* [Blog](https://origin-researchcenter.paloaltonetworks.com/blog)
* [SASE](https://origin-researchcenter.paloaltonetworks.com/blog/sase/)
* [Announcement](https://origin-researchcenter.paloaltonetworks.com/blog/category/announcement/)
* Palo Alto Networks Stops ...

# Palo Alto Networks Stops AI App Data Leakage in Its Tracks

[](https://www.facebook.com/sharer/sharer.php?u=https%3A%2F%2Forigin-researchcenter.paloaltonetworks.com%2Fblog%2Fsase%2Fpalo-alto-networks-stops-ai-app-data-leakage-in-its-tracks%2F)  
[](https://twitter.com/share?text=Palo+Alto+Networks+Stops+AI+App+Data+Leakage+in+Its+Tracks&url=https%3A%2F%2Forigin-researchcenter.paloaltonetworks.com%2Fblog%2Fsase%2Fpalo-alto-networks-stops-ai-app-data-leakage-in-its-tracks%2F)  
[](https://www.linkedin.com/shareArticle?mini=true&url=https%3A%2F%2Forigin-researchcenter.paloaltonetworks.com%2Fblog%2Fsase%2Fpalo-alto-networks-stops-ai-app-data-leakage-in-its-tracks%2F&title=Palo+Alto+Networks+Stops+AI+App+Data+Leakage+in+Its+Tracks&summary=&source=)  
[](https://www.paloaltonetworks.com//www.reddit.com/submit?url=https://origin-researchcenter.paloaltonetworks.com/blog/sase/palo-alto-networks-stops-ai-app-data-leakage-in-its-tracks/&ts=markdown)  
\[\](mailto:?subject=Palo Alto Networks Stops AI App Data Leakage in Its Tracks)  
Link copied  
By [Taylor Ettema](https://www.paloaltonetworks.com/blog/author/tettema/?ts=markdown "Posts by Taylor Ettema")  
May 03, 2023  
4 minutes  
[Announcement](https://www.paloaltonetworks.com/blog/category/announcement/?ts=markdown)  
[Cloud-delivered Security](https://www.paloaltonetworks.com/blog/sase/category/cloud-delivered-security/?ts=markdown)  
[Product Features](https://www.paloaltonetworks.com/blog/sase/category/product-features/?ts=markdown)  
[SaaS Security](https://www.paloaltonetworks.com/blog/category/saas-security/?ts=markdown)  
[Use-Cases](https://www.paloaltonetworks.com/blog/sase/category/use-cases/?ts=markdown)  
[Enterprise DLP](https://www.paloaltonetworks.com/blog/tag/enterprise-dlp/?ts=markdown)  
[NG-CASB](https://www.paloaltonetworks.com/blog/tag/ng-casb/?ts=markdown)

This post is also available in: [繁體中文 (Chinese (Traditional))](https://origin-researchcenter.paloaltonetworks.com/blog/sase/palo-alto-networks-stops-ai-app-data-leakage-in-its-tracks/?lang=zh-hant "Switch to Chinese (Traditional)(繁體中文)")

ChatGPT is the fastest growing consumer application [in history](https://www.reuters.com/technology/chatgpt-sets-record-fastest-growing-user-base-analyst-note-2023-02-01/), with 100 million monthly active users just two months after launch. While these AI apps can significantly boost productivity and creative output, they also pose a serious data security risk to the modern enterprise.

Many organizations may be surprised to learn that their employees are already using AI-based tools to streamline their daily workflows, potentially putting sensitive company data at risk. Software developers can upload proprietary code to help find and fix bugs, while corporate communications teams can ask for help in crafting sensitive press releases.

To safeguard against the growing risk of sensitive data leakage to AI apps and APIs, we are excited to announce a new set of capabilities to secure ChatGPT and other AI apps as part of our [Next-Generation CASB](https://www.paloaltonetworks.com/sase/next-gen-casb) solution that includes:

* **Comprehensive app usage visibility** for complete monitoring of all SaaS usage activity, including employee use of new and emerging generative AI apps that can put data at risk.
* **Granular SaaS application controls** that safely enable employee access to business-critical applications, while limiting or blocking access to high risk apps---including generative AI apps---that have no legitimate business purpose.
* **Advanced data security** that provides ML-based data classification and data loss prevention to detect and stop company secrets, personally identifiable information (PII), and other sensitive data from being leaked to generative AI apps by well-intentioned employees.

