Spell-check for privacy
Blog
Safe AI adoption 8 min read

Blocking AI doesn't make you safer. It makes the risk invisible.

A hard block sounds like the safe choice. In practice it moves AI use to personal accounts and personal phones, beyond any visibility. That is shadow AI, and it is harder to govern than the behaviour you were trying to stop.

Blocking AI pushes use onto personal accounts and phones, out of sight as shadow AI
Quick answer

Blocking AI sounds safe, but it does not remove the risk. It relocates it. Cut off access and you do not get an organisation that has stopped using AI, you get shadow AI: personal accounts, personal phones, tools nobody approved. The data goes the same place it did before, now with no visibility and no data processing agreement. Offering good tools and guiding people at the moment of entry gives you more control than a block that gets routed around.

01

78% of AI users bring their own AI tools to work (Microsoft Work Trend Index)

02

Nearly half of employees use AI without employer approval, often on free, personal accounts

03

Blocking moves use to personal accounts and phones, beyond visibility and outside any processing agreement

04

Shadow AI is not recklessness, it is people trying to get their work done

05

Making safe AI use easy gives more control than a block people work around

IT blocks ChatGPT on the corporate network. Safely handled, everyone assumes. A week later an employee is up against a deadline. He picks up his phone, opens ChatGPT on his personal account, and pastes in the passage he is stuck on, including the client's name and the case number.

The block is still on. The work has simply moved somewhere nobody can see it.

This is not the exception. It is exactly what a block does.

Blocking doesn't remove the risk, it relocates it

Blocking AI sounds like the safest choice. But it does not make your organisation safer, it makes the risk invisible. Cut off access and you do not get an organisation that has stopped using AI. You get shadow AI: personal accounts, personal phones, tools nobody approved. The data goes the same place it did before, only now with no visibility, no data processing agreement, and no one able to steer it.

Why the block is the reflex, and why it fails

When security gets in the way, it gets bypassed. That is not bad faith, it is how people work. The safe route has to be the easy route, or people choose whatever route gets the job done.

A block rests on an assumption: if I close the door, the use stops. But AI is not behind one door. It is on every phone, in every browser, behind every personal email address. You can close off the corporate network, but you cannot close off the phone in someone's pocket.

And there is a bitter side effect. By blocking, you push use toward the places where you have the least control. The employee using ChatGPT at work is visible. The employee using it on a personal phone because it is blocked at work is not. Blocking trades visible risk for invisible risk. That feels safer. It is the opposite.

What is actually happening

The numbers show how widespread this already is.

Microsoft and LinkedIn's Work Trend Index, based on 31,000 knowledge workers across 31 markets, found that 78% of AI users bring their own AI tools to work. At smaller companies it is higher, around 80%. People are not waiting for policy. They are solving their work with the tools they already know.

Nearly half of employees admit to using AI without employer approval, often on free versions where they share sensitive company data. And under pressure, people take chances: research by BlackFog found 60% of employees would take risks to hit a deadline.

At the same time, more than half are reluctant to admit they use AI for important work, not because they are doing something wrong, but because they worry it makes them look replaceable. A block reinforces exactly that. The use continues, just in silence.

It also shows up in real incidents. In 2023, Samsung restricted internal use of ChatGPT after engineers pasted confidential source code into the tool, where it could no longer be retrieved. The reflex was to ban it. But a ban does not answer the question the incident raised: people needed help in the moment they pasted, and the block does not provide that. It only moves the next paste somewhere darker.

The objection, taken seriously

Now the fair objection: "But we can't allow everything. Some tools simply don't belong anywhere near our data."

True. Not every AI tool is fit for sensitive company data, and an organisation may, and sometimes must, restrict particular tools. This is not an argument for a free-for-all.

But the choice is not "block everything" versus "allow everything". That is a false binary. The real choice is between blind blocking and active guidance. You can offer good, approved tools so people do not need to route around you. You can make it clear which data does and does not belong in an AI tool. And you can signal, in the moment, when something sensitive ends up in a prompt, so the employee can correct it.

