Groundbreaking solution surfaces AI data security risks everywhere AI touches the SaaS ecosystemโin chatbot conversations, OAuth integrations, MCP servers, and the SaaS supply chain.
Nudge Security, the leading innovator in SaaS and AI security governance, announced a significant expansion of its platform, positioning the company at the forefront of the rapidly evolving AI security market. The expanded solution addresses the urgent need for organizations to mitigate AI data security risks while harnessing the transformative potential of workforce AI use.
New capabilities include:
- AI Conversation Monitoring:ย Detect sensitive data shared via file uploads and conversations with AI chatbots including ChatGPT, Gemini, Microsoft Copilot, and Perplexity
- Policy Enforcement via the Browser:ย Delivery of guardrails to employees as they interact with AI tools to educate and enforce the organization’s acceptable use policy
- AI Usage Monitoring:ย See trends of Daily Active Users (DAUs) by department, individual user, and specific AI tools (approved or unsanctioned) to quickly respond to business needs and potential risks
- Risky Integration Detection:ย Automated surfacing of data-sharing integrations and OAuth/API grants that provide AI tools access to sensitive corporate data
- Data Training Policy Summaries:ย Condensed summaries of AI and SaaS vendors’ data training policies that surface how each vendor uses, retains, and handles data
- Playbooks to Scale Ongoing Governance:ย Automated workflows simplify tracking Acceptable Use Policy (AUP) acknowledgements, revoking risky data-sharing permissions, orchestrating account removals, and more
Also Read:ย CIO Influence Interview with Duncan Greatwood, CEO at Xage Security
These capabilities extend and enhance the foundationalย AI security and governance capabilitiesย that have been part of Nudge Security since 2023, including Day One discovery of all AI apps, users, and integrations; visibility of AI dependencies in the SaaS supply chain; and security profiles for thousands of AI providers. Nudge Security enables customers to accelerate AI innovation while maintaining robust security controls and policy compliance.
“As part of Notion’s commitment to secure AI adoption, we’ve built a governance framework that requires visibility into the tools our teams explore. Nudge Security provides this visibility and gives our compliance and legal teams aggregated data on emerging AI tools, which we then evaluate against our established privacy, security, and compliance requirements,” saidย JJ Macias, IT Systems Engineering Manager at Notion.
AI Risks Extend Across the SaaS Ecosystem
The explosion of AI, particularly AI embedded throughout the SaaS ecosystem, has introduced unprecedented security challenges as organizations now grapple with hundreds of AI-enabled applications, complex networks of integrations, and non-human identities with access to sensitive data across their environment.
AI usage dataย from Nudge Security finds:
- Over 1,500 unique AI tools discovered across a variety of organizations
- An average of 39 unique AI tools per organization
- More than 50% of SaaS apps have a majorย LLM provider in their data subprocessor list
- An average of 70ย OAuth grants per employee, many of which enable data sharing
Nudge Security is the onlyย AI security solutionย that provides comprehensive visibility and control across the entire SaaS ecosystemโnot just pure-play AI tools. This holistic approach addresses the reality that AI data security risks exist wherever AI touches the SaaS ecosystemโfrom AI-powered features in productivity apps to MCP server integrations that create direct pipelines to AI models, to the persistent OAuth grants that allow continuous data access long after they’re initially authorized.
“The risk isn’t just in the AI tool itself โ it’s in the access pathways employees create without considering the security implications,” said Jaime Blasco, CTO and co-founder of Nudge Security. “A single OAuth grant can give an AI vendor continuous access to your organization’s most sensitive data. Nudge Security makes these integrations visible and manageable for the first time.”
What truly sets Nudge Security apart is their recognition that AI risks are fundamentally introduced by peopleโthe employees who create AI agents, enable OAuth grants between apps, create API connections for MCP servers, and adopt AI-powered features within other SaaS solutions. With this understanding, Nudge Security has built a solution thatย engages the workforceย as active participants in the governance process and delivers guardrails at the point of riskโwhen and where employees make decisions that impact the security posture of their organization.
Catch more CIO Insights:ย The CIOโs Role In Data Democracy: Empowering Teams Without Losing Control
[To share your insights with us, please write toย psen@itechseries.com ]
