{"id":41043,"date":"2026-05-02T11:54:56","date_gmt":"2026-05-02T09:54:56","guid":{"rendered":"https:\/\/smartfense.com\/?p=41043"},"modified":"2026-05-02T11:55:00","modified_gmt":"2026-05-02T09:55:00","slug":"blocking-chatgpt-doesnt-solve-shadow-ai","status":"publish","type":"post","link":"https:\/\/smartfense.com\/en\/blog\/blocking-chatgpt-doesnt-solve-shadow-ai\/","title":{"rendered":"Why blocking ChatGPT doesn&#8217;t solve Shadow AI"},"content":{"rendered":"<p>Two years ago nobody asked me what to do about ChatGPT. Now it shows up in half the meetings I take with CTOs and CISOs. The first exit most of them try is to block it at the corporate firewall. It works for a week. People open another tab on another provider and the hole is still there, just under a new name.<\/p>\n<p>Years ago we wrote on this blog about <a href=\"https:\/\/smartfense.com\/blog\/la-amenaza-del-shadow-it\/\">the Shadow IT threat<\/a>, the gray zone where people get their work done with tools the IT team never approved. Generative AI reopened that door, with a flow no proxy rule is going to contain. There\u2019s a new name for the same phenomenon: <strong>shadow AI in companies<\/strong>.<\/p>\n<h2>What is Shadow AI and how does it differ from Shadow IT?<\/h2>\n<p>Shadow AI is the use of generative AI models by employees without approval, oversight, or inventory from the security or technology functions. The name is new. The pattern isn\u2019t.<\/p>\n<p>The difference compared to classic Shadow IT has three angles worth looking at from an architecture lens.<\/p>\n<p>First, the entry barrier. Adopting a non-approved SaaS tool requires signing up, uploading data, learning a UI. Using a public LLM only takes opening a tab and pasting text. It\u2019s the lowest friction we\u2019ve ever seen on an unmanaged tool.<\/p>\n<p>Second, the nature of the data leaving. Common Shadow IT tools (a personal Trello, a side Notion) receive structured data the person consciously chose to put there. A prompt to ChatGPT gets whatever the person is thinking right now, unfiltered, occasionally including contract fragments, customer data, or credentials pasted by mistake.<\/p>\n<p>Third, the output flows back inside. The model\u2019s response gets pasted into the corporate document, into the code committed to the repo, into the email sent to the customer. The feedback loop between outside and inside is immediate, which means any hallucination or model bias enters the workflow without going through review.<\/p>\n<h2>Why blocking ChatGPT doesn\u2019t work in practice<\/h2>\n<p>When an organization blocks the ChatGPT domain at the corporate firewall, three things happen almost simultaneously.<\/p>\n<p>People who were using the tool to solve real tasks don\u2019t stop using it, they just shift to a personal phone or a home network. Data exfiltration becomes harder to audit because it no longer flows through the corporate network.<\/p>\n<p>Less visible alternatives appear, offering the same service without sitting on any blocklist. Any reasonably current security playbook lists dozens of equivalent providers, and keeping a deny list up to date is a losing race.<\/p>\n<p>The conversation between IT and the rest of the business breaks down. The person who was using the model for something legitimate (summarizing a long email, drafting a customer reply, debugging a code block) starts seeing IT as an obstacle and stops asking for tools. The organization loses visibility on real needs that a corporate solution could have served.<\/p>\n<p>The instinct to block comes from a good place. I get it, because I\u2019ve lived it in my own career. When a new risk shows up and we can\u2019t yet measure it, the first reaction is to cut the flow. That reflex assumes behavior will stop when the tool stops working. With public LLMs, that\u2019s no longer true.<\/p>\n<h2>Three concrete risks of Shadow AI in your organization<\/h2>\n<p>Before thinking about controls, it\u2019s worth naming what\u2019s at stake.<\/p>\n<p><strong>Sensitive data leakage.