1 min read
The Rise of Fileless Malware Delivery and the Need for Better Defences
Fitzrovia IT recently teamed up to conduct a case study with security partner Custodian360, the leading solution for managed endpoint security. Our...
3 min read
Harriet Oliver : Updated on July 3, 2026
Artificial intelligence is rapidly transforming the workplace. Employees are using tools such as ChatGPT, Gemini, Claude, Copilot, Midjourney and countless AI-powered browser extensions to work faster, improve productivity and automate routine tasks.
Recent UK research found that 71% of employees have used unapproved AI tools at work, creating a growing phenomenon known as Shadow AI.
For London businesses handling sensitive client information, regulated data and confidential commercial information, Shadow AI is emerging as one of the most significant cybersecurity and compliance risks of 2026.
Shadow AI refers to the use of artificial intelligence tools without the knowledge, approval or oversight of an organisation's IT or security teams.
It is the next evolution of Shadow IT.
Employees may use public AI platforms to:
While the intention is usually positive, the risk is that business data is being shared with systems outside the organisation's control.
Unlike traditional software, AI tools actively process, interpret and generate information from the data users provide. This creates entirely new security, privacy and compliance considerations.
Employees may unknowingly upload sensitive business information into public AI tools.
This could include:
Once data leaves the organisation's controlled environment, it can become difficult to determine where it is stored or how it is handled.
For organisations operating in regulated sectors, Shadow AI can introduce serious compliance challenges.
If personal information is uploaded into an unauthorised AI platform, businesses may face questions around:
This is particularly relevant for organisations in legal, financial services, healthcare and professional services sectors.
AI systems can generate convincing but incorrect information.
When employees rely on unverified AI-generated outputs for decision-making, reporting or client communications, errors can quickly become business risks.
The goal should not be to ban AI. Instead, organisations should focus on enabling safe and responsible adoption.
If employees need AI capabilities, provide them with a secure and supported option.
Microsoft 365 Copilot is often a preferred choice because it operates within an organisation's existing Microsoft environment, security controls and permissions structure.
Many organisations still have no formal guidance on AI use.
A clear policy should explain:
Clear guidance reduces uncertainty and helps employees use AI safely.
Most Shadow AI incidents are not caused by malicious intent.
Employees often do not realise that pasting a client contract, financial report or HR document into a public AI tool may create compliance risks.
Regular awareness training helps bridge this knowledge gap.
Businesses need visibility into how AI tools are being used across the organisation.
Monitoring, governance controls and regular reviews can help identify emerging risks before they become security incidents.
Successful AI adoption is not about restricting innovation.
It is about creating an environment where approved tools are easy to use, secure and aligned with business objectives.
When secure options are available, employees are far more likely to use them.
Here at Fitzrovia IT, we work with organisations across London and the UK to strengthen security, improve governance and prepare for emerging technologies.
As one of London's most established managed service providers, we have been supporting businesses since the 1990s. From Paddington to St Pancras, Hampstead to Hammersmith, and across Greater London, we help organisations build secure, resilient and well-managed IT environments.
Our approach focuses on ensuring technology supports business goals while maintaining strong security and compliance standards.
For organisations exploring Microsoft Copilot and AI adoption, we provide:
We also help organisations prepare for the next stage of AI evolution. While tools such as Microsoft Copilot improve individual productivity, emerging AI agents will operate with increasing levels of autonomy across systems, data and workflows.
By establishing strong governance, security and data foundations today, businesses will be better positioned to adopt these technologies responsibly in the future.
AI is changing the way organisations operate, but successful adoption requires more than simply enabling new tools.
Our AI Readiness Audit helps identify gaps, assess risks and determine the practical steps needed to support secure AI adoption across your organisation.
If your business is considering Microsoft Copilot or wants to better understand the risks associated with Shadow AI, speak to team Fitz to learn how we can help.
1 min read
Fitzrovia IT recently teamed up to conduct a case study with security partner Custodian360, the leading solution for managed endpoint security. Our...
1 min read
Email continues to be the most widely used business communication tool across London and the UK, but it is also one of the most common entry points...
1 min read
Cybersecurity Leadership: Lessons from the Frontline On Thursday evening, Fitzrovia IT hosted Cybersecurity Leadership: Lessons from the Frontline...