## How Palo Alto Networks Safeguards Against ChatGPT Data Leakage

If you are an existing Palo Alto Networks Prisma Access or NGFW customer, you can [purchase a license](https://www.paloaltonetworks.com/network-security/enterprise-data-loss-prevention) for our NG-CASB bundle and the new ChatGPT capabilities activate immediately. Palo Alto Networks [Next-Generation CASB](https://www.paloaltonetworks.com/network-security/next-gen-casb) customers can now help secure against the risk of data leaks to ChatGPT by providing visibility, controlling usage, and preventing sensitive data loss.

### Comprehensive App Usage Visibility

Today, any [**NGFW**](https://www.paloaltonetworks.com/network-security/next-generation-firewall), [**VM-Series**](https://www.paloaltonetworks.com/network-security/vm-series-virtual-next-generation-firewall), [**Prisma Access,**](https://www.paloaltonetworks.com/sase/access) or [**Prisma SD-WAN**](https://www.paloaltonetworks.com/sase/sd-wan) customers have complete visibility into the traffic on their network. Traffic to ChatGPT is captured through the App-ID ***openai-chatgpt*** , which can be discovered via a simple search on the firewall. Our [**Next-Gen CASB**](https://www.paloaltonetworks.com/network-security/next-gen-casb) customers now have the ability to leverage additional application-level security and privacy insights into ChatGPT.

![](https://www.paloaltonetworks.com/blog/wp-content/uploads/2023/05/word-image-292525-1.png)

### Granular SaaS Application Controls

Access to ChatGPT can be granularly controlled by user or user group, and by application function. For example, access to ChatGPT can be limited to a subset of privileged users, or the app's messaging features and API can be specifically blocked.

![](https://www.paloaltonetworks.com/blog/wp-content/uploads/2023/05/word-image-292525-2.png)

Control can be accomplished via firewall policy using App-ID control, or even via a new "artificial intelligence" SaaS category within Next-Gen CASB, Prisma Access, or NGFW.

### Advanced Data Security

Our [**Enterprise Data Loss Prevention (DLP)**](https://www.paloaltonetworks.com/network-security/enterprise-data-loss-prevention) solution performs inline, ML-powered data classification in real-time to detect and block sensitive data from leaving your network. This empowers administrators to create inline data loss prevention policies that can identify and stop sensitive data loss to generative AI apps such as ChatGPT without having to completely block access to the application.

![](https://www.paloaltonetworks.com/blog/wp-content/uploads/2023/05/word-image-292525-3.png)

Because NG-CASB with [Enterprise DLP](https://www.paloaltonetworks.com/network-security/enterprise-data-loss-prevention) is delivered across our entire network security platform, including both NGFW and Prisma Access, customers can apply a single, consistent data security policy that applies to users in the office, as well as to employees at home or abroad.

Securing your organization from sensitive data loss to ChatGPT is as easy as adding the NG-CASB bundle to your Palo Alto Networks NGFW or Prisma Access deployment, or simply adding inline DLP, and creating the policies described above.

As new generative AI apps arise on an ongoing basis, we will continue expanding our app catalog to provide comprehensive data protection for our customers. For more information on how to help stop data leakage that can arise from the use of AI-based apps like ChatGPT, [contact Palo Alto Networks](https://start.paloaltonetworks.com/sase-sales-contact-us?utm_source=panw-blog&utm_medium=blog-chatgpt) to get started today.

*** ** * ** ***

## Related Blogs

### [Cloud-delivered Security](https://www.paloaltonetworks.com/blog/sase/category/cloud-delivered-security/?ts=markdown), [Product Features](https://www.paloaltonetworks.com/blog/sase/category/product-features/?ts=markdown), [Products and Services](https://www.paloaltonetworks.com/blog/category/products-and-services/?ts=markdown), [SaaS Security](https://www.paloaltonetworks.com/blog/category/saas-security/?ts=markdown), [Use-Cases](https://www.paloaltonetworks.com/blog/sase/category/use-cases/?ts=markdown)

[#### Preventing SaaS App Misconfigurations with SSPM](https://origin-researchcenter.paloaltonetworks.com/blog/sase/preventing-saas-app-misconfigurations-with-sspm/)

