Shadow AI at Work: Why 91% of Employees Use Unapproved Tools

91% of employees use unapproved AI tools at work, leaking client data. Here's why shadow AI spreads and how Indian SMBs can build a safe, approved AI stack.

Amit Verma14 July 2026 13 min read
Shadow AI at Work: Why 91% of Employees Use Unapproved Tools

Last month I sat in a conference room in Pune with the founder of a 40-person accounting firm. He was proud of his team. Then his ops head casually mentioned that half the juniors were pasting client GST reconciliation data into free ChatGPT accounts to "speed things up." The founder went pale. Those were files with client PAN numbers, turnover figures, and bank statements, all now sitting on servers he didn't control, under terms of service nobody had read.

That firm is not an outlier. Recent industry surveys, including work by Microsoft and LinkedIn on AI adoption, have found that a very large majority of knowledge workers, upward of 75% globally and higher in some tech-heavy segments, bring their own AI tools to work without telling IT. Some studies of specific sectors have pushed that number past 90%. The pattern has a name now: shadow AI in the workplace. Employees aren't being malicious. They're being efficient. But every one of those unapproved logins is a potential data leak, a compliance gap, and a headache waiting to happen.

In this post I'll walk you through why shadow AI spreads so fast, the actual risks for an Indian SMB (DPDP Act, client contracts, GST data), a real cleanup I did for a company in Gurugram, and a step-by-step plan to build an approved AI stack your team will actually use instead of going rogue.

Key Takeaways
  • Shadow AI happens because sanctioned tools are missing, not because employees are careless. Ban-first policies fail; provide-first policies work.
  • The biggest exposure for Indian SMBs is client and personal data pasted into free consumer AI tools, which may use that data for training and store it outside India.
  • India's DPDP Act 2023 makes you, the business, the "data fiduciary" and legally accountable, even if an intern caused the leak.
  • A licensed enterprise plan (Microsoft 365 Copilot, Gemini for Workspace, Claude Team) gives you data protection guarantees that free tools explicitly deny.
  • Budget roughly ₹1,500 to ₹3,000 per user per month for a properly licensed AI stack, far cheaper than one breach or lost client.
  • Run a 30-day discovery, then approve, license, and train. Governance without alternatives just drives the behavior deeper underground.

What is shadow AI, and why is it different from normal shadow IT?

Shadow IT has been around for decades. Someone signs up for a free Trello board, a team starts using WhatsApp for internal chat, and IT finds out six months later. Annoying, but manageable.

Shadow AI is worse for one specific reason: the data doesn't just get stored, it gets consumed. When an employee uploads a document to a free generative AI tool, that content can be used to train the model, reviewed by human moderators, or retained indefinitely depending on the provider's policy. You're not just losing track of where a file lives. You may be handing your intellectual property and your clients' personal data to a third party with your express, if unread, consent.

The tools that show up most often in my audits of Indian SMBs:

  • Free-tier ChatGPT for drafting, summarizing client emails, and cleaning up data
  • Consumer Gemini and Claude for research and writing
  • Browser extensions that "summarize this page" or "rewrite this," many of which route data through unknown servers
  • AI meeting note-takers that silently join Google Meet and Zoom calls and record everything, including confidential discussions
  • Free image and PDF tools that require uploading the full document to a website

The AI meeting bots deserve special mention. I've walked into board calls where an unfamiliar "Otter" or "Fireflies" participant was quietly transcribing a discussion about a possible acquisition. Nobody in the room had approved it. One attendee had connected it to their personal calendar months ago and forgotten.

Why do 91% of employees use unapproved AI tools?

If you want to fix shadow AI, you first have to accept an uncomfortable truth: your employees are usually right. The unapproved tool is genuinely helping them do their job faster. Blaming them misses the point entirely.

Here's what actually drives the behavior, based on dozens of conversations with teams across Bengaluru, Mumbai, and Jaipur:

  • No sanctioned alternative exists. The company hasn't licensed any AI tool, so the free consumer version is the only option.
  • Approval takes too long. If getting a tool approved means a two-week email chain, people just use the free version and move on.
  • Peer pressure and output expectations. When one person is producing twice the work with AI, everyone else quietly adopts it to keep up.
  • It's invisible. A personal ChatGPT login leaves no trace on the corporate network. There's no procurement, no invoice, nothing for IT to spot.
  • Genuine ignorance of the risk. Most employees have no idea that free AI tools may train on their input. They assume it's "just like Google search."
Common Mistake: Sending a company-wide email that says "AI tools are banned, do not use them." This does nothing except push the behavior into stealth mode. People will use their phones on mobile data instead of the office WiFi. You lose all visibility and gain zero safety. A ban without an approved alternative is not a policy, it's wishful thinking.

What are the real risks of shadow AI for an Indian SMB?

Let me be specific about what can actually go wrong, because "security risk" is too vague to motivate anyone.

1. Data protection liability under the DPDP Act

India's Digital Personal Data Protection Act 2023 treats your business as the data fiduciary. If your employee uploads a customer's personal data (name, phone, Aadhaar, financial details) into a tool that stores it abroad or reuses it, you are accountable, not the employee and not the AI vendor. Penalties under the Act can run into crores for serious breaches. Ignorance that an intern did it is not a defence.

