Use of unauthorised AI sparks security and compliance concerns for businesses

by AI, News

Two thirds of business leaders in the UK are worried about potential data security and compliance risks stemming from employees’ unregulated use of artificial intelligence tools, according a new poll of senior decision-makers within UK businesses, commissioned by Studio Graphene. The design studio commissioned Censuswide to survey 500 managers, directors and C-suite executives within UK businesses. It found that almost half (48 percent) of respondents know or suspect that employees in their organisation are using AI tools that have not been officially approved – this rises to 54 percent for larger companies (over 250 employees).

Shadow AI refers to the use of unauthorised tools and services, and 48 percent of the leaders surveyed admitted that managers in their organisation have limited visibility of how staff use the tools in their day-to-day work. Just under two thirds (64 percent) are concerned, however, that unregulated use could lead to data security or compliance risks.

Despite these concerns, Studio Graphene’s poll also revealed just how many of the respondents have not formally created and communicated AI policies or guidelines. More than a third (34 percent) of organisations said they do not have formal policies or guidelines governing usage, while even more (37 percent) have failed to communicate to staff their expectations for how artificial intelligence should be used.

Elsewhere, the study suggests that while three fifths (59 percent) of UK business leaders are worried that an over-reliance on AI could lead to employees making mistakes, 61 percent admitted that frontline staff are more comfortable with using AI in their day-to-day work than the organisation’s senior leadership team.

Key findings:

  • Almost half (48 percent) know or suspect that employees in their organisation are using AI tools that have not been officially approved
  • 64 percent are concerned unregulated AI use could lead to data security or compliance risks
  • 34 percent of businesses do not have formal policies or guidelines governing AI usage, and 37 percent have not communicated to staff their expectations for how AI should be used