A new study published by Smarsh and FTI Consulting has exposed a widening gap between corporate AI usage and enterprise compliance frameworks. The report highlights that 'Shadow AI'—the unauthorized use of consumer AI tools by employees—is rapidly outpacing corporate governance. According to the survey data, only 26% of enterprises have implemented adequate governance frameworks to manage the risks associated with data security and intellectual property.
Furthermore, only 30% of compliance officers reported having the technical capabilities to detect unauthorized AI tool usage within their corporate networks. This lack of visibility exposes companies to significant regulatory and legal risks, including accidental data leaks of sensitive customer information. Cybersecurity experts are urging organizations to establish clear AI policies and deploy advanced data loss prevention tools to monitor local network activities.