Shadow AI

Exposure

Shadow AI is AI use outside approved organizational processes. It may involve personal accounts, browser extensions, copied data, unofficial APIs, local automation, or unsanctioned SaaS features embedded in daily work.

The first exposure is not model behavior. It is absence of inventory. If the organization cannot name the tool, account, data class, owner, retention path, or support model, it cannot govern the workflow.

Signals

• Employees reference AI-generated work but no approved tool exists for the task.
• Sensitive prompts or files move through personal or consumer accounts.
• Procurement, security, or legal teams discover AI use after it is already operational.
• Policies describe intent but do not name allowed tools, data classes, or account requirements.

Failure pattern

Adoption moves faster than governance. The organization obtains capability without evidence: no owner, no account control, no logging expectation, no incident path, no review date.

Related controls

• Maintain an Approved AI Tool Register.
• Publish allowed data classes for each approved tool.
• Require enterprise identity controls for sanctioned platforms.
• Use procurement, identity, endpoint, and network signals to discover unregistered use.
• Offer approved alternatives for common employee tasks.