7.1
Module 7 · Shadow AI & Data Breaches
What Shadow AI Is & Why It Matters
Shadow AI is the unsanctioned use of AI tools without organisational approval — personal ChatGPT accounts, browser extensions, mobile apps, and copy-pasting sensitive data into consumer tools. It is the number one risk to Australian government AI adoption.
Shadow AI Pathway Visualiser
Risk Heatmap
Shadow AI Pathway Visualiser
Click each pathway to see how shadow AI enters defence and government organisations.
Key Insight
Shadow AI is the #1 risk for Australian government AI adoption. Unlike traditional shadow IT, AI tools actively ingest and process the data they receive — meaning a single paste of sensitive information can permanently leave the organisation\'s control.
Risk Heatmap
Risk level by data classification and tool type. Click any cell for details.
Consumer AI
(ChatGPT Free, Gemini)
(ChatGPT Free, Gemini)
Enterprise Unapproved
(Paid but not PSPF)
(Paid but not PSPF)
Enterprise Approved
(HCF/PSPF certified)
(HCF/PSPF certified)