2. Breach of client confidentiality contracts

If you're a CA firm, a law practice, a design studio, or an IT services company, your client contracts almost certainly have confidentiality clauses. Pasting a client's unreleased product roadmap or financials into a consumer AI tool is a contractual breach that could cost you the account and expose you to damages.

3. Loss of intellectual property

Your proprietary code, your pricing models, your internal playbooks. Once fed into a free tool that trains on inputs, you have no control over where that knowledge surfaces next.

4. Inaccurate output presented as fact

AI hallucinations are real. An employee using an unvetted tool to draft a GST advisory or a legal note may produce confident, wrong answers that go straight to a client without review.

5. Malicious or fake AI tools

The app stores and browser extension marketplaces are full of "free AI assistant" tools that are actually data-harvesting operations. Employees install these thinking they're legitimate.

A real cleanup: how a Gurugram firm fixed its shadow AI problem

A 28-person digital marketing agency in Gurugram brought me in after a client complained that a campaign brief marked confidential had somehow appeared, near-verbatim, in a competitor's pitch. They suspected a leak. What they actually had was a shadow AI mess.

What I found during discovery:

  • 19 of 28 employees were using personal free ChatGPT accounts daily
  • Three different AI note-taker bots were connected to team calendars
  • Two content writers were using a "free" AI writing tool whose terms of service explicitly allowed reuse of submitted content
  • Total sanctioned AI spend: ₹0. Total shadow AI usage: constant

The leak most likely happened through the free writing tool, where a client brief had been pasted for "rewriting."

What we did over six weeks:

  1. Ran a 10-day usage audit using browser telemetry and a simple anonymous survey. This told us exactly which tools people relied on and why.
  2. Licensed Microsoft 365 Copilot for the 12 heaviest users at roughly ₹2,600 per user per month, plus a shared Claude Team plan for the content group. Total new spend came to about ₹52,000 per month.
  3. Wrote a one-page acceptable use policy in plain language, not legalese, that said clearly: here are the approved tools, here's what you may never paste into any AI tool, here's who to ask if you need something new.
  4. Ran two 45-minute training sessions showing people how to do their exact daily tasks in the approved tools, so the switch felt like an upgrade, not a punishment.
  5. Disconnected the rogue note-taker bots and set a Google Workspace policy blocking unapproved apps from accessing calendars.

Six weeks later, shadow AI usage had dropped by an estimated 85%. More importantly, the client relationship was salvaged because the agency could show a documented, licensed, auditable AI setup. The ₹52,000 a month felt like nothing next to the account they nearly lost. We handled the licensing and rollout through our cloud migration and managed services team, and the policy work sat within our IT consulting engagement.

Free vs enterprise AI tools: what actually changes for your data?

The single most important distinction most SMB owners don't understand is this: enterprise and paid business plans usually do NOT train on your data, and free consumer plans often do. That one line changes everything about your compliance posture.

Tool / Plan Trains on your data? Data residency / control Admin controls Approx. cost (per user/month)
ChatGPT Free Yes, by default US servers, limited control None ₹0
ChatGPT Team / Enterprise No Contractual data protection Yes, full admin console ₹2,000 to ₹2,500
Microsoft 365 Copilot No, data stays in tenant Within your M365 compliance boundary Yes, deep integration ₹2,500 to ₹2,700
Gemini for Google Workspace No for business plans Within Workspace controls Yes, via Admin console ₹1,600 to ₹2,200
Claude Team No Contractual, no training on inputs Yes ₹2,200 to ₹2,600

Prices vary with billing cycle, seat count, and reseller, and INR figures move with USD, so treat these as ballpark. The takeaway holds regardless: paying a modest per-seat fee buys you a contractual promise not to reuse your data, plus an admin dashboard that finally gives IT visibility. If you're weighing which platform fits, our breakdown on picking between Claude, Copilot, and Gemini for SMBs goes deeper into the trade-offs.

How do you build an approved AI stack your team will actually use?

Governance only works if the sanctioned path is easier than the shadow path. Here's the sequence I use with clients.

Step 1: Discover before you decide (Weeks 1 to 2)

You cannot govern what you can't see. Run an anonymous survey asking two things: which AI tools do you use, and what tasks do you use them for. Pair it with a quick review of browser and app activity where you legitimately can. The goal is not to catch people, it's to understand demand. Reassure everyone up front that this is about getting them better tools, not punishment.

Step 2: Map tasks to approved tools (Week 3)

Group the demand. If most usage is document drafting and email inside Microsoft, Copilot is the obvious answer. If your team lives in Google Docs and Sheets, Gemini for Google Workspace fits better. Content and coding teams often prefer Claude. Don't force one tool on everyone; match the tool to the actual work.

Step 3: License properly and set up admin controls (Week 4)

Buy business or enterprise plans, never free tiers, for anything touching client data. Turn on single sign-on, restrict who can install third-party apps, and configure data loss prevention rules. If you're on Microsoft 365, most of this lives in the admin center already. This is exactly the kind of setup our team does routinely, so if you'd rather not fight the admin console yourself, talk to us.