### [Announcement](https://www.paloaltonetworks.com/blog/category/announcement/?ts=markdown), [Cloud-delivered Security](https://www.paloaltonetworks.com/blog/sase/category/cloud-delivered-security/?ts=markdown), [Product Features](https://www.paloaltonetworks.com/blog/sase/category/product-features/?ts=markdown), [Products and Services](https://www.paloaltonetworks.com/blog/category/products-and-services/?ts=markdown)

[#### Introducing Security for Interconnected SaaS](https://origin-researchcenter.paloaltonetworks.com/blog/sase/introducing-security-for-interconnected-saas/)

### [Cloud-delivered Security](https://www.paloaltonetworks.com/blog/sase/category/cloud-delivered-security/?ts=markdown), [Data Loss Prevention](https://www.paloaltonetworks.com/blog/category/data-loss-prevention/?ts=markdown), [Product Features](https://www.paloaltonetworks.com/blog/sase/category/product-features/?ts=markdown), [Products and Services](https://www.paloaltonetworks.com/blog/category/products-and-services/?ts=markdown)

[#### Introducing Email DLP: AI-Powered Data Protection for Email](https://origin-researchcenter.paloaltonetworks.com/blog/sase/introducing-email-dlp-ai-powered-data-protection-for-email/)

### [Data Security](https://www.paloaltonetworks.com/blog/category/data-security/?ts=markdown), [Product Features](https://www.paloaltonetworks.com/blog/sase/category/product-features/?ts=markdown), [Use-Cases](https://www.paloaltonetworks.com/blog/sase/category/use-cases/?ts=markdown)

[#### The End of Data Leaks: Modern Data Security Begins in the Browser](https://origin-researchcenter.paloaltonetworks.com/blog/sase/the-end-of-data-leaks-modern-data-security-begins-in-the-browser/)

### [Cloud-delivered Security](https://www.paloaltonetworks.com/blog/sase/category/cloud-delivered-security/?ts=markdown), [Product Features](https://www.paloaltonetworks.com/blog/sase/category/product-features/?ts=markdown), [Products and Services](https://www.paloaltonetworks.com/blog/category/products-and-services/?ts=markdown), [Use-Cases](https://www.paloaltonetworks.com/blog/sase/category/use-cases/?ts=markdown)

[#### Operational Resilience: Ensuring Business Continuity with Prisma SASE](https://origin-researchcenter.paloaltonetworks.com/blog/sase/operational-resilience-ensuring-business-continuity-with-prisma-sase/)

### [AI Security](https://www.paloaltonetworks.com/blog/category/ai-security/?ts=markdown), [Announcement](https://www.paloaltonetworks.com/blog/category/announcement/?ts=markdown), [Cloud-delivered Security](https://www.paloaltonetworks.com/blog/sase/category/cloud-delivered-security/?ts=markdown), [News \& Events](https://www.paloaltonetworks.com/blog/sase/category/news-events/?ts=markdown), [Product Features](https://www.paloaltonetworks.com/blog/sase/category/product-features/?ts=markdown), [Products and Services](https://www.paloaltonetworks.com/blog/category/products-and-services/?ts=markdown)

[#### Strata Cloud Manager: One Interface, Complete Network Security Control](https://origin-researchcenter.paloaltonetworks.com/blog/2024/11/strata-cloud-manager-one-interface-complete-network-security-control/)

### Subscribe to Sase Blogs!

Sign up to receive must-read articles, Playbooks of the Week, new feature announcements, and more.
![spinner](https://origin-researchcenter.paloaltonetworks.com/blog/wp-content/themes/panwblog2023/dist/images/ajax-loader.gif) Sign up  
Please enter a valid email.  
By submitting this form, you agree to our [Terms of Use](https://www.paloaltonetworks.com/legal-notices/terms-of-use?ts=markdown) and acknowledge our [Privacy Statement](https://www.paloaltonetworks.com/legal-notices/privacy?ts=markdown). Please look for a confirmation email from us. If you don't receive it in the next 10 minutes, please check your spam folder.  
This site is protected by reCAPTCHA and the Google [Privacy Policy](https://policies.google.com/privacy) and [Terms of Service](https://policies.google.com/terms) apply.  
{#footer} {#footer}

## Products and Services

* [AI-Powered Network Security Platform](https://www.paloaltonetworks.com/network-security?ts=markdown)

