Shadow AI Definition and the 4 Common Types
In short
Shadow AI is the unsanctioned use of AI tools by employees outside IT, security, and compliance oversight. The four most common types are public generative AI tools, AI coding assistants, AI meeting recorders, and embedded AI features inside SaaS products.
Shadow AI is the AI-era version of shadow IT. It is what happens when employees adopt AI tools faster than the organization can approve, monitor, or govern them.
A finance analyst pasting a forecast into ChatGPT, an engineer using an AI coding assistant on a customer codebase, a sales rep recording a call with an AI notetaker — all of these are shadow AI when they happen outside policy.
Shadow AI shows up in four common patterns:
- Public generative AI tools. Employees using ChatGPT, Claude, Gemini, or similar to draft documents, summarize meetings, write code, or analyze data — often pasting confidential information into prompts.
- AI coding assistants. Developers installing AI coding tools on their laptops or in their IDEs to suggest, complete, or refactor code, sometimes against an internal codebase that was never cleared for external processing.
- AI meeting recorders and notetakers. Bots that join calls, transcribe them, and store transcripts — often without the consent of all participants and outside the data residency rules the company is contractually bound to.
- AI features inside approved SaaS. Generative AI capabilities silently added to CRM, productivity, design, or analytics tools the organization already uses, switched on by default and never reviewed.
The defining characteristic is not the tool itself. It is the absence of governance: no risk assessment, no data classification check, no approval, no monitoring, no incident path.
Shadow AI is closely related to AI governance. It is the most visible symptom of a governance program that has not yet caught up to how fast generative AI is being adopted on the front line.
Why Shadow AI Exploded After 2022
In short
Shadow AI exploded because public large language models became free, instantly useful, and accessible from any browser or phone at the same moment that productivity pressure on employees increased — while IT and compliance approval cycles stayed the same length.
For most of the history of enterprise IT, adopting a new tool required someone to procure, install, and configure it. Shadow IT existed, but the friction was real.
Public LLMs removed that friction in a single quarter. From late 2022 onward, any employee with a browser could use a frontier model. There was no install, no procurement, often no cost, and no learning curve.
Three forces collided at once:
- Accessibility. Free or low-cost public LLMs available from any device, any network, in any language.
- Productivity pressure. Employees under pressure to do more with less, with leadership often signaling that AI use is encouraged.
- Slow governance cycles. Procurement, security review, and DPIA cycles measured in weeks or months while AI tools change weekly.
The early regulatory signals arrived almost immediately. In March-April 2023, the Italian Garante per la protezione dei dati personali briefly ordered a halt to ChatGPT processing of Italian users' data over GDPR concerns — one of the first public signs that public LLMs would not be left ungoverned.
Then came the Samsung incident in April 2023, when internal reports surfaced that engineers had pasted confidential source code and meeting notes into ChatGPT. The story moved shadow AI from a niche IT problem to a board topic within days.
The lesson for most CISOs was not "ban AI." It was "we no longer know what AI is being used here." That is the real definition of shadow AI risk.
The Samsung Incident (April 2023)
Reports surfaced in April 2023 that Samsung Semiconductor employees had pasted confidential information — including source code and internal meeting transcripts — into ChatGPT while trying to debug code and summarize meetings.
Samsung subsequently restricted internal generative AI use and worked on internal alternatives. The episode became the canonical example of shadow AI risk and is cited regularly in CISO playbooks and board decks.
The point of the case is not that ChatGPT is dangerous. It is that confidential data left the organization without anyone authorizing it, and no one knew until after the fact.
The Italian Garante and GDPR
In March 2023, the Italian Garante per la protezione dei dati personali ordered OpenAI to temporarily stop processing Italian users' personal data via ChatGPT, citing GDPR concerns around legal basis, transparency, and protection of minors.
Access was restored in late April 2023 after OpenAI implemented additional transparency and control measures. The episode confirmed that GDPR applies to AI processing without exception — including when employees use a public tool for work.
