Turns out global enterprises are more concerned with data privacy than you thought

Many times over the six years or more that we have been contributing articles here, Zoho has frequently sounded the alarm about data privacy concerns and vulnerabilities within business technology. It has, at times, felt like screaming into the void — that data privacy safeguards would forever be 'nice to haves' for businesses operating in an increasingly competitive and challenging global economy.

Six years on, amid the current flurry of AI deployments, privacy often seems less important than ever. The European Union, for example, just announced it is rolling back many of the defining protections built into GDPR and the AI Act in an effort to stimulate a stagnant economy.

This decision sends a clear message to the world about what Europe values more out of privacy or profits — but what about businesses themselves? How are they responding to the privacy challenges wrought by AI's ascent?

Earlier this year, Zoho partnered with Michael Fauscette and Arion Research to conduct a global privacy and AI survey titled, The AI Privacy Equation — Balancing Innovation with Protection in the Modern Enterprise. The results of this survey, published in September, challenge most assumptions I had about how global businesses conceive of and act on privacy measures amid growing AI adoption. Broadly speaking, the results inspire a great deal of hope in both the type and extent of AI adoption reported, as well as the level of investment in privacy measures reported.

The AI Privacy Equation surveyed 4,782 global business professionals, 35% of whom are CEOs, presidents, or owners. Arion's research spans industries and company sizes, with nearly half of all respondents working at companies with 500 or more employees. One staggering statistic that comes out of this research is that 84% of organizations surveyed (some 4,000 diverse companies), 'maintain dedicated privacy officers or teams responsible for data protection.'

Let's break down more results of the survey and preconceptions of how businesses treat data privacy while advancing their AI technology.

Privacy measures and proactive protections

According to the global survey, 41% of respondents have "enhanced their privacy measures since adopting AI technologies." This statistic, on its own, demonstrates that privacy, in the minds of business leaders, is not a barrier to innovation and growth.

Maybe the respondents are speaking hopefully, assuming some other colleague or department has privacy covered. Not so — the research is unambiguous and the professionals surveyed are clear in what privacy measures are in place at their organizations, how those activities are audited, and what their top concerns are specific to the type of AI technology that's been deployed. Remember, 84% of all businesses surveyed report having a privacy officer or team, and half of those surveyed work at companies with fewer than 500 employees.

Below are more insights about privacy, pulled from research -

• 78% of organizations express confidence in their privacy investment levels
• 33% conduct quarterly privacy impact assessments, 22.6% perform annual reviews, and 19.3% assess privacy implications before implementing any new data-handling system
• The top privacy concern reported (40%) is customer data breaches, followed by employee privacy (19%)

Global privacy vs United States

It's clear from the numbers that global privacy literacy, attention, and action among enterprises is high. Initially, I assumed these positive global percentages would go even higher by not including the United States, a free-market country defined by large-scale consolidation and relatively little regulation when it comes to the technology industry.

Wrong again. The global data, when broken down by nation, shows that of the 570 US survey respondents, 65% say their companies have enhanced privacy measures since adopting AI, compared the 41% globally. The same 84% of American organizations are building privacy infrastructure with dedicated officers and teams as reported worldwide. Adherence to privacy measures and initiatives among American organizations is particularly encouraging given that 86% of US businesses surveyed report having already implemented myriad AI solutions in workplace systems, whereas only 57% claim that level of deployment globally.

Scale and target areas of strategic AI adoption

According to the global survey, "Organizations face three primary barriers to successful AI implementation — privacy and security concerns (37.2%), lack of technical expertise (36.6%), and cost concerns (32.3%)." Skills gaps and high costs are, not surprisingly, barriers to entry for AI solutions among global businesses. The skills gap is likely why US businesses are 30% further along in their AI journeys. And, cost is cost. What is surprising, and what I find tremendously encouraging, is that the leading cause for pause in adopting modern AI tools globally is privacy and security concerns.

The leading area of strategic AI investment among respondents was customer service (45%) — not sales and marketing, HR, accounting, or IT. What this signals to me is that privacy informs and drives AI adoption for businesses more often than the reverse. Businesses understand that a core responsibility and competitive advantage of using AI to streamline operations and promote business growth is maintaining customer trust by safeguarding customer privacy.

Privacy as a cost of doing business

Before this modern age of generative AI, LLMs, chatbots, agentic AI, and the like, privacy was easy to ignore. The financial and competitive benefits of doing so far outweighed the costs of getting caught. Things have changed, and today's AI has this way of exposing cracks. Just look at Deloitte, the consultancy company being sued by the Australian government for using and not disclosing the use of AI to do its job. It seems the entire consulting sector is pot-committed to using generative AI to produce its audits and research — a widening crack that now risks becoming a canyon.

This survey tells a different story, spoken from diverse businesses actively putting privacy before profits. To quote Michael Fauscette in the report:

Businesses have moved beyond the false choice between AI advancement and privacy protection to discover something more powerful.

To be sure, they're not doing it out of the goodness of their hearts, they're doing it because jeopardizing the good name of their companies and the good will of their customers simply isn't worth it anymore.

Key survey takeaways

There are several encouraging takeaways from the AI Privacy Equation global survey. It demonstrates that privacy is today the business of all companies, not just major corporations with more to lose. Concern around the security of private data is the leading cause of slow, measured AI adoption internationally, according to the survey data. Customer service is the leading desired AI use case from respondents, yet organizations are foremost concerned about exposing customer data through use of these tools.

What I take away from this conflict is that businesses want to unleash the productivity and efficiency gains from, say, AI chatbots, but they want to get it right, because they may only have one chance. It appears that breaking customer trust and losing loyalty is only now a risk businesses are proactively avoiding. It's difficult to speculate on what global organizations would say in one year, but I don't think AI goes back in the box. I would predict more businesses would be further along in AI deployments, and I would hope that they proceed with caution and continue to bolster privacy measures in kind.