* [Secure AI by Design](https://www.paloaltonetworks.com/precision-ai-security/secure-ai-by-design?ts=markdown)

* [Prisma AIRS](https://www.paloaltonetworks.com/prisma/prisma-ai-runtime-security?ts=markdown)

* [AI Access Security](https://www.paloaltonetworks.com/sase/ai-access-security?ts=markdown)

* [Cloud Delivered Security Services](https://www.paloaltonetworks.com/network-security/security-subscriptions?ts=markdown)

* [Advanced Threat Prevention](https://www.paloaltonetworks.com/network-security/advanced-threat-prevention?ts=markdown)

* [Advanced URL Filtering](https://www.paloaltonetworks.com/network-security/advanced-url-filtering?ts=markdown)

* [Advanced WildFire](https://www.paloaltonetworks.com/network-security/advanced-wildfire?ts=markdown)

* [Advanced DNS Security](https://www.paloaltonetworks.com/network-security/advanced-dns-security?ts=markdown)

* [Enterprise Data Loss Prevention](https://www.paloaltonetworks.com/sase/enterprise-data-loss-prevention?ts=markdown)

* [Enterprise IoT Security](https://www.paloaltonetworks.com/network-security/enterprise-device-security?ts=markdown)

* [Medical IoT Security](https://www.paloaltonetworks.com/network-security/medical-device-security?ts=markdown)

* [Industrial OT Security](https://www.paloaltonetworks.com/network-security/medical-device-security?ts=markdown)

* [SaaS Security](https://www.paloaltonetworks.com/sase/saas-security?ts=markdown)

* [Next-Generation Firewalls](https://www.paloaltonetworks.com/network-security/next-generation-firewall?ts=markdown)

* [Hardware Firewalls](https://www.paloaltonetworks.com/network-security/hardware-firewall-innovations?ts=markdown)

* [Software Firewalls](https://www.paloaltonetworks.com/network-security/software-firewalls?ts=markdown)

* [Strata Cloud Manager](https://www.paloaltonetworks.com/network-security/strata-cloud-manager?ts=markdown)

* [SD-WAN for NGFW](https://www.paloaltonetworks.com/network-security/sd-wan-subscription?ts=markdown)

* [PAN-OS](https://www.paloaltonetworks.com/network-security/pan-os?ts=markdown)

* [Panorama](https://www.paloaltonetworks.com/network-security/panorama?ts=markdown)

* [Secure Access Service Edge](https://www.paloaltonetworks.com/sase?ts=markdown)

* [Prisma SASE](https://www.paloaltonetworks.com/sase?ts=markdown)

* [Application Acceleration](https://www.paloaltonetworks.com/sase/app-acceleration?ts=markdown)

* [Autonomous Digital Experience Management](https://www.paloaltonetworks.com/sase/adem?ts=markdown)

* [Enterprise DLP](https://www.paloaltonetworks.com/sase/enterprise-data-loss-prevention?ts=markdown)

* [Prisma Access](https://www.paloaltonetworks.com/sase/access?ts=markdown)

* [Prisma Browser](https://www.paloaltonetworks.com/sase/prisma-browser?ts=markdown)

* [Prisma SD-WAN](https://www.paloaltonetworks.com/sase/sd-wan?ts=markdown)

* [Remote Browser Isolation](https://www.paloaltonetworks.com/sase/remote-browser-isolation?ts=markdown)

* [SaaS Security](https://www.paloaltonetworks.com/sase/saas-security?ts=markdown)

* [AI-Driven Security Operations Platform](https://www.paloaltonetworks.com/cortex?ts=markdown)

* [Cloud Security](https://www.paloaltonetworks.com/cortex/cloud?ts=markdown)

* [Cortex Cloud](https://www.paloaltonetworks.com/cortex/cloud?ts=markdown)

* [Application Security](https://www.paloaltonetworks.com/cortex/cloud/application-security?ts=markdown)

* [Cloud Posture Security](https://www.paloaltonetworks.com/cortex/cloud/cloud-posture-security?ts=markdown)

* [Cloud Runtime Security](https://www.paloaltonetworks.com/cortex/cloud/runtime-security?ts=markdown)

* [Prisma Cloud](https://www.paloaltonetworks.com/prisma/cloud?ts=markdown)

* [AI-Driven SOC](https://www.paloaltonetworks.com/cortex?ts=markdown)

