A recent report from LayerX, dedicated to data security in business environments, reveals that the adoption of artificial intelligence (AI) tools, particularly generative AI, has reached unprecedented levels in companies. Currently, 45% of employees use these tools, with ChatGPT achieving a penetration of 43%. In turn, artificial intelligence accounts for 11% of all activity in business applications, making it a crucial component of modern workflow.
Little intelligence, very artificial
However, this rapid adoption occurs in a context where management and security practices seem to have lagged behind. According to the report, 67% of AI usage is carried out through unmanaged personal accounts, leaving security personnel with little visibility over who is using what and what data is circulating. Even more alarming is that 40% of the files uploaded to these tools contain personally identifiable information (PII) or payment card information (PCI).
The way employees interact with these tools significantly contributes to data leakage. 77% of employees copy and paste information into AI tools from unmanaged accounts, making the use of the copy and paste function the main exit route for sensitive data. This combination of AI and unmanaged personal accounts creates a clear risk landscape that traditional security programs are not equipped to handle.
The report states that security leaders can no longer consider AI as an emerging technology. It is already a key tool in daily workflows and has become the largest uncontrolled channel of data loss. The need to adapt and establish a robust governance framework becomes more urgent as AI will dictate the future of data security in companies.