Artificial intelligence is no longer a future consideration for continuing medical education (CME/CE) organizations. It is already embedded, formally or informally (e.g., AI shadow use), in daily operations.

Staff are using AI to draft communications. Faculty are experimenting with generative tools to create presentations. Educational planners are exploring AI-assisted needs assessments, learning objectives, and learner engagement strategies. Vendors are increasingly incorporating AI capabilities into the platforms CME/CE providers rely on every day.

The challenge for many organizations is determining whether they have the framework needed to govern AI proactively before it becomes deeply embedded in workflows without clear oversight or accountability.

Recent research conducted by Twelve:01 Consulting reveals both opportunity and concern. While AI adoption continues to accelerate across the CME/CE landscape, organizational readiness remains uneven. More than half of organizations report having no written AI policy, and only a small percentage describe AI as fully integrated into operations. Many organizations recognize the importance of governance but have yet to establish the structures, responsibilities, and competencies necessary to support it.

These findings reveal an important reality: AI readiness is not simply a governance issue; it’s also a workforce issue.  And treating these as separate initiatives may be one of the most significant mistakes CME/CE organizations can make.

Why Aren’t Most CME/CE Organizations AI-Ready?

Many organizations begin their AI journey by focusing on policy.  This is understandable.

Governance frameworks are increasingly discussed within healthcare, education, and accreditation communities. The ACCME has published guidance encouraging organizations to think proactively about AI oversight, transparency, accountability, and responsible use.

As a result, leaders often ask:

  • Do we need an AI policy?
  • Should we establish a governance committee?
  • What disclosures should we require?
  • How should we evaluate risk?

These are all important questions. But governance documents, alone, do not create readiness. A policy that nobody understands, implements, or monitors offers limited protection.

Similarly, organizations frequently invest in AI tools before defining governance expectations. In such cases, staff begin using technologies without clear guidance, accountability, or oversight.  The result is fragmentation and inconsistencies, not AI-readiness.

Why Should AI Governance and Organizational Capacity Be Built Together?

Many organizations treat governance and workforce development as separate workstreams.  But every governance decision ultimately depends upon people carrying it out.

For example: A policy may require human review of AI-generated content.  And, 

  • Who performs the review?
  • What competencies must they possess?
  • How will consistency be maintained?
  • A governance framework may require disclosure of AI use.
  • Who determines when disclosure is appropriate?
  • How will faculty be educated about expectations?
  • How will compliance be monitored?
  • A policy may prohibit the entry of protected information into public AI systems.
  • Do staff understand which tools are approved?
  • Do they recognize privacy risks?
  • Can they distinguish between public and enterprise platforms?

These examples demonstrate that every governance requirement has an associated competency requirement.

Why Is Waiting for the ‘Perfect’ AI Governance Plan So Risky?

One of the most common barriers to AI governance is the belief that organizations need a comprehensive framework before taking action.  This assumption often creates paralysis.  Unfortunately, AI adoption rarely waits.  Employees continue experimenting, faculty continue exploring tools, and vendors continue embedding AI features.  Workflows continue evolving and governance quickly becomes reactive rather than proactive.

The most effective organizations rarely begin with a practical framework; a lightweight policy implemented today often provides greater protection than a sophisticated framework delayed indefinitely.  The goal is progress.  AI readiness exists at the intersection of governance, capability, culture, and operations.  A truly AI-ready organization can answer five questions confidently:

  1. Do We Know How AI Is Being Used?
  2. Have We Defined Acceptable Use?
  3. Have We Assigned Ownership?
  4. Do Staff Have the Necessary Competencies?
  5. Can We Adapt?

Can CME/CE Organizations Build AI Readiness in Phases?

Governance often feels overwhelming.  The solution is not comprehensive transformation overnight, but staged implementation.

Phase One: Establish the Foundation (0–90 Days)

The first ninety days should focus on visibility and basic guardrails.

Key priorities include:

  • Identifying current AI use cases
  • Defining approved tools
  • Requiring human review
  • Establishing interim privacy expectations
  • Assigning initial governance ownership

Organizations should also conduct a governance gap analysis to understand where the greatest risks exist.  At this stage, simplicity is an advantage – a two-page policy that is understood and used is more valuable than a twenty-page policy sitting unread.

Phase Two: Build Organizational Capacity (3–6 Months)

Once foundational guardrails are established, organizations should focus on people.

This phase includes:

  • AI literacy training
  • Faculty guidance
  • Vendor evaluation processes
  • Disclosure procedures
  • Competency mapping

Competency mapping is particularly important, as different roles require different capabilities. A structured competency framework helps organizations allocate training resources more strategically.

Phase Three: Integrate and Scale (6–12 Months)

The final phase focuses on embedding governance into operations.

This includes:

  • Workflow integration
  • Formal review processes
  • Quality assurance checkpoints
  • Risk monitoring
  • Policy refinement

At this stage, AI governance transitions from a project to an operational function, and the organization moves from experimentation to sustainable adoption.

What Do CME/CE Professionals Need to be AI Ready?

An imperative aspect of AI readiness is workforce development. Historically, CME/CE professionals have built expertise in educational strategy, outcomes and impact measurement, leadership, systems thinking, stakeholder collaboration, and accreditation compliance. As AI becomes integrated into CME/CE operations, organizations must expand these competency frameworks to include AI literacy, governance, risk management, and responsible-use practices, which may become a new competency domain.  

Why Is Transparency Becoming a Strategic Advantage in AI Governance?

Much of the AI conversation focuses on risk.  An equally important discussion centers on trust. Continuing education operates on credibility. Learners trust providers to deliver accurate, evidence-based, independent education.  Accrediting bodies rely on transparency and accountability.  Faculty trust that educational integrity will be protected.

AI governance should therefore be viewed not merely as a compliance exercise but as a trust-building strategy.

Transparency reinforces confidence, disclosure demonstrates accountability, and clear governance communicates professionalism.  Organizations that embrace transparency early may find themselves better positioned as expectations continue to evolve.

How Do Organizations Move from AI Assessment to AI Readiness?

Many CME/CE organizations have already completed the first step of the AI journey: recognizing that change is occurring.  The next step is implementation, which simply requires commitment, ownership and honest assessment.

Governance and organizational capacity are fundamental to AI readiness, as a policy without people is ineffective, and people without guidance are exposed.  Together, however, governance and capability create something far more valuable – an organization prepared to innovate responsibly.

As artificial intelligence continues reshaping CME/CE, is your organization prepared to govern it?  Because in continuing education, trust remains the foundation of everything we do, and it requires readiness.