Graduated delegation
An autonomy dial with a ladder of delegation levels (informational, guided, supervised, delegated) that exposes one level at a time with a conservative default, a per-level escape hatch, and capability boundaries the citizen cannot be silently moved past.
Agents capable of acting across a whole government service, not just answering questions, are now widely available. As they take on more of a service, government has to decide how much autonomy to grant one over a citizen's affairs, and how a citizen earns or contracts that autonomy.
Granting the full range at once overwhelms cautious users and exposes everyone to high-consequence actions before trust is established, while granting too little under-serves confident ones.
Government needs an agent's autonomy over a citizen's affairs to be bounded and earned rather than granted wholesale: a citizen should be able to start with minimal involvement and expand it on demonstrated use, with the capability boundaries enforced at the platform layer rather than left to each deployment.
Cautious users, and anyone who distrusts agent automation, lose out if the design pushes them toward more delegation than they want, so the level defaults to the most conservative option rather than requiring them to opt down, and every level carries a 'just do it the normal way' escape hatch routing to existing non-agent channels. Progression must not be gamified, which would pressure those users into more automation than they want by dressing delegation as achievement.
The risk tier of a service action (checking a payment date is low, lodging an appeal is high) sets the delegation level offered, and that level defaults to the most conservative option.
No surface has been built yet; the approach above is the brief for one.
- Established
The theory behind graduated, non-binary delegation is fully established, and enterprise-grade autonomy frameworks exist.
- Emerging Headline
Overall it sits between the two — proven components are being adapted toward citizen-facing use, but no production deployment exists yet.
- Frontier
As a citizen-facing response in government services — no government has yet put a production-grade, user-controlled autonomy dial in front of the public for AI agents.
SAE J3016 automation levels. The six-level framework (Level 0 to Level 5) created a shared vocabulary across regulators, manufacturers, insurers, and consumers, and has been explicitly adapted for AI-agent autonomy.
Parasuraman, Sheridan & Wickens (2000). Identified four classes of automatable function (information acquisition, analysis, decision selection, action implementation) and established that automation is "not all or nothing". That is the theoretical basis for granular rather than binary delegation.
CSA Agentic Trust Framework (2026). Applies zero-trust principles via a four-level maturity model with human role titles (Intern, Junior, Senior, Principal), where "agent autonomy must be earned through demonstrated trustworthiness."
Progressive disclosure UX. Revealing complexity incrementally, whether step-by-step, conditional, or contextual, has been adapted for AI agents, with each step reaffirming trust before the user proceeds. Yocco's "Autonomy Dial" lets users trust agents for low-stakes tasks while demanding confirmation for high-stakes ones.
High transferability; among the most directly applicable patterns here. Government services naturally decompose into risk tiers: checking a payment date is low-stakes, updating bank details is medium, lodging an appeal is high. A graduated delegation model maps cleanly onto this existing risk architecture.
Proposed government adaptation:
| Level | Agent capability | Human involvement | Example |
|---|---|---|---|
| Level 0: Informational | Answer factual questions from published guidance | None required | "When is the next payment date?" |
| Level 1: Guided | Pre-fill forms, suggest next steps | User reviews and confirms every action | "You may be eligible for X. Shall I start the application?" |
| Level 2: Supervised | Execute multi-step workflows | User approves at defined checkpoints | Change-of-address across linked services, confirming each service |
| Level 3: Delegated | Act within defined parameters without per-action approval | Exception-based review; audit trail | Adjust payment schedule within legislated parameters |
| Level 4: Autonomous | Initiate and complete complex transactions | Post-hoc audit; override available | Not recommended for government services at current maturity |
Critical constraint: full delegation remains feasible for only a small minority of tasks. Most government AI-agent interactions should operate at Levels 0–2.
The failure to prevent is unsupervised, fully automated issuance of high-consequence decisions. Capping public-facing agents at supervised levels with technically enforced boundaries keeps a human in the loop where it matters.
7 references
- CSA — Autonomy Levels for Agentic AI
- SAE J3016 — Taxonomy and Definitions for Terms Related to Driving Automation Systems
- Parasuraman, Sheridan & Wickens — A model for types and levels of human interaction with automation
- CSA — The Agentic Trust Framework: Zero Trust Governance for AI Agents
- Agentic Trust Framework specification (GitHub)
- Agentic Design Patterns — Progressive Disclosure UI Patterns
- Yocco, V. — Designing For Agentic AI: Practical UX Patterns (Smashing Magazine)