<\/strong> The most obvious one. A commercial proposal analysis with customer names, a legal-support conversation pasting contract clauses, a code snippet with hardcoded credentials someone wants to \u201cclean up\u201d before pushing to the repo. Any of those prompts can end up training a public model or sitting in the provider\u2019s logs.<\/p>\n<p><strong>Decisions based on hallucinations.<\/strong> An LLM can produce answers that look right and aren\u2019t. If the output gets copied without review into a proposal, a regulatory report, or a customer recommendation, the error propagates without traceability. The damage comes from a review chain that wasn\u2019t designed for AI outputs.<\/p>\n<p><strong>Regulatory exposure.<\/strong> GDPR, ISO 27001, NIS2, and each country\u2019s local regulations. All of them require control over the data lifecycle. A serious compliance program needs to answer, in front of an auditor, what data left the organization, where it went, and on what legal basis. When the flow is Shadow AI, the answer is \u201cwe don\u2019t know,\u201d and that alone is a finding.<\/p>\n<p><img decoding=\"async\" alt=\"Overhead detail of two hands at a wooden desk drawing a process flow diagram in a paper notebook with a black pen: round nodes connected by curved arrows, two arrows highlighted in amber marker; a coffee mug and colored sticky notes at the edge of the frame\" src=\"https:\/\/smartfense.com\/file\/2026\/05\/apoyo-01-1777714590.jpg\" \/><\/p>\n<h2>Which controls actually work against Shadow AI?<\/h2>\n<p>The question I ask the teams we work with is a different one. Not \u201chow do we block,\u201d but \u201cwhat channels do we design so AI use happens where we have visibility.\u201d<\/p>\n<p><strong>Accessible, specific policy.<\/strong> A short page, in the employee\u2019s language, stating what can be pasted into an LLM and what can\u2019t. Three concrete examples beat ten pages of legalese. If the policy lives on an intranet nobody reads, the policy doesn\u2019t exist.<\/p>\n<p><strong>Identity and corporate tooling.<\/strong> When the organization offers an approved channel (the enterprise version of a provider with a signed DPA, or a model on its own infrastructure) connected to corporate SSO with usage logs, most of the Shadow AI disappears on its own. People prefer the official tool when the official tool works and respects their flow.<\/p>\n<p><strong>Awareness at the moment of risk.<\/strong> This is where the awareness platform earns its keep every day. Traditional training, the annual 30-minute module, doesn\u2019t talk to the employee who right now is about to paste a contract fragment into a chat. What works is contextual nudges, the micro-reminders that show up when the risky behavior is about to happen, and specific simulations that train the reflex to pause before pasting. We\u2019ve written before about how that reflex gets trained in <a href=\"https:\/\/smartfense.com\/en\/blog\/cybersecurity-awareness-why-ai-cannot-replace-human-guidance\/\">Cybersecurity Awareness: why AI cannot replace human guidance<\/a> and on the role of <a href=\"https:\/\/smartfense.com\/blog\/funcionan-realmente-los-nudges-en-ciberseguridad\/\">nudges in cybersecurity<\/a>.<\/p>\n<p><strong>Detection that talks to behavior.<\/strong> This whole layer works better when SIEM, DLP, and the awareness program signals talk to each other. If your DLP flags a bulk-paste event toward an external domain, that event can trigger a one-minute educational module on Shadow AI delivered to that specific person. Human behavior is the piece <a href=\"https:\/\/smartfense.com\/en\/blog\/what-your-siem-doesnt-see\/\">your SIEM wasn\u2019t seeing<\/a>, and contextual awareness closes that loop.<\/p>\n<h2>Where a platform like SMARTFENSE fits<\/h2>\n<p>What we see in programs that are working is a pattern. The awareness platform doesn\u2019t compete with the firewall or the DLP. It\u2019s the layer that connects to those systems via API, ingests their signals, and translates a technical event into an educational intervention relevant to the person involved.<\/p>\n<p>At SMARTFENSE we design for that stack. Awareness gets assigned by real behavior, not just by role or seniority. When the organization already has catalogs on safe generative AI use (something that in the last year went from nice-to-have to expected by audits), <a href=\"https:\/\/smartfense.com\/en\/platform\/smartfense-contents\/\">the platform<\/a> activates them where they\u2019re needed, in the employee\u2019s language, at the moment of risk.