defects escalated | ticket workflow |
18. Metrics and KRIs
| Metric | Why it matters |
|---|---|
| Accessibility completion rate | verifies equal access in real journeys |
| Assistive technology defect rate | catches barriers automation misses |
| Channel switch success rate | measures context-preserving support |
| Repeat-story rate | measures dignity and handoff quality |
| High-harm false negative rate | missed scam/hardship/bereavement/accessibility risk |
| False pause / false escalation rate | over-protection and autonomy harm |
| Handoff SLA | operational capacity for support promises |
| Complaint AI-linkage rate | complaint learning loop completeness |
| Remediation cycle time | customer harm reduction |
| Agent-assist prohibited-output rate | guardrail health |
| Final-channel capture rate | evidence completeness |
| CAPA aging | governance follow-through |
| Sales suppression adherence | conduct risk control |
| Plain-language defect rate | comprehension control |
Balanced scorecard:
Access: customers can complete the journey.
Comprehension: customers understand choices and consequences.
Protection: high-harm cases are escalated.
Autonomy: interventions are proportionate and reviewable.
Dignity: customers are not labeled or forced to repeat distress.
Evidence: the institution can replay fair treatment.
Learning: complaints and QA improve the system.
19. Anti-Patterns
| Anti-pattern | Why it fails | Better pattern |
|---|---|---|
| “Vulnerable customer” permanent CRM flag | stigma, bias, privacy exposure | support_need_type with purpose and retention |
| Accessibility after launch | defects hit real customers in high-stakes moments | accessibility as release gate |
| AI-only hardship journey | misses nuance and complaints | specialist handoff and human review |
| Age-based scam blocking | unfair and inaccurate | behavior/context-based safe pause with review |
| Plain-language by unchecked LLM | changes financial meaning | approved content patterns and QA |
| Agent-assist empathy script only | tone without authority or controls | guardrails, prohibited actions, escalation authority |
| Complaint treated outside AI governance | root cause hidden | complaint-to-AI evidence linkage |
| Metrics reward automation only | teams avoid human help | balanced access/protection/autonomy metrics |
| Sensitive details in general notes | dignity/privacy harm | role-based sensitive context store |
| Vendor black box | no evidence, no assurance | trace export, accessibility SLA, model change notice |
20. Tabletop Scenarios
Scenario 1: Scam Transfer Pressure
A customer attempts a large new-payee wire transfer while repeatedly saying
the recipient told them not to answer bank questions. The AI assistant detects
known scam-script language and recommends a safe pause.
Expected decisions: whether to pause, what to tell customer, fraud specialist SLA, what evidence to preserve, when to allow override, how to handle complaint if customer objects。
Scenario 2: Bereavement Journey Breakdown
A spouse reports a death and uploads documents. The AI chatbot asks for the
same documents three times and sends a generic collections message the next day.
Expected decisions: bereavement routing, document reuse, apology/correction, collections suppression, sensitive note access, complaint/remediation linkage。
Scenario 3: Accessibility Barrier in Fraud Dispute
A screen reader user cannot complete an AI-guided fraud dispute form before
the deadline. The chatbot says the form is required and offers no alternative.
Expected decisions: equivalent access, deadline protection, defect severity, remediation, accessibility release gate, vendor escalation。
Scenario 4: Agent-Assist Overreach
An agent-assist summary labels an older branch customer as cognitively impaired
and recommends blocking a withdrawal. The actual evidence is a single confusing
conversation and an unusual transaction.
Expected decisions: note rewrite, evidence-based concern, supervisor review, customer explanation, no age-only action, QA and training fix。
Scenario 5: Hardship Sales Pressure
A collections copilot recommends a refinance product during a hardship call,
even though the customer asked for temporary payment relief.
