In section Releases

Mid-Market Firms Face 'Shadow AI' Risks as Employee Use Outpaces Policy

Nearly half of workers now use artificial intelligence tools without formal company approval, exposing sensitive corporate data to public models. As employees increasingly turn to ChatGPT and similar platforms to boost productivity, IT departments are struggling to maintain security over proprietary information, client records, and confidential financial documentation.

Mid-Market Firms Face 'Shadow AI' Risks as Employee Use Outpaces Policy

Justin Cameron, CTO at managed IT provider Magna5, warns that this 'shadow AI' trend mirrors the risks once associated with unmanaged software. When employees input contracts or customer details into public AI tools, they often forget that these systems may store inputs and use them to train future models. This creates a significant blind spot, particularly for mid-market organizations that lack the stringent governance found in larger enterprises.

Rather than attempting to ban these tools—a strategy that often fails to curb usage—Magna5 advocates for a 'walled garden' approach. This involves providing staff with secure, sanctioned AI environments while implementing active monitoring to prevent unauthorized data transfers. According to the National Institute of Standards and Technology, effective risk management requires a transition from theoretical policies to operational controls. For sectors like healthcare and defense, where data breaches can have severe regulatory and security consequences, the shift toward managed AI integration is critical. Companies should adopt a staged rollout, starting with clear usage guidelines and data hygiene before scaling to deeper, automated workflows.

Share:on TelegramXFacebook

Subscribe to our newsletter

Once a week — the best stories from our editors, no ads or push notifications. Delivered Sunday morning.

Comments (0)

Leave a comment

No comments yet. Be the first!