An outline of the material risks of security breaches for companies and the salient human rights risks for stakeholders whose sensitive data has been compromised.

An overview of the ways in which AI adoption increases the attack surface,
empowers attackers, and complicates post-breach recovery.

Examples of recent AI-related breaches across key sectors: finance, telecom,
healthcare, and tech.

The points of vulnerability companies should be aware of, including unsanctioned employee AI use (“shadow AI use”), data sources, third parties, model design, and excessive agency.

Best practices for good governance of AI-related security risks that all companies implementing AI should be adopting.

Investor engagement questions for assessing AI privacy and security risks among portfolio companies.