<\/p>\n<p>That alone doesn\u2019t solve Shadow AI. What it does is turn each minor incident into a learning point for that person and, in aggregate, for the rest of the program. After a few months, the organization has what was missing before. A real map of which areas use which tools, which data types are at risk, where training is moving behavior, and where it isn\u2019t.<\/p>\n<h2>Three steps you can start this week<\/h2>\n<p>If your organization doesn\u2019t yet have a formal stance on Shadow AI, there are three things you can sort out without large projects.<\/p>\n<p>Talk to your team without a script. Ask who\u2019s using what, for which tasks, with which data. The picture that comes out of that conversation usually surprises and is the most useful input for the policy that follows.<\/p>\n<p>Write a first version of the policy, short, with examples. Don\u2019t wait for the perfect document, because while the perfect document is being drafted, data is already leaking.<\/p>\n<p>Open the conversation with the awareness platform about where the topic fits in next quarter\u2019s catalog. If you don\u2019t have a platform yet, this is a good starting point to <a href=\"https:\/\/smartfense.com\/en\/contact\/\">talk to us<\/a> about how to begin.<\/p>\n<p>Blocking ChatGPT doesn\u2019t solve Shadow AI. Designing the channels does.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Blocking ChatGPT doesn&#8217;t stop Shadow AI. How to design the channels so generative AI use happens where your organization has visibility.<\/p>\n","protected":false},"author":4,"featured_media":41039,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[3,686],"tags":[591,1718,456,2170,1721,2063,448],"class_list":{"0":"post-41043","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","6":"hentry","7":"category-blog","9":"tag-compliance-en","10":"tag-cultura-de-seguridad-en","11":"tag-cyber-security","12":"tag-politicas-de-seguridad","13":"tag-proteccion-de-datos-en","14":"tag-riesgo-humano","15":"tag-security-awareness"},"acf":[],"yoast_head":" \n<title>Shadow AI in companies: why blocking ChatGPT doesn&#039;t work<\/title>\n<meta name=\"description\" content=\"Blocking ChatGPT doesn&#039;t stop Shadow AI. How to design the channels so generative AI use happens where your organization has visibility.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/smartfense.com\/en\/blog\/blocking-chatgpt-doesnt-solve-shadow-ai\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Shadow AI in companies: why blocking ChatGPT doesn&#039;t work\" \/>\n<meta property=\"og:description\" content=\"Blocking ChatGPT doesn&#039;t stop Shadow AI. How to design the channels so generative AI use happens where your organization has visibility.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/smartfense.com\/en\/blog\/blocking-chatgpt-doesnt-solve-shadow-ai\/\" \/>\n<meta property=\"og:site_name\" content=\"SMARTFENSE - Awareness in Cyber Security\" \/>\n<meta property=\"article:published_time\" content=\"2026-05-02T09:54:56+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2026-05-02T09:55:00+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/smartfense.com\/file\/2026\/05\/hero.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"1376\" \/>\n\t<meta property=\"og:image:height\" content=\"768\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Mauro S\u00e1nchez\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Mauro S\u00e1nchez\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"7 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/smartfense.com\\\/en\\\/blog\\\/blocking-chatgpt-doesnt-solve-shadow-ai\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/smartfense.com\\\/en\\\/blog\\\/blocking-chatgpt-doesnt-solve-shadow-ai\\\/\"},\"author\":{\"name\":\"Mauro S\u00e1nchez\",\"@id\":\"https:\\\/\\\/smartfense.com\\\/en\\\/#\\\/schema\\\/person\\\/cd90acca0dbd51ffdec4d346f3cf90b2\"},\"headline\":\"Why blocking ChatGPT doesn&#8217;t solve Shadow