The 5 Categories of Shadow AI Risk
In short
Shadow AI creates five risk categories: data leakage (confidential information leaving the organization), regulatory non-compliance (GDPR, EU AI Act, sectoral rules), IP loss (training data and ownership disputes), security exposure (malicious prompts and supply-chain risk), and unverified model accuracy (hallucinations affecting decisions).
Not every shadow AI use case is high risk. But because shadow AI is, by definition, ungoverned, the organization cannot tell the difference between the harmless and the catastrophic.
1. Data leakage. The most discussed risk and the one that triggered the Samsung incident. Confidential code, customer data, financial information, or strategy documents pasted into public LLMs may be retained, used to improve models, or exposed in ways the organization cannot control.
2. Regulatory non-compliance. GDPR applies to personal data regardless of which tool processes it. The EU AI Act (Regulation 2024/1689) applies to AI placed on the EU market or whose output is used in the EU. Sector-specific rules (finance, health, public sector) impose additional duties that shadow AI bypasses by definition.
3. Intellectual property loss. Two risks at once. Confidential IP can leak into training data. Generated output may have unclear copyright or contamination from copyrighted training data, creating disputes about ownership of the result.
4. Security exposure. Shadow AI tools expand the attack surface. Risks include prompt injection, malicious AI assistants installed on developer machines, unvetted third-party AI processing customer data, and supply-chain compromises through AI plug-ins.
5. Unverified model accuracy. Public LLMs hallucinate. Without governance, employees may rely on incorrect outputs for legal research, customer responses, regulatory filings, or operational decisions. The error compounds when the output is then cited internally as if it were authoritative.
These five categories cover most of the documented harms. The shared feature is that the organization has no visibility, no early warning, and no documented evidence trail.
| Risk category | Typical scenario | Severity | Primary mitigation |
|---|---|---|---|
| Data leakage | Confidential code, customer or financial data pasted into public LLM | High | Enterprise-grade AI tier with no-training contract, DLP, AI-aware data classification |
| Regulatory non-compliance | Personal data processed via unapproved AI; high-risk use under EU AI Act | High | Acceptable use policy, EU AI Act risk classification, DPIA / FRIA where required |
| IP loss | Source code or strategy in prompts; unclear ownership of AI output | Medium-High | Approved tools list with IP terms, contract review, model cards, output review |
| Security exposure | Unvetted AI plug-ins, malicious AI assistants, prompt injection | High | Allowlist of approved tools, endpoint controls, security review of AI features |
| Unverified model accuracy | Hallucinated legal, financial, or clinical content used in decisions | Medium-High | AI literacy training, human-in-the-loop for high-stakes outputs, citation discipline |
Source: Alice Labs, based on EU AI Act, GDPR, NIST AI RMF
Need a Shadow AI Audit?
Use the proprietary Alice Labs Shadow AI Audit to discover what AI is actually being used inside your organization — before a regulator, customer, or incident does it for you.
Book a Shadow AI AuditHow to Audit and Manage Shadow AI
In short
The proven approach to managing shadow AI is not a ban. It is an allowlist of approved AI tools, AI literacy training under EU AI Act Article 4, network and endpoint monitoring to detect unsanctioned use, and a fast, low-friction approval path so the safe option is also the easy option.
Bans tend to fail because they do not address why shadow AI emerged: employees needed a tool, the approved path was too slow, and an unapproved one was free.
The programs that work treat shadow AI as a signal, not a sin. The goal is to surface what is already happening, give people an approved version, and govern it from there.
1. Surface what already exists. Use network monitoring, SaaS discovery tools, browser telemetry, and structured employee surveys to inventory which AI tools are actually in use, by whom, and for what.
2. Publish an allowlist. Define a short list of approved AI tools at appropriate tiers (enterprise contracts, no-training clauses, EU data residency where required). Make the allowlist obvious and easy to use.
3. Write an acceptable use policy. Cover what data can and cannot be used, which tools are approved, what review is required for new tools, and how to report concerns. Keep it short.
4. Deliver AI literacy training. Required under Article 4 of the EU AI Act since 2 February 2025. Cover prompt hygiene, data classification, hallucination, and incident reporting — not just policy slides.
