The Board of Directors must assess the level of risk that an organization is willing to tolerate and decide how it wants to manage those risks.  Policy Governance creates a superb structure to manage risks without micromanaging the executive.  What it does not do is explain whether a particular Executive Limitation policy is necessary or overly cautious.  Having too many Executive Limitations is harmful to organizations because it diverts resources that should be devoted to producing Ends and redirects those resources to protecting something that may not be a great threat to the organization.  In addition, organizations can be so cautious that the become paralyzed which prevents them from achieving their Ends. After all, ceasing all flights is probably not an appropriate risk management strategy for airlines who what to prevent midair collisions.
Policy Governance practitioners need to go beyond the “starter set” of Executive Limitations policies and begin to more thoughtfully manage the risks to their own organization.