AI\",\"datePublished\":\"2026-05-02T09:54:56+00:00\",\"dateModified\":\"2026-05-02T09:55:00+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/smartfense.com\\\/en\\\/blog\\\/blocking-chatgpt-doesnt-solve-shadow-ai\\\/\"},\"wordCount\":1381,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\\\/\\\/smartfense.com\\\/en\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/smartfense.com\\\/en\\\/blog\\\/blocking-chatgpt-doesnt-solve-shadow-ai\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/smartfense.com\\\/wp-content\\\/uploads\\\/2026\\\/05\\\/hero.jpg\",\"keywords\":[\"compliance\",\"cultura de seguridad\",\"cyber security\",\"pol\u00edticas de seguridad\",\"protecci\u00f3n de datos\",\"riesgo humano\",\"security awareness\"],\"articleSection\":[\"Blog\",\"Blog\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/smartfense.com\\\/en\\\/blog\\\/blocking-chatgpt-doesnt-solve-shadow-ai\\\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/smartfense.com\\\/en\\\/blog\\\/blocking-chatgpt-doesnt-solve-shadow-ai\\\/\",\"url\":\"https:\\\/\\\/smartfense.com\\\/en\\\/blog\\\/blocking-chatgpt-doesnt-solve-shadow-ai\\\/\",\"name\":\"Shadow AI in companies: why blocking ChatGPT doesn't work\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/smartfense.com\\\/en\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/smartfense.com\\\/en\\\/blog\\\/blocking-chatgpt-doesnt-solve-shadow-ai\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/smartfense.com\\\/en\\\/blog\\\/blocking-chatgpt-doesnt-solve-shadow-ai\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/smartfense.com\\\/wp-content\\\/uploads\\\/2026\\\/05\\\/hero.jpg\",\"datePublished\":\"2026-05-02T09:54:56+00:00\",\"dateModified\":\"2026-05-02T09:55:00+00:00\",\"description\":\"Blocking ChatGPT doesn't stop Shadow AI. How to design the channels so generative AI use happens where your organization has visibility.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/smartfense.com\\\/en\\\/blog\\\/blocking-chatgpt-doesnt-solve-shadow-ai\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/smartfense.com\\\/en\\\/blog\\\/blocking-chatgpt-doesnt-solve-shadow-ai\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/smartfense.com\\\/en\\\/blog\\\/blocking-chatgpt-doesnt-solve-shadow-ai\\\/#primaryimage\",\"url\":\"https:\\\/\\\/smartfense.com\\\/wp-content\\\/uploads\\\/2026\\\/05\\\/hero.jpg\",\"contentUrl\":\"https:\\\/\\\/smartfense.com\\\/wp-content\\\/uploads\\\/2026\\\/05\\\/hero.jpg\",\"width\":1376,\"height\":768,\"caption\":\"Caf\u00e9 de barrio en la ma\u00f1ana temprano. Un colaborador con vestimenta casual de oficina, sentado solo junto a una ventana, concentrado en un smartphone personal sostenido a la altura del pecho mientras una taza de caf\u00e9 humea a su lado y una agenda impresa descansa olvidada sobre la mesa de madera\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/smartfense.com\\\/en\\\/blog\\\/blocking-chatgpt-doesnt-solve-shadow-ai\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Portada\",\"item\":\"https:\\\/\\\/smartfense.com\\\/en\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Why blocking ChatGPT doesn&#8217;t solve Shadow AI\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/smartfense.com\\\/en\\\/#website\",\"url\":\"https:\\\/\\\/smartfense.com\\\/en\\\/\",\"name\":\"SMARTFENSE - Concienciaci\u00f3n en Ciberseguridad\",\"description\":\"\",\"publisher\":{\"@id\":\"https:\\\/\\\/smartfense.com\\\/en\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/smartfense.com\\\/en\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/smartfense.com\\\/en\\\/#organization\",\"name\":\"SMARTFENSE\",\"url\":\"https:\\\/\\\/smartfense.com\\\/en\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/smartfense.com\\\/en\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/smartfense.com\\\/wp-content\\\/uploads\\\/2023\\\/08\\\/logo-smartfense-240x40-1.png\",\"contentUrl\":\"https:\\\/\\\/smartfense.com\\\/wp-content\\\/uploads\\\/2023\\\/08\\\/logo-smartfense-240x40-1.png\",\"width\":241,\"height\":40,\"caption\":\"SMARTFENSE\"},\"image\":{\"@id\":\"https:\\\/\\\/smartfense.com\\\/en\\\/#\\\/schema\\\/logo\\\/image\\\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/smartfense.com\\\/en\\\/#\\\/schema\\\/person\\\/cd90acca0dbd51ffdec4d346f3cf90b2\",\"name\":\"Mauro S\u00e1nchez\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/621a5d64e5ca57cf623fa5d310c5031d6b035d29d4b85e2976aa9d8cceba2373?