Think about a house key.

You give one to a neighbour so they can water your plants while you’re away. Simple. Sensible. Then you give one to your cleaner. One to your dog walker. One to your parents for emergencies.

Six months later — how many people have a key to your house?

You probably don’t know exactly. And you definitely haven’t changed the locks recently.

That’s delegated authority debt.

It starts small

Every enterprise does this constantly, just with access instead of keys.

A new service needs to read from a database — grant it. An agent needs to call an API — grant it. A workflow needs to write to a storage bucket — grant it.

Each decision is reasonable in the moment. None of them feel like risks.

The debt isn’t in any single delegation. It’s in the accumulation.

The problem compounds silently

Here’s what makes it dangerous: delegated authority almost never expires on its own.

The neighbour moved away two years ago. They still have your key.

In enterprise systems: the contractor left, their service account didn’t. The project was cancelled, the permissions weren’t revoked. The agent was retired, the API credentials are still valid.

Every one of these is a door that should be locked but isn’t.

Delegation created — Access granted

Project ends — Access stays?

Person leaves — Access stays?

Agent retired — Access stays?

Nobody’s doing anything wrong. There’s just no forcing function to clean it up.

Why AI makes this urgent

A human employee accumulates access slowly — through requests, approvals, role changes. There’s friction. That friction is actually useful.

An AI agent can be granted broad access in minutes, operate across dozens of systems simultaneously, and act faster than any human review process was designed to handle.

The debt accumulates faster. The exposure is larger. And when something goes wrong, the question — whose authority was this agent exercising, and did anyone ever explicitly grant it? — often has no clean answer.

The question worth asking right now

You don’t need a new tool to start fixing this. You need one honest audit.

Pick any AI agent or automated system running in your environment. Ask:

  • Who originally granted it access?
  • Is that person still here?
  • Is that project still running?
  • Has anyone reviewed what it can do in the last six months?

If you can’t answer all four — that’s the debt. Right there.

The cost of delegated authority isn’t in the granting. It’s in the not revoking.

Who can act on whose behalf — and should they still be able to?

Delegated Authority is a monthly series on how enterprises govern authority across humans, software, and AI agents.