That is not a free-for-all. It is keeping control where the risk actually appears, instead of closing a door people walk around.

What to do instead

Four steps that deliver more than a block.

  1. Offer a good, approved tool. If the safe route is as fast as the free chatbot, half of your shadow AI disappears on its own.
  2. Make the rules concrete, not abstract. Not "be careful with data", but clear examples of what does and does not belong in an AI tool.
  3. Signal at the moment of entry. Help the employee while they type, before sensitive data is sent, instead of searching logs for what is already gone.
  4. Measure where the risk sits. In aggregate, without tracking individuals: which data types, which tools, and whether the line falls after you change something.

That last point is the difference between assumptions and control. This is what that visibility looks like:

Detections over timeLast 30 days
12,438+18% vs last month
Top sources
ChatGPT
8,124
Gmail
3,210
Gemini
812
BeeSensible dashboard: aggregated detections and top sources, without monitoring individuals.

No files on who did what, just a trend and a ranking of sources. Enough to see where AI use actually happens and where a better tool, or a conversation, is needed.

Where BeeSensible fits

You can enable safe AI use without putting a brake on it. BeeSensible works in the browser, where the work happens, and recognises sensitive information as someone types, including in AI tools. Through the desktop app, detection runs entirely on the device; for browser-only use it runs in working memory on a BeeSensible EU server. Either way the text is discarded after analysis and nothing is stored. What is in there, a name paired with an account number, an IBAN, a national ID, is marked before it is sent. The employee decides: remove it, replace it, or send anyway.

Here is what that looks like the moment someone types a prompt:

DeepSeek
Can you summarise this client file into a short status update for my manager?
Of course. Paste the details and I'll turn them into a concise summary.
Summarise this client file for my manager: Daniel Brooks, IBAN GB29NWBK60161331926819, phone 07700 900123. He has missed his last two payments.
AI-generated, for reference only.

Blocking AI feels safe, because you watch the tool disappear. But the use does not disappear, only your view of it. The organisations that handle this best do not lock AI down and do not leave it wide open. They make the safe route the easy route, and help people at the moment the risk appears. Not by holding them back, but by making what is in a prompt visible before it leaves. That is the difference between an organisation hoping nobody uses AI, and one that knows it happens and has a grip on it.

FAQ

Common questions

Is blocking AI at work a good idea?

A hard block stops visible use, not use itself. Employees move to personal accounts, personal phones and tools nobody approved, so you lose the visibility you need. Enabling safe AI use, with good tools and guidance at the moment of entry, gives you more control than blocking.

What is shadow AI?

Shadow AI is the use of AI tools the organisation does not know about or has not approved, often through personal accounts or personal devices. It matters because sensitive data ends up beyond any visibility and outside any data processing agreement, which makes it hard to govern or to report if something goes wrong.

Why do employees use AI without approval?

Not out of recklessness, but to get their work done. When the approved route is slow or closed off, people take the route that works. Research shows a majority bring their own AI tools to work, and many will take risks under deadline pressure.

How do you keep control of AI without blocking it?

Offer good, approved tools so the safe route is also the easy one. Signal sensitive data the moment someone enters it, instead of digging through logs afterwards. And measure, in aggregate, where AI use and risk appear, so you can adjust policy without tracking individuals.

Can an employer ban AI tools under GDPR?

An employer can restrict certain tools. But GDPR's accountability principle also requires you to demonstrate what happens to personal data. If a ban pushes use onto personal accounts, you lose that visibility and your ability to demonstrate compliance. A ban on paper is not protection in practice.

Is using a personal account for work AI a data breach?

Once an employee puts personal data into an AI tool through a personal account, the organisation is processing data outside its own agreements and without a processing agreement. Depending on the data, that can be a reportable breach within 72 hours. Organisations regularly discover, after the fact, that confidential files reached consumer chatbots this way.

See how BeeSensible works

Detect sensitive data before it leaves your team, in any app, in real time.