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/621a5d64e5ca57cf623fa5d310c5031d6b035d29d4b85e2976aa9d8cceba2373?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/621a5d64e5ca57cf623fa5d310c5031d6b035d29d4b85e2976aa9d8cceba2373?s=96&d=mm&r=g\",\"caption\":\"Mauro S\u00e1nchez\"},\"description\":\"CTO de SMARTFENSE, lidera los equipos de ingenier\u00eda y desarrollo. Especialista en materia de ciberseguridad e infraestructura, siendo el encargado de definir y concretar las integraciones y alianzas tecnol\u00f3gicas estrat\u00e9gicas de SMARTFENSE con diferentes soluciones. M\u00e1s de 20 a\u00f1os avalan su experiencia en la toma de decisi\u00f3n e implementaci\u00f3n de medidas de seguridad y tecnolog\u00eda.\",\"url\":\"https:\\\/\\\/smartfense.com\\\/en\\\/author\\\/mauro-sanchez\\\/\"}]}<\/script>\n ","yoast_head_json":{"title":"Shadow AI in companies: why blocking ChatGPT doesn't work","description":"Blocking ChatGPT doesn't stop Shadow AI. How to design the channels so generative AI use happens where your organization has visibility.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/smartfense.com\/en\/blog\/blocking-chatgpt-doesnt-solve-shadow-ai\/","og_locale":"en_US","og_type":"article","og_title":"Shadow AI in companies: why blocking ChatGPT doesn't work","og_description":"Blocking ChatGPT doesn't stop Shadow AI. How to design the channels so generative AI use happens where your organization has visibility.","og_url":"https:\/\/smartfense.com\/en\/blog\/blocking-chatgpt-doesnt-solve-shadow-ai\/","og_site_name":"SMARTFENSE - Awareness in Cyber Security","article_published_time":"2026-05-02T09:54:56+00:00","article_modified_time":"2026-05-02T09:55:00+00:00","og_image":[{"width":1376,"height":768,"url":"https:\/\/smartfense.com\/file\/2026\/05\/hero.jpg","type":"image\/jpeg"}],"author":"Mauro S\u00e1nchez","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Mauro S\u00e1nchez","Est. reading time":"7 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/smartfense.com\/en\/blog\/blocking-chatgpt-doesnt-solve-shadow-ai\/#article","isPartOf":{"@id":"https:\/\/smartfense.com\/en\/blog\/blocking-chatgpt-doesnt-solve-shadow-ai\/"},"author":{"name":"Mauro S\u00e1nchez","@id":"https:\/\/smartfense.com\/en\/#\/schema\/person\/cd90acca0dbd51ffdec4d346f3cf90b2"},"headline":"Why blocking ChatGPT doesn&#8217;t solve Shadow AI","datePublished":"2026-05-02T09:54:56+00:00","dateModified":"2026-05-02T09:55:00+00:00","mainEntityOfPage":{"@id":"https:\/\/smartfense.com\/en\/blog\/blocking-chatgpt-doesnt-solve-shadow-ai\/"},"wordCount":1381,"commentCount":0,"publisher":{"@id":"https:\/\/smartfense.com\/en\/#organization"},"image":{"@id":"https:\/\/smartfense.com\/en\/blog\/blocking-chatgpt-doesnt-solve-shadow-ai\/#primaryimage"},"thumbnailUrl":"https:\/\/smartfense.com\/file\/2026\/05\/hero.jpg","keywords":["compliance","cultura de seguridad","cyber security","pol\u00edticas de seguridad","protecci\u00f3n de datos","riesgo humano","security awareness"],"articleSection":["Blog","Blog"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/smartfense.com\/en\/blog\/blocking-chatgpt-doesnt-solve-shadow-ai\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/smartfense.com\/en\/blog\/blocking-chatgpt-doesnt-solve-shadow-ai\/","url":"https:\/\/smartfense.com\/en\/blog\/blocking-chatgpt-doesnt-solve-shadow-ai\/","name":"Shadow AI in companies: why blocking ChatGPT doesn't work","isPartOf":{"@id":"https:\/\/smartfense.com\/en\/#website"},"primaryImageOfPage":{"@id":"https:\/\/smartfense.com\/en\/blog\/blocking-chatgpt-doesnt-solve-shadow-ai\/#primaryimage"},"image":{"@id":"https:\/\/smartfense.com\/en\/blog\/blocking-chatgpt-doesnt-solve-shadow-ai\/#primaryimage"},"thumbnailUrl":"https:\/\/smartfense.com\/file\/2026\/05\/hero.jpg","datePublished":"2026-05-02T09:54:56+00:00","dateModified":"2026-05-02T09:55:00+00:00","description":"Blocking ChatGPT doesn't stop Shadow AI. How