* [Cortex XSIAM](https://www.paloaltonetworks.com/cortex/cortex-xsiam?ts=markdown)

* [Cortex XDR](https://www.paloaltonetworks.com/cortex/cortex-xdr?ts=markdown)

* [Cortex XSOAR](https://www.paloaltonetworks.com/cortex/cortex-xsoar?ts=markdown)

* [Cortex Xpanse](https://www.paloaltonetworks.com/cortex/cortex-xpanse?ts=markdown)

* [Unit 42 Managed Detection \& Response](https://www.paloaltonetworks.com/cortex/managed-detection-and-response?ts=markdown)

* [Managed XSIAM](https://www.paloaltonetworks.com/cortex/managed-xsiam?ts=markdown)

* [Threat Intel and Incident Response Services](https://www.paloaltonetworks.com/unit42?ts=markdown)

* [Proactive Assessments](https://www.paloaltonetworks.com/unit42/assess?ts=markdown)

* [Incident Response](https://www.paloaltonetworks.com/unit42/respond?ts=markdown)

* [Transform Your Security Strategy](https://www.paloaltonetworks.com/unit42/transform?ts=markdown)

* [Discover Threat Intelligence](https://www.paloaltonetworks.com/unit42/threat-intelligence-partners?ts=markdown)

## Company

* [About Us](https://www.paloaltonetworks.com/about-us?ts=markdown)
* [Careers](https://jobs.paloaltonetworks.com/en/)
* [Contact Us](https://www.paloaltonetworks.com/company/contact-sales?ts=markdown)
* [Corporate Responsibility](https://www.paloaltonetworks.com/about-us/corporate-responsibility?ts=markdown)
* [Customers](https://www.paloaltonetworks.com/customers?ts=markdown)
* [Investor Relations](https://investors.paloaltonetworks.com/)
* [Location](https://www.paloaltonetworks.com/about-us/locations?ts=markdown)
* [Newsroom](https://www.paloaltonetworks.com/company/newsroom?ts=markdown)

## Popular Links

* [Blog](https://www.paloaltonetworks.com/blog/?ts=markdown)
* [Communities](https://www.paloaltonetworks.com/communities?ts=markdown)
* [Content Library](https://www.paloaltonetworks.com/resources?ts=markdown)
* [Cyberpedia](https://www.paloaltonetworks.com/cyberpedia?ts=markdown)
* [Event Center](https://events.paloaltonetworks.com/)
* [Manage Email Preferences](https://start.paloaltonetworks.com/preference-center)
* [Products A-Z](https://www.paloaltonetworks.com/products/products-a-z?ts=markdown)
* [Product Certifications](https://www.paloaltonetworks.com/legal-notices/trust-center/compliance?ts=markdown)
* [Report a Vulnerability](https://www.paloaltonetworks.com/security-disclosure?ts=markdown)
* [Sitemap](https://www.paloaltonetworks.com/sitemap?ts=markdown)
* [Tech Docs](https://docs.paloaltonetworks.com/)
* [Unit 42](https://unit42.paloaltonetworks.com/)
* [Do Not Sell or Share My Personal Information](https://panwedd.exterro.net/portal/dsar.htm?target=panwedd)
  ![PAN logo](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/pan-logo-dark.svg)
* [Privacy](https://www.paloaltonetworks.com/legal-notices/privacy?ts=markdown)
* [Trust Center](https://www.paloaltonetworks.com/legal-notices/trust-center?ts=markdown)
* [Terms of Use](https://www.paloaltonetworks.com/legal-notices/terms-of-use?ts=markdown)
* [Documents](https://www.paloaltonetworks.com/legal?ts=markdown)

Copyright © 2026 Palo Alto Networks. All Rights Reserved

* [![Youtube](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/youtube-black.svg)](https://www.youtube.com/user/paloaltonetworks)
* [![Podcast](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/icons/podcast.svg)](https://www.paloaltonetworks.com/podcasts/threat-vector?ts=markdown)
* [![Facebook](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/facebook-black.svg)](https://www.facebook.com/PaloAltoNetworks/)
* [![LinkedIn](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/linkedin-black.svg)](https://www.linkedin.com/company/palo-alto-networks)
* [![Twitter](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/twitter-x-black.svg)](https://twitter.com/PaloAltoNtwks)
* EN  
  Select your language