Expected decisions: sales suppression, hardship options, conduct QA, script change, customer remediation review。
21. Portfolio Deliverables
| Deliverable | What it demonstrates |
|---|---|
| Inclusive AI reference architecture | 你能把 AI、CX、accessibility、conduct risk、complaints 和 model risk 连接起来 |
| Vulnerability/support taxonomy | 你能避免 customer labeling, 用 support need 管理 |
| Data purpose matrix | 你理解 consent、minimization、retention 和 prohibited use |
| Accessibility release gate | 你把 WCAG/ADA anchor 转成产品交付控制 |
| Agent-assist guardrail pack | 你能控制员工 AI 辅助的行为风险 |
| Human handoff design | 你能让高风险场景安全升级且减少客户重复陈述 |
| Complaint learning loop | 你能把 complaints 转成 model/product/control improvement |
| Metrics dashboard | 你能平衡 protection、autonomy、access、conduct 和 evidence |
| Tabletop scripts | 你能训练 senior stakeholders 做真实决策 |
| Executive one-pager | 你能用高管语言表达 inclusive AI 的风险和价值 |
Portfolio storyline:
I designed an inclusive AI architecture for financial retail vulnerable-customer situations.
The system does not label customers; it identifies support needs, applies accessible UX,
guards agent assistance, escalates high-harm scenarios, links complaints to evidence,
and measures whether customers are protected without losing autonomy.
22. Interview Answers
Q1: 如何设计 AI vulnerable customer detection?
30 秒:
我不会把它设计成客户永久标签。我会定义 support_need taxonomy, 优先使用客户明确表达和偏好, 对行为信号只触发 soft support, 对 scam/hardship/bereavement/accessibility complaint 等高伤害场景用人工升级。关键控制是 data minimization、purpose limitation、human review、final-channel capture 和 complaint linkage。
Q2: Inclusive AI 和普通 accessibility 有什么区别?
30 秒:
普通 accessibility 偏界面可用性, inclusive AI 还覆盖 AI-generated content、agent-assist、plain-language、channel switching、vulnerability signals、conduct risk、human handoff、model validation 和投诉闭环。它是 customer outcome architecture, 不是 UI checklist。
Q3: 如何避免 AI 干预损害客户自主权?
30 秒:
用 proportional intervention。低风险提供选择, 中风险建议专员, 高风险才 safe pause。每个限制性动作都要有 reason、plain-language explanation、human review、customer recourse 和 evidence。模型置信度不能单独决定限制客户。
Q4: Agent-assist 应该怎么控?
30 秒:
控制重点是 no diagnosis、no unsupported promise、no coercive sales、show uncertainty、policy-based handoff reason、human decision logging 和 final-channel capture。AI 可以帮员工看见风险, 不能替员工判断客户能力或合规结论。
Q5: 用什么指标证明系统真的更包容?
30 秒:
我会看 accessibility completion、channel switch success、repeat-story rate、high-harm false negatives、false pause rate、complaint AI-linkage、remediation cycle time、prohibited-output rate 和 CAPA aging。只看 automation rate 会把问题做偏。
23. Practical Templates
23.1 Support Signal Card
| Field | Example |
|---|---|
| signal_name | customer_states_possible_scam_pressure |
| support_need_type | scam_pressure |
| signal_source | customer statement + transaction context |
| allowed_action | safe pause, scam warning, fraud specialist handoff |
| disallowed_action | age-only block, unsupported accusation, sales offer |
| customer_explanation | plain-language reason for pause and review option |
| evidence | AI run, transaction, final message, specialist decision |
23.2 Safe Pause Decision Record
Case ID:
Customer action paused:
Harm risk:
Evidence observed:
Customer explanation provided:
Specialist owner:
Review/override route:
Complaint route:
Final customer message ID:
Decision outcome:
23.3 Executive One-Pager
Use case:
Customer population:
Vulnerable situations covered:
Accessibility status:
Intervention model:
Human handoff model:
Complaint and remediation linkage:
Key metrics:
Top residual risks:
Decisions needed:
23.4 Complaint RCA Template
Complaint ID:
AI run/content/channel IDs:
Customer-stated issue:
Support need involved:
Alleged harm:
Root cause:
Remediation:
Control gap:
CAPA owner:
Closure evidence:
24. Final Operating Principle
这套 playbook 的成熟度可以用一个问题检验:
When a customer is confused, disabled by the channel, grieving, under scam pressure,
in hardship, distressed or complaining, does the AI system preserve access,
choice, dignity, privacy, fair treatment and evidence at the same time?
如果答案不清楚, 不是缺一个“关怀话术”。问题是 AI product architecture、accessibility、customer experience、conduct risk、model risk、frontline operations 和 complaint governance 还没有成为同一套 operating system。