to design the channels so generative AI use happens where your organization has visibility.","breadcrumb":{"@id":"https:\/\/smartfense.com\/en\/blog\/blocking-chatgpt-doesnt-solve-shadow-ai\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/smartfense.com\/en\/blog\/blocking-chatgpt-doesnt-solve-shadow-ai\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/smartfense.com\/en\/blog\/blocking-chatgpt-doesnt-solve-shadow-ai\/#primaryimage","url":"https:\/\/smartfense.com\/file\/2026\/05\/hero.jpg","contentUrl":"https:\/\/smartfense.com\/file\/2026\/05\/hero.jpg","width":1376,"height":768,"caption":"Caf\u00e9 de barrio en la ma\u00f1ana temprano. Un colaborador con vestimenta casual de oficina, sentado solo junto a una ventana, concentrado en un smartphone personal sostenido a la altura del pecho mientras una taza de caf\u00e9 humea a su lado y una agenda impresa descansa olvidada sobre la mesa de madera"},{"@type":"BreadcrumbList","@id":"https:\/\/smartfense.com\/en\/blog\/blocking-chatgpt-doesnt-solve-shadow-ai\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Portada","item":"https:\/\/smartfense.com\/en\/"},{"@type":"ListItem","position":2,"name":"Why blocking ChatGPT doesn&#8217;t solve Shadow AI"}]},{"@type":"WebSite","@id":"https:\/\/smartfense.com\/en\/#website","url":"https:\/\/smartfense.com\/en\/","name":"SMARTFENSE - Concienciaci\u00f3n en Ciberseguridad","description":"","publisher":{"@id":"https:\/\/smartfense.com\/en\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/smartfense.com\/en\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/smartfense.com\/en\/#organization","name":"SMARTFENSE","url":"https:\/\/smartfense.com\/en\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/smartfense.com\/en\/#\/schema\/logo\/image\/","url":"https:\/\/smartfense.com\/file\/2023\/08\/logo-smartfense-240x40-1.png","contentUrl":"https:\/\/smartfense.com\/file\/2023\/08\/logo-smartfense-240x40-1.png","width":241,"height":40,"caption":"SMARTFENSE"},"image":{"@id":"https:\/\/smartfense.com\/en\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/smartfense.com\/en\/#\/schema\/person\/cd90acca0dbd51ffdec4d346f3cf90b2","name":"Mauro S\u00e1nchez","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/621a5d64e5ca57cf623fa5d310c5031d6b035d29d4b85e2976aa9d8cceba2373?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/621a5d64e5ca57cf623fa5d310c5031d6b035d29d4b85e2976aa9d8cceba2373?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/621a5d64e5ca57cf623fa5d310c5031d6b035d29d4b85e2976aa9d8cceba2373?s=96&d=mm&r=g","caption":"Mauro S\u00e1nchez"},"description":"CTO de SMARTFENSE, lidera los equipos de ingenier\u00eda y desarrollo. Especialista en materia de ciberseguridad e infraestructura, siendo el encargado de definir y concretar las integraciones y alianzas tecnol\u00f3gicas estrat\u00e9gicas de SMARTFENSE con diferentes soluciones. M\u00e1s de 20 a\u00f1os avalan su experiencia en la toma de decisi\u00f3n e implementaci\u00f3n de medidas de seguridad y tecnolog\u00eda.","url":"https:\/\/smartfense.com\/en\/author\/mauro-sanchez\/"}]}},"_links":{"self":[{"href":"https:\/\/smartfense.com\/en\/wp-json\/wp\/v2\/posts\/41043","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/smartfense.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/smartfense.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/smartfense.com\/en\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/smartfense.com\/en\/wp-json\/wp\/v2\/comments?post=41043"}],"version-history":[{"count":2,"href":"https:\/\/smartfense.com\/en\/wp-json\/wp\/v2\/posts\/41043\/revisions"}],"predecessor-version":[{"id":41053,"href":"https:\/\/smartfense.com\/en\/wp-json\/wp\/v2\/posts\/41043\/revisions\/41053"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/smartfense.com\/en\/wp-json\/wp\/v2\/media\/41039"}],"wp:attachment":[{"href":"https:\/\/smartfense.com\/en\/wp-json\/wp\/v2\/media?parent=41043"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/smartfense.com\/en\/wp-json\/wp\/v2\/categories?post=41043"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/smartfense.com\/en\/wp-json\/wp\/v2\/tags?post=41043"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}