5. Monitor and iterate. Track AI tool usage, run periodic audits, and feed findings back into the allowlist and policy. Shadow AI is not a one-off project. Tools and risks change quarterly.
The strategic move is to integrate this into the broader AI governance program rather than running it as a standalone CISO initiative. Governance, security, legal, and HR all have a role.
Discovery Tactics That Actually Work
Network DNS logs and SaaS discovery tools find traffic to known AI providers. Endpoint management surfaces installed AI assistants. Browser extension inventories reveal AI-powered plug-ins.
Pair telemetry with anonymous or semi-anonymous employee surveys. Telemetry shows traffic; surveys reveal use cases and unmet needs. Both are required.
Designing an Acceptable Use Policy That Sticks
Effective acceptable use policies are short, specific, and tied to a clear approved-tools list. They explain why, not just what. They include named examples of allowed and prohibited use.
The strongest signal of a working policy is that employees can quote it. If they cannot, it does not exist operationally.
The Alice Labs Shadow AI Audit Methodology
In short
The Alice Labs Shadow AI Audit is a four-step proprietary methodology — discover, classify, remediate, and govern — that surfaces unsanctioned AI use, classifies each instance against EU AI Act and GDPR exposure, replaces high-risk tools with approved alternatives, and integrates the result into the wider AI governance program.
The Alice Labs Shadow AI Audit methodology is shaped by 100+ Nordic enterprise implementations across financial services, manufacturing, public sector, and B2B SaaS. It is designed to surface shadow AI without freezing the productivity gains employees are already enjoying.
Step 1: Discover. Combine network and SaaS telemetry, endpoint inventory, browser extension audits, and structured employee surveys to build a single inventory of AI tools actually in use. Capture tool, owner, use case, and data category.
Step 2: Classify. Score each instance against EU AI Act risk categories (Unacceptable, High-risk, Limited risk, Minimal risk) and GDPR exposure. Identify which instances trigger DPIA or FRIA obligations under Article 27.
Step 3: Remediate. Replace high-risk shadow AI with approved tier alternatives (enterprise contracts, no-training clauses, EU data residency). Decommission tools that cannot be safely brought into governance.
Step 4: Govern. Integrate the result into the wider AI governance program: allowlist, acceptable use policy, AI literacy training under EU AI Act Article 4, intake for new AI tools, and quarterly re-audit.
The audit pairs with the Alice Labs EU AI Act Readiness Assessment and the Alice Labs LLMO Citation Benchmark for organizations that also need a generative-AI surface view of risk.
For broader context, see the EU AI Act compliance checklist 2026 and the Alice Labs Implementation Index 2026, which both connect shadow AI findings to the wider governance picture.
What a Shadow AI Audit Delivers
Outputs include a complete inventory of AI tools in use, a risk-classified register against EU AI Act and GDPR, a prioritized remediation plan, and an updated allowlist plus acceptable use policy.
The audit also produces the evidence trail regulators and customers increasingly ask for: who is using what, with which data, under which approved terms.
The methodology is designed to be re-run quarterly so shadow AI does not silently regrow between audits.
About the Authors & Reviewers

Co-Founder, Alice Labs
Co-Founder at Alice Labs. Author of 7 research reports on AI adoption, governance and labor markets cited across EU, OECD and US benchmarks.
- 8+ years in AI strategy & implementation
- Top-5 AI Speaker, Sweden (Mindley 2025)
- 100+ enterprise AI engagements

Co-Founder, Alice Labs
Co-Founder at Alice Labs. Builds AI automation, agent workflows and integration systems that hold up in real business operations.
- AI automation & agent systems lead
- Workflow design across 100+ deployments
- Specialist in RAG, integrations & APIs
Frequently Asked Questions
What is shadow AI in simple terms?
Shadow AI is the use of AI tools by employees without the approval of IT, security, or compliance. It is the AI version of shadow IT and includes public generative AI tools, AI coding assistants, AI meeting recorders, and embedded AI features inside SaaS products switched on without review.
