
Most of your employees already use AI at work — this spring’s Microsoft and LinkedIn workplace study put it at three-quarters of knowledge workers — and a large share do it through personal accounts on tools nobody approved. That’s shadow AI, and it has quietly become one of the most common ways confidential business data walks out the door.
What shadow AI looks like
It’s rarely malicious. It’s a salesperson pasting a client contract into a free chatbot for a summary. A developer feeding error logs — credentials included — to a coding assistant. An analyst uploading the customer spreadsheet to clean it up. Samsung learned this publicly last year when engineers pasted proprietary source code into ChatGPT, prompting the company to restrict the tools outright.
Every one of those prompts is a data transfer to a third party, made with no contract, no review and no record. And adoption keeps climbing — survey after survey shows the same shape, with most users bringing their own tools rather than waiting for permission:
Blended from published workplace-AI surveys; 2024 H2 reflects data to date. Industry averages; illustrative.
View data table
| Unsanctioned AI use (% of knowledge workers) | |
|---|---|
| 2022 | 9 |
| 2023 H1 | 22 |
| 2023 H2 | 34 |
| 2024 H1 | 47 |
| 2024 H2 | 55 |
Why it’s a data leak, not a quirk
The workplace studies add a detail that should worry you more: a majority of employees using AI at work admit to hiding it. Usage you can’t see is risk you can’t manage, and the risk is concrete:
- Retention and training. Consumer AI tools may keep prompts and, depending on settings, use them to train models. Your data can end up embedded somewhere you can never audit or delete.
- Regulated data. Client PII or health and financial records pasted into a consumer tool have left your controlled environment with no agreement in place — in some industries, that’s a reportable event.
- No provenance. When AI-drafted text lands in contracts and client work, nobody can say where a clause came from.
- Cover for exfiltration. Heavy personal-account AI use looks identical to someone quietly feeding your data out on purpose.
Why banning it fails
Companies that blocked AI tools outright mostly moved the activity to personal phones, where visibility drops to zero. The demand is real — people use these tools because they work, and in many roles they’ve quietly become the difference between leaving at five and leaving at seven. Prohibition doesn’t remove that incentive; it just removes your ability to see what’s happening.
There’s also a talent angle. The same workplace studies show employees — especially younger ones — factoring AI access into where they want to work. A blanket ban reads as a company that hasn’t caught up. The fix is a sanctioned lane, not a taller wall.
A practical policy in five steps
- Pick an approved tool with business data terms — Copilot for Microsoft 365 or an enterprise chatbot tier — where prompts aren’t used for training and admins have controls.
- Write one page of rules: green uses (drafts, brainstorming, public information), yellow (ask first), red (client PII, credentials, source code, deal documents — never).
- Turn on visibility. Web filtering and data-loss-prevention tools show which AI services your network already talks to; our engineers watch client networks around the clock, and unsanctioned AI traffic shows up far more often than owners expect. Measure before you enforce.
- Train with real examples — the contract paste, the error log — not abstract warnings.
- Revisit quarterly. The tools change monthly; a policy written in January is already stale.
Notice what’s not on the list: buying a deepfake detector, blocking every AI domain, or writing a 40-page acceptable-use tome. The businesses handling this well did something simpler — they gave people a good tool, three clear rules and a person to ask. Adoption of the sanctioned tool is the metric that matters; every prompt that moves into it is one you can now see.
Key takeaways
- Around three-quarters of knowledge workers now use AI at work, much of it unsanctioned and hidden.
- Every prompt into a personal-account tool is an unrecorded data transfer to a third party.
- Outright bans push usage underground; sanctioned tools bring it back into view.
- A one-page green-yellow-red policy beats a ten-page ban nobody reads.
- Enterprise AI tiers exist precisely so your data isn’t training someone else’s model.
Ready to give your team an AI lane that’s actually safe to use? Our AI services team can stand up the tools, the policy and the guardrails together.
Turn insight into action.
Take a free cybersecurity or AI readiness assessment, or book a call with a NetSys engineer — no obligation, no runaround.



