| ▲ | moomoo11 4 hours ago | |
This is why I really think for AI tools it’s probably good to just start fresh. Like our emails, files, other accounts and stuff. That’s “ours” and personal. Even for business, that should be off limits. What we do give to AI should be brand new blank slates. Like say I roll out an AI solution in March 2026. That is the seed from which everything we do using AI will work. To get there we could move data we want to the new environment. But no access to any existing stuff. We start fresh. If it needs to take any actions on behalf of our existing accounts it needs to go through some secure pipeline where it only tells us intent, without access. | ||
| ▲ | cobbal 3 hours ago | parent [-] | |
This is cutting off the "Access to private data" leg of the lethal trifecta. One of the few ways to actually make an agent secure. | ||