Step 4: Write a policy a human can read (Week 4)

One page. Three sections: approved tools, an explicit "never paste this" list (customer personal data, financials, credentials, unreleased client work), and a fast-track request process for new tools. Make requesting a new tool take one form and 48 hours, not a two-week saga.

Step 5: Train on their real tasks (Weeks 5 to 6)

Generic AI training bores people. Show your sales team how to summarize a call in the approved tool. Show accounts how to draft a client email safely. When the sanctioned tool does their exact job well, shadow AI dies naturally.

Pro Tip: Appoint one "AI champion" per team, not from IT. Pick the enthusiast who was already experimenting with shadow tools. Give them the licensed tools first and let them evangelize. Peer adoption beats top-down mandates every single time. The person who was your biggest shadow AI risk becomes your best internal advocate.

Where AI governance connects to your wider IT setup

Shadow AI rarely exists in isolation. It's usually a symptom of a broader problem: no clear tooling strategy. If your team is drowning in a dozen disconnected apps, read our take on why SMBs need an AI strategy, not more apps. And if you're worried you can't do this without hiring expensive specialists, shipping AI without building a team is very doable.

Once your stack is sanctioned, there's real upside to explore. Many of the tools you're already paying for have AI baked in that nobody uses; our roundup of hidden AI features in Microsoft 365 and Workspace covers the ones most teams miss. If customer communication is where AI would help most, an AI voicebot or the WhatsApp Business API gives you governed, auditable automation instead of employees improvising with random tools. For teams that need something bespoke, custom software development lets you build AI features directly into your own systems with full control over the data.

Frequently asked questions about shadow AI in the workplace

Is it illegal for employees to use ChatGPT at work in India?

Using ChatGPT itself isn't illegal, but uploading personal data of customers or employees into a tool that stores or reuses it can breach India's DPDP Act 2023, for which your business is liable as the data fiduciary. It may also violate client confidentiality contracts. The tool is fine; what you put into it is the issue.

How much does it cost to license AI tools for a small team in India?

Expect roughly ₹1,500 to ₹3,000 per user per month for business-grade plans like Microsoft 365 Copilot, Gemini for Workspace, or Claude Team. For a 10-person team, that's around ₹15,000 to ₹30,000 monthly, which is trivial compared to the cost of a single data breach or lost client.

Do paid AI tools really keep my data private?

Business and enterprise plans from major providers contractually commit not to train their models on your inputs and offer admin controls and data protection terms. Free consumer plans generally reserve the right to use your data for improvement. Always read the specific plan's terms, but the paid tiers are built precisely for this compliance concern.

How do I find out what AI tools my employees are already using?

Run an anonymous survey combined with a review of browser activity and connected apps in your Google Workspace or Microsoft 365 admin console. Check for unfamiliar apps with calendar or file access, which often reveals rogue AI note-takers. Frame it as improving their tools, not policing them, to get honest answers.

Can I just block all AI websites on the company network?

You can, but it rarely works. Employees switch to mobile data or personal devices, and you lose all visibility while gaining no real safety. Providing a good approved alternative is far more effective than blocking. Blocking should only complement a provide-first approach, never replace it.

What should never be pasted into any AI tool?

Customer or employee personal data (names, phone numbers, Aadhaar, PAN), financial records, passwords or API keys, unreleased client work, and anything under a confidentiality agreement. Put this exact list in your one-page AI policy so there's zero ambiguity for your team.

Does the DPDP Act apply to small businesses in India?

Yes. The DPDP Act 2023 applies to any entity processing digital personal data of individuals in India, regardless of size. There are some eased obligations for certain smaller entities, but the core accountability as a data fiduciary generally still applies, so an MSME cannot assume it's exempt.

The bottom line

Shadow AI in the workplace isn't a discipline problem, it's a supply problem. Your team found tools that make them faster because you hadn't given them approved ones. The fix is not fear or a blanket ban. It's discovery, sensible licensing, a readable policy, and training that makes the sanctioned path the obvious choice.

Do it right and you convert your biggest risk into a genuine productivity gain, with full audit trails and DPDP-friendly data handling. Get the enterprise licensing and admin controls in place, write the one-pager, run the training, and revisit it every quarter as new tools emerge.

If you'd rather not untangle this alone, this is exactly what we do. Explore our full range of IT services, or reach out through our contact page and we'll help you audit your current shadow AI exposure and stand up a safe, licensed AI stack that your team will actually want to use. You can also learn more about how we work with Indian SMBs.

Image credit: Reflections on the new Machine Age — technology, inequality and the economy by jurvetson via flickr (BY 2.0), sourced through Openverse.

A

Written by

Amit Verma

Cloud architect specializing in AWS, Azure, and GCP infrastructure. Amit has designed multi-region deployments for Indian enterprises and writes about cloud migration, cost optimization, and DevOps best practices.

Looking for a technology partner?

From IT consulting to virtual office to custom software — eDarpan can help.