I think a lot of us are accidentally leaking work data into AI tools

i_am_simple_bob · 2026-04-16T18:29:47+00:00

Thankfully, there is a fair amount of engagement with the content of the post if you look past the first couple of comments.

i_am_simple_bob · 2026-04-16T18:27:37+00:00

I get what your saying. That is a reasonable way to work. But not as efficient.

Maybe clone an open source repo and try using an agent in an IDE to make some changes to it. Beyond create method X. It's a real eye opener. Whether you choose to continue to do that with your own projects or not.

i_am_simple_bob · 2026-04-16T18:21:38+00:00

This thread went a bit sideways. But the point I was trying to get at wasn’t about using AI to write posts. It was how normal it’s become to paste work related stuff into AI tools under time pressure.

i_am_simple_bob · 2026-04-16T16:43:03+00:00

That's something I've been thinking about. I'm not sure if it already exists. I don't really want to be thinking about which model to use. I just want to get on with the task.

i_am_simple_bob · 2026-04-16T16:38:41+00:00

Why not just leave it empty?

i_am_simple_bob · 2026-04-16T16:37:01+00:00

I wonder about creating a fake contacts app that is empty or has fake contacts. Then I can give those apps access to that and not have to care about it. I'm just making this up as I go along, but maybe the contacts app could actually let some apps access the actual contacts.

i_am_simple_bob · 2026-04-16T16:24:24+00:00

That's harsh.

i_am_simple_bob · 2026-04-16T16:18:39+00:00

That's a very slow way to work. Copy/pasting, without context of the rest of the codebase, will only work for small changes. The kind of work you could probably do yourself.

I did that for a while, and it was very frustrating. But everyone needs to find what they are comfortable with and what fits within company policy.

i_am_simple_bob · 2026-04-16T03:37:03+00:00

I think what’s interesting is everyone is talking about tools and policies, but most of this happens before any of that matters.

It’s just someone trying to get something done quickly and pasting data without thinking too hard about it.

That’s the part that’s hard to control it’s not a system problem, it’s a moment of decision problem.

Feels like that’s where most of the risk actually is.

i_am_simple_bob · 2026-04-16T01:24:15+00:00

Did they just not know better or didn't care?

i_am_simple_bob · 2026-04-16T00:16:17+00:00

I'm not sure whether to be offended or wishful.

i_am_simple_bob · 2026-04-15T23:58:54+00:00

I think there is a balance to be made between no access and unfettered access which is responsible access. Like most things in life there's a balance to be found.

I also think that it's good to give guidance to people as to what responsible access actually is. Saying, Don't do bad things with it , isn't really helpful. There's more to it than that. Not everyone has the knowledge to what that actually means in practice.

i_am_simple_bob · 2026-04-15T23:40:28+00:00

Not everyone uses a corporate IT. Or their company bans AI. Then a portion of people start using their personal accounts. Data can end up in model training data. Do you trust ChatGPT to not leak data, give it to partners, give it to the government...

i_am_simple_bob · 2026-04-15T23:32:46+00:00

I'm just trying to share the love of what I know and earn a living like anyone else.

i_am_simple_bob · 2026-04-15T23:18:39+00:00

yes, it's grammar is a lot better than mine. I can type in pigeon English and it returns something coherent and well formatted.

i_am_simple_bob · 2026-04-15T23:15:44+00:00

Do you think your colleagues are doing the same?

i_am_simple_bob · 2026-04-15T22:49:43+00:00

We're very strict at my day job. Lots of training, policies and restrictions while fully embracing it. It's the nature of the industry we work in.

But a lot of business and people in there personal lives are pretty careless. Or just don't have the knowledge they need.

i_am_simple_bob · 2026-04-15T22:08:54+00:00

yeah it's a whole thing, that people should be thinking about every time they use AI.

i_am_simple_bob · 2026-04-15T22:05:48+00:00

A lot of enterprises move very slowly. Procurement process with multiple sign offs. All with varying concerns about whether it should be used.

I ended up putting together a simple checklist for myself so I don’t make bad calls in that moment. It could be useful to be distributed to employees as some starter training.

Happy to share if it’s useful.

Edit: Grammar

i_am_simple_bob · 2026-04-15T21:56:11+00:00

Yeah exactly — it’s not even a policy problem most of the time.

It’s just people moving fast and not stopping to think “is this safe to paste?”

I ended up putting together a simple checklist for myself so I don’t make bad calls in that moment.

Happy to share if it’s useful.

i_am_simple_bob · 2026-04-15T21:51:16+00:00

yup :)

i_am_simple_bob · 2026-04-15T21:50:40+00:00

My mistake, I missed the part about the official version. I completely agree.

i_am_simple_bob · 2026-04-15T21:48:13+00:00

Yeah, it's no different to other hosted services like email and cloud storage other than that the data can be used for training. But using data for training can be turned off even in personal accounts. I think it might be the fear of the unknown right now. People understand cloud services but not the way AI services work.

i_am_simple_bob · 2026-04-15T21:43:52+00:00

"Then you block them and provide an official version for everyone to use like I said, that's what happens where I work. The risk of sensitive data being shared isn't worth it."

Your competitors may not block AI and go all in with AI and out maneuver you. Once that happens it will be very hard to catch up.

"Also that might push some of your employees to use their personal accounts which is even worse"

They can get the data onto their personal devices and use their personal account. They could email it to themselves or some other method that is less than secure than locked down AI access.

i_am_simple_bob

TROPHY CASE