AboutBlogBusiness First AIFounder FreedomBook a conversation

Safer ways to use AI without exposing client data

May 17, 2026
Person reviewing documents at a desk with a laptop and notebook, natural window light
TL;DR

Using AI safely in a UK services firm means knowing that UK GDPR applies to every AI tool your staff use, not just the ones you have approved. Start with a short written policy covering approved tools and prohibited uses, move to business-grade accounts with proper data terms, and brief your team on what they cannot paste into prompts. The risk is controllable; the gap is usually the absence of any framework at all.

Key takeaways

- UK GDPR applies to AI use with no exemption: your firm is the data controller when staff paste client data into a chatbot, regardless of which tool or tier they use. - The main exposure points are free consumer AI accounts used without policy and staff pasting raw client data into prompts without first removing identifiable information. - Business-grade accounts such as ChatGPT Team and Microsoft 365 Copilot include contractual commitments that inputs are not used for model training; free accounts typically do not. - Risk increases significantly when AI moves from assistive use (drafting, summarising) to decision-support (screening candidates, assessing creditworthiness), where UK GDPR's automated decision-making rules apply. - The practical starting sequence is: write a short AI policy, standardise on business-grade accounts, brief staff on what they cannot paste, run Data Protection Impact Assessments for higher-risk uses, and review the setup every six months.

A consultant at a small professional services firm spent an afternoon using a free AI chatbot to improve client reports. The outputs looked good. The problem came later, when she realised she had named the clients and pasted in their financial figures, and the tool had no contractual commitment about what the provider does with input data. No policy existed to check. Nobody had sanctioned the account.

That situation is more common than the alternatives. The ICO has stated clearly that AI carries no exemption from UK GDPR: the same principles that apply to any other form of data processing apply the moment a staff member pastes client information into a chatbot. Your firm is the data controller regardless of whose server the tool runs on.

The practical question is what to do about it.

What does “safer AI use” actually mean?

“Safer AI use” means running AI tools in ways that keep your firm in control of where data goes, who can use it, and what happens to it afterwards. The goal is the productivity gain without unnecessary exposure. The ICO, NCSC, and UK data protection specialists all point to the same baseline: an approved tools list, a short written policy, and business-grade accounts rather than free personal ones.

That baseline is reachable for a 5-50 person services firm without a dedicated compliance team. The work is getting the sequence right.

Why does data exposure matter even for a small services firm?

The ICO applies UK GDPR regardless of company size. A 12-person accountancy practice carries the same legal obligations when processing personal data as a large institution. The penalty range reaches up to £17.5 million or 4% of global annual turnover for serious infringements, including inadequate security and unlawful processing. Those figures sit well above what a typical services firm could absorb without significant disruption.

The practical risk for a small services firm goes beyond a fine. Staff using free AI accounts without a policy can expose client information in ways that damage trust before any regulator gets involved. Mishcon de Reya, advising UK law firms, has made the point that uploading client documents to public generative AI tools can breach confidentiality obligations and UK GDPR simultaneously.

There is a quality risk alongside the compliance risk. A US law firm was sanctioned in 2023 after its lawyers submitted court filings containing fabricated case citations generated by ChatGPT. The filings looked right until the opposing side tried to find the cases. Verifying AI output before it reaches anyone outside the firm is the minimum standard for responsible use.

Where are the main exposure points in everyday AI use?

The two main exposure points in a typical services firm are free consumer AI accounts used without business controls, and staff pasting raw client or staff data into prompts without removing identifiable details first. Both are addressable. The harder one is the accounts problem: staff will reach for the tools they already use at home, and those are usually free-tier tools with less protective data terms.

Business-grade accounts change the picture. OpenAI’s ChatGPT Team and Enterprise plans include a contractual commitment that inputs are not used to train models by default. Microsoft 365 Copilot processes data within the customer’s Microsoft tenant, subject to enterprise terms. These commitments matter because, as the data controller, your firm needs a clear answer to where client information goes after a prompt is submitted.

Data minimisation also reduces exposure at the point of use. UK GDPR requires that personal data processed is limited to what is necessary. The practical application is straightforward: before pasting anything into an AI tool, consider whether the client can be anonymised, the figures rounded, or the name removed. A prompt asking for help summarising a client situation rarely needs the client’s name to produce a useful answer.

The Samsung case from April 2023 shows the speed at which this can go wrong. Engineers pasted proprietary source code and internal meeting notes into free ChatGPT. The company subsequently had to restrict employee use of generative AI tools across the board. The data had already left. A written policy and a business-grade account, introduced before that first use, would have changed the outcome.

When does the level of risk change?

The risk level shifts based on what the AI is doing, not how sophisticated it looks. Using AI to draft emails, summarise documents, or generate marketing copy sits at the lower end of the compliance spectrum. Using it to screen job applicants, assess customer creditworthiness, or price individual clients sits at the higher end, where UK GDPR’s automated decision-making rules apply and documented controls become mandatory.

The ICO uses Data Protection Impact Assessments to govern higher-risk uses. A DPIA is required, rather than recommended, when AI processing is likely to result in high risk to individuals. The ICO publishes an AI risk toolkit specifically for this purpose. For small services firms starting out with assistive AI, the DPIA question won’t arise immediately, but knowing the threshold helps you recognise when you’re approaching it.

The EU AI Act is also relevant for firms with EU-based clients. It classifies AI used in areas including employment, credit scoring, and access to essential services as high-risk, with stricter obligations around human oversight and documentation. UK financial services firms are watching the FCA’s approach to AI model governance as a directional signal for where broader expectations are heading.

What should you put in place first?

The sequence that UK data protection specialists recommend for a small services firm starts with a short written AI policy covering which tools are approved, what staff must never paste into any AI system (client names, financial data, HR records), and who to contact when someone wants to try a new tool. UK-specific templates are available; you do not need to write it from scratch.

The second step is standardising on a small number of business-grade accounts. Choose your tools deliberately rather than letting the business accumulate a long list. Ensure the “do not train on my data” option is active where available, and turn on logging and access controls. Microsoft 365 Copilot and ChatGPT Team are the most common starting points for UK services firms, and both offer contractual data protections that free accounts do not.

Third, brief your staff. This does not need to be a formal course. A short session covering what they can and cannot paste into AI tools, how to check AI-generated content before it reaches a client, and where to raise questions addresses the large majority of practical risk.

Fourth, run a Data Protection Impact Assessment for any AI that touches personal data at scale or influences decisions about specific individuals. The ICO’s AI risk toolkit guides you through the documentation. Fifth, revisit the whole setup every six months: what tools have staff adopted since your last review, and does the policy still reflect what is actually happening?

The question many founders reach for is “how do I use AI without sharing data?” The honest answer is that you manage what is shared rather than eliminating it entirely. A client’s name in a prompt is not automatically a problem if the account has the right terms, the firm has a written policy, and staff know the rules. The work is building the controls that make that judgement possible.

Sources

- ICO (2024). AI and data protection. Guidance on applying UK GDPR principles to artificial intelligence, including documentation requirements, DPIAs, and individual rights. https://ico.org.uk/for-organisations/uk-gdpr-guidance-and-resources/artificial-intelligence/ - ICO (2024). Data protection impact assessments. Statutory guidance on when DPIAs are required and how to conduct them, including for AI systems that process personal data at scale. https://ico.org.uk/for-organisations/uk-gdpr-guidance-and-resources/accountability-and-governance/data-protection-impact-assessments/ - ICO (2024). Fines and penalties under UK GDPR. Summary of the ICO's enforcement powers, including the maximum fine of £17.5 million or 4% of global annual turnover for serious infringements. https://ico.org.uk/for-organisations/uk-gdpr-guidance-and-resources/introduction-to-data-protection/fines-and-penalties/ - NCSC (2023). Assessing innovative technologies in cyber security. Guidance on managing security risks introduced by AI, including monitoring, logging, and access control recommendations for organisations. https://www.ncsc.gov.uk/whitepaper/assessing-innovative-technologies-in-cyber-security - IBM Security (2023). Cost of a Data Breach Report 2023. Primary research showing organisations with extensive security AI and automation identified and contained breaches 108 days faster and at USD 1.76 million lower cost than those without. https://www.ibm.com/reports/data-breach - Microsoft (2024). Privacy and data protections in Microsoft 365 Copilot. Official documentation confirming Copilot processes data within the customer's Microsoft tenant under enterprise data protection terms. https://learn.microsoft.com/en-us/copilot/privacy-and-protections - Data Protection People (2024). AI and data protection for UK businesses. SME-focused guidance on AI registers, acceptable use policies, supplier due diligence, and phased compliance controls for small organisations. https://dataprotectionpeople.com/resource-centre/ai-and-data-protection-for-uk-businesses/ - ComparetheCloud (2024). AI acceptable use policy for small UK businesses: free template and checklist. Template covering approved tools lists, prohibited uses, and subscription-tier distinctions relevant to UK data protection obligations. https://www.comparethecloud.net/articles/ai-acceptable-use-policy-small-uk-business-free-template-checklist - Mishcon de Reya (2023). AI and client confidentiality: what law firms need to know. Guidance from a UK law firm on the confidentiality and GDPR risks of uploading client documents to public generative AI tools. https://www.mishcon.com/news/ai-and-client-confidentiality-what-law-firms-need-to-know - The Guardian (2023). Samsung bans use of generative AI tools like ChatGPT after data leak. Reporting on the April 2023 incident where Samsung engineers pasted proprietary code and internal meeting notes into ChatGPT. https://www.theguardian.com/technology/2023/may/02/samsung-bans-use-of-generative-ai-tools-like-chatgpt-after-data-leak

Frequently asked questions

Can I use free ChatGPT for work without breaking GDPR?

Using a free consumer ChatGPT account with client or staff personal data puts your firm in a difficult position. Free tiers have historically had looser data terms than business accounts, and your firm remains the data controller regardless of which platform you use. The safer approach is a business-grade account such as ChatGPT Team or Enterprise, which includes a contractual commitment that inputs are not used for model training, combined with a written policy on what staff can paste into prompts.

What is a Data Protection Impact Assessment and does my firm need one?

A DPIA is a documented assessment of what personal data an AI system processes, why, the risks involved, and how those risks are being managed. Under UK GDPR it is required when AI processing is likely to result in high risk to individuals, which typically means uses that influence decisions about people at scale, such as screening candidates or assessing creditworthiness. For assistive AI use such as drafting or summarising, a DPIA is usually not required from the outset.

How do I train my team to use AI without putting data at risk?

A short briefing is sufficient for most teams: which tools are approved, what staff must not paste into any AI system (client names, financial records, HR data), how to sense-check AI output before it reaches a client, and who to contact with questions. Staff do not need technical knowledge to apply these rules. The more common problem is that they are unaware the rules exist, which is a policy gap rather than a training gap.

Written by Dr Dave Heath, AI consultant and business strategist.

This post is general information and education only, not legal, regulatory, financial, or other professional advice. Regulations evolve, fee benchmarks shift, and every situation is different, so please take qualified professional advice before acting on anything you read here. See the Terms of Use for the full position.

Ready to talk it through?

Book a free 30 minute conversation. No pitch, no pressure, just a useful chat about where AI fits in your business.

Book a conversation

Related reading

A person at a desk reviewing handwritten notes beside an open laptop

Prompt patterns that help LinkedIn posts sound human

The difference between LinkedIn content that sounds like a real practitioner and content that reads like an AI press release comes down to how well you brief the model.

A person at a desk with an open notebook and laptop, looking thoughtfully at handwritten notes

Picking AI tools for slower, higher-quality thinking

AI tools split into two camps: those that execute tasks faster and those that help you think harder. Here's how to tell which one you actually need.

A person sitting at a desk with a laptop and open notebook, pausing in thought with a pen in hand

How to work with AI as a better thought partner

A practical guide for service firm owners on using AI as a structured thinking partner for strategy, pricing and decisions, not just as a content tool.

If any of this sounds familiar, let's talk.

The next step is a conversation. No pitch, no pressure. Just an honest discussion about where you are and whether I can help.

Book a conversation
AboutBlogBusiness First AIFounder FreedomContactBook a conversation
Privacy PolicyTermsCookie Policy

© 2026 Larocca Consulting Ltd