Definition Employees' use of AI tools without the organization's knowledge or approval—pasting work content into personal chatbot accounts, for example. The AI-era version of shadow IT, and a leading source of unmanaged data risk.
In more depth
Shadow AI typically emerges when approved tools lag behind what staff find useful, and it bypasses the contractual and security protections enterprise deployments provide. In a law firm, client information entered into an unapproved consumer tool may be retained by the provider or used for training, creating confidentiality exposure no one has assessed. Common responses pair clear policy and training with sanctioned tools good enough that workarounds feel unnecessary.
About the editor: MHSB Solutions, Research desk. MHSB Solutions is not a law firm. This glossary is educational information, not legal advice.
Educational information, not legal advice. AI terminology and tools change quickly; definitions reflect usage as of the last-updated date. For what bar associations and courts actually require of lawyers using AI, see legalaicompliance.help and consult a licensed attorney in your jurisdiction.