AI assistants installed outside the approved catalog
Teams add Copilot, ChatGPT Sidebar or summarizers without security validation and without a named business owner.
Enterprise browser security
Find AI assistants, cookie permissions, all-sites access and shadow AI signals before they expose prompts, sessions and customer data.
The product focuses on the situations where an apparently useful AI extension actually opens an exposure path for sessions, prompts and business data.
Teams add Copilot, ChatGPT Sidebar or summarizers without security validation and without a named business owner.
The `<all_urls>` permission turns a convenient extension into a cross-application observation point across SaaS, CRM, intranet and customer portals.
Cookies, history, scripting, nativeMessaging or webRequest are often scattered across manifests and rarely reviewed consistently.
Once tolerated, risky extensions remain active for months without expiration date, owner review or exception log hygiene.
AI extension evaluation methodology, normative references and an operational decision matrix.
Weights below provide a consistent baseline to decide allow, exception workflow or block.
Open full compliance pageThe goal is not a raw inventory. The output needs to be usable in a security steering committee, browser governance review or workplace action plan.
The product is most useful on the real cases security teams already see on managed Chrome, Edge or Brave fleets.
Context: The workstation contains ChatGPT Sidebar, Grammarly, Loom and an internal CRM helper with broad access.
Risk highlighted by the tool: The mix of marketing prompts, SaaS cookies and a high-privilege internal helper creates a broad exposure surface.
Suggested decision: Freeze the CRM helper, restrict AI extensions to the approved catalog and require an owner for every writing-related use case.
Context: Agents install summarization extensions to accelerate ticket handling and back-office console reading.
Risk highlighted by the tool: Extensions can read customer data and browser history across support consoles.
Suggested decision: Move to an approved list, remove all-sites access and create a monthly review of active exceptions.
Context: An M&A project triggers a sudden spike of temporary AI extensions across several browsers.
Risk highlighted by the tool: Teams upload confidential material into unmanaged assistants while urgent exceptions multiply.
Suggested decision: Run a flash audit, block new installations and only allow extensions tied to a validated project owner.
These are the most common framing questions before a first audit.
CISOs, workplace teams, enterprise browser owners and compliance leaders who need to control AI assistants on employee endpoints.
No to get started. The product works from MDM exports, Chrome Enterprise, Edge Management or consolidated CSV/JSON lists.
An allowlist states what should be allowed. The audit reveals actual permissions, AI signals and exceptions that drift over time.
No. The score prioritizes and standardizes the review, but the final block or exception decision remains with the customer organization.
Describe your fleet, browsers and current SASE/EDR tools. The request is stored and can be routed by SMTP when configured.