Why is shadow AI a problem?
Shadow AI creates five categories of risk: data leakage (confidential data leaving the organization), regulatory non-compliance (GDPR, EU AI Act, sectoral rules), intellectual property loss, security exposure (prompt injection, malicious plug-ins), and unverified model accuracy (hallucinations affecting decisions). Because shadow AI is ungoverned, the organization cannot detect or evidence any of it.
What was the Samsung shadow AI incident?
In April 2023, reports emerged that Samsung Semiconductor employees had pasted confidential source code and meeting notes into ChatGPT while trying to debug code and summarize meetings. Samsung subsequently restricted generative AI use internally. The episode became the canonical example of shadow AI risk and accelerated CISO and board attention worldwide.
Does GDPR apply when employees use ChatGPT for work?
Yes. GDPR applies to any processing of personal data, regardless of whether the tool was officially approved by the organization. In March-April 2023 the Italian Garante per la protezione dei dati personali temporarily ordered OpenAI to halt processing of Italian users' data over GDPR concerns, confirming that public AI tools are not outside the scope of EU data protection law.
Does the EU AI Act cover shadow AI?
Yes. The EU AI Act (Regulation 2024/1689) applies to AI placed on the EU market or whose output is used in the EU, regardless of who inside the organization deployed it. Article 4, applicable since 2 February 2025, also requires providers and deployers to ensure AI literacy among staff and contractors operating AI on the organization's behalf — explicitly covering shadow AI use.
Should we ban ChatGPT and other AI tools to stop shadow AI?
Most outright bans fail because they do not address why shadow AI emerged in the first place: employees needed a tool, the approved path was too slow, and an unapproved one was free. The proven approach combines an allowlist of approved tools at the right tier (enterprise contracts, no-training clauses), AI literacy training, monitoring, and a fast intake for new tools.
How do you audit shadow AI inside a company?
Combine network and SaaS telemetry with endpoint inventory, browser extension audits, and structured employee surveys. Telemetry shows which AI services are being accessed; surveys reveal use cases and unmet needs. Inventory each instance with tool, owner, use case, and data category, then classify each against EU AI Act and GDPR exposure.
Who owns shadow AI inside the organization?
Shadow AI is cross-functional. Security and IT typically discover and monitor it; legal and compliance classify risk; HR drives policy and AI literacy training; the AI governance committee owns the integrated outcome. The most effective model is a named AI governance lead with executive sponsorship who coordinates across these functions rather than any single team trying to solve it alone.
What Is AI ROI? How to Measure Return on AI Investment (2026)
Next in AI StrategyAI Strategy for Financial Services: Risk, Compliance & Growth (2026)
Further reading
- NIST AI Risk Management Framework (AI RMF 1.0)· nist.gov
- Regulation (EU) 2024/1689 — the EU AI Act (official text)· eur-lex.europa.eu
- Bloomberg — Samsung restricts generative AI use after internal leak (May 2023)· bloomberg.com
- Reuters — Italian data protection authority opens ChatGPT probe (March 2023)· reuters.com
- European Commission — Data protection and GDPR· commission.europa.eu
Related services
Related reading
What Is AI Governance?
The operating system shadow AI control plugs into
howtoEU AI Act Compliance Checklist 2026
Article-by-article EU AI Act readiness checklist
glossaryWhy AI Projects Fail
Failure modes governance and shadow AI control prevent
dataAlice Labs Implementation Index 2026
Benchmarks from 100+ Nordic AI implementations
Sources
- Bloomberg — Samsung bans generative AI use by staff after internal leak (May 2023)
- Reuters — Italian data protection agency opens ChatGPT probe over privacy concerns (March 2023)
- Regulation (EU) 2024/1689 — the EU AI Act (in force 1 August 2024)
- NIST — AI Risk Management Framework (AI RMF 1.0, January 2023)
- European Commission — Data protection and GDPR
- Alice Labs Shadow AI Audit methodology (proprietary, 2026)
- Alice Labs LLMO Citation Benchmark (proprietary, 2026)
Next scheduled review: