//Velocity Labs
All guides
Safety9 min read

What 'safe' really means with AI

Data, privacy, compliance, the lawsuit risk nobody told you about — the short, calm version.

When small business owners worry about AI safety, the worry is usually vague. Is my data safe? Could I get sued? Is the AI going to do something embarrassing?

The vague worry is the wrong worry. It's too big to act on. So most owners do one of two things — both wrong. Either they ban AI tools entirely and get left behind, or they ignore the question and hope it works out.

The real answer is more specific. There are four kinds of "safe" that matter for a small business using AI. Each has a different risk, a different fix, and a different cost of being wrong.

Safe Type 1: Your data

When you paste something into an AI tool, what happens to it?

For most consumer AI tools (free ChatGPT, free Claude, free Gemini), the default is: stored, potentially reviewed by employees, possibly used to train future models. The companies have privacy policies that are long and full of carve-outs. The short answer is: don't paste anything you wouldn't email to a stranger.

For paid business tools (ChatGPT Team or Enterprise, Claude for Work, etc.), the default flips. Your data is not used for training, is contractually protected, and is held to enterprise-grade security standards. Different tool, different rules.

For embedded AI features inside tools you already use (your CRM's AI, your help desk's AI, your accounting software's AI), the rules vary wildly. Read the data-handling section of the terms. If it's not clear, ask the vendor in writing.

What you actually need to do

  1. Identify which AI tools your team uses. Anonymous survey if needed. People are using more than you think.
  2. For each, know two things: Is conversation data used for training? Where is it stored?
  3. For anything that touches customer data, employee data, or financial data, use a paid business tier with the right contract. Pay the upgrade. It's worth it.
  4. Write a one-page AI use policy for your team. Three rules at minimum: which tools are approved, what's never to be pasted in (PII, financials, anything under NDA), and who to ask before adopting a new tool.

That's it. You don't need an enterprise security framework. You need three rules, written down, that everyone has seen.

Safe Type 2: Your customers' data

This is where small businesses get into actual trouble.

If you're in a regulated industry — healthcare, finance, legal, anything that touches children or seniors — there are specific rules about what data can be processed where, by whom, with what controls.

The short version for the most common cases:

  • Healthcare (HIPAA): Patient data cannot be sent to an AI tool unless that tool has a signed Business Associate Agreement (BAA) with you. Consumer ChatGPT does not. Some enterprise tiers do. If you don't have a BAA in hand, you cannot process patient data through that tool. Full stop.
  • Finance (varies): If you process payments or hold financial data for clients, your obligations depend on your specific role (PCI for card data, GLBA for financial info, varied state rules). Check with your compliance person before adopting any AI tool that touches this data.
  • Legal (privilege): Attorney-client privileged material pasted into a consumer AI tool may not survive that gauntlet legally. Specifically check with your bar association's current guidance, which has shifted recently.
  • General PII (US state laws): California, Colorado, Virginia, and a growing list of states have privacy laws that require specific handling of personal information. Most of these allow AI processing if you've disclosed it and have a lawful basis. The penalties for not disclosing it are not trivial.

What you actually need to do

If you're in a regulated industry, you already know it. Talk to your compliance person or industry attorney before adopting any AI tool that processes customer data. Not after. Before.

If you're not in a regulated industry but you handle PII (names + emails + phones, customer addresses, anything identifying), the safe practice is:

  • Don't send PII to AI tools unless you have a clear, documented purpose
  • When you do, use business-tier tools, not free ones
  • Tell customers in your privacy policy that you may use AI to process their information
  • Don't lie about it. Don't bury it.

Safe Type 3: What the AI says or does

The risk that's gotten the most legal attention recently isn't data leakage. It's AI making promises or statements on behalf of your business that your business is then held to.

The famous case: an airline's customer service chatbot told a customer about a bereavement discount that didn't exist. The customer relied on the chatbot's statement, booked the flight, and applied for the discount. The airline refused to honor it. The court said the airline was responsible for what its chatbot said. The chatbot was, legally, the airline.

This is a real category of risk and it's getting bigger.

If you have any customer-facing AI — a chatbot on your website, an AI voice agent on your phones, an AI that drafts and sends responses to customer inquiries — you are responsible for what it says.

What you actually need to do

  • Don't let AI quote prices, terms, or commitments without a human approving them first. The cost of a wrong number being said is much higher than the cost of one extra review step.
  • For any customer-facing AI, log every interaction. Both for legal protection and so you can catch problems before they become patterns.
  • Have a clear escalation path. When the AI doesn't know something, it should connect the customer to a human, not guess.
  • Review the AI's outputs at least weekly. Not all of them. A random sample of twenty. You'll find the patterns before they bite you.

The legal landscape here is changing fast. The simplest position: assume your AI's statements bind your business. If you're not comfortable with that, change what your AI is allowed to say.

Safe Type 4: What the AI doesn't say (the bias problem)

This one gets less attention than it should.

AI tools are trained on existing data. Existing data reflects existing bias. When an AI tool makes decisions or recommendations that touch hiring, lending, customer treatment, or service eligibility, it can perpetuate patterns that are either illegal or just bad business.

Real examples we've seen:

  • An AI resume screener trained on past hires that quietly down-ranked applicants from certain ZIP codes
  • A customer-prioritization tool that systematically deprioritized customers based on signals that correlated with race or income
  • A pricing AI that gave different quotes to different customers in ways that mapped to protected categories

You probably don't have any of these. But if your business adopts an AI tool that makes any decision about which people get what treatment, you need to ask: what is this trained on, and what could it be biased toward?

What you actually need to do

  • AI shouldn't make consequential decisions alone about hiring, firing, pricing, or who-gets-what when it touches customers. Use it as a recommendation, not a decision.
  • If you adopt a tool that does any of the above, ask the vendor specifically how they test for bias and what their published results are. A real answer is a paragraph. A non-answer is the answer.
  • Review outcomes for patterns. If your AI scheduling tool consistently routes one demographic to less convenient times, you have a problem you might not see in the dashboard.

This is the area where being a small business is actually a defensive advantage. You can do this kind of review by hand. Big companies can't.

What "safe" doesn't mean

A few things people worry about that are mostly not the right things to worry about:

  • "AI will take my job." Not the short-term risk. The short-term reality is that AI changes which parts of jobs are leverageable. Owners and managers who pay attention come out ahead.
  • "Hackers will steal data from the AI company." Possible, like any cloud service. The major AI vendors are not less secure than your existing SaaS stack. They're probably more secure. This is not the top risk.
  • "The AI will become sentient and harm us." Not in our timeframe and not in our scope. Real risks worth attention are above. Imagined risks aren't.

The one-page version

If you only have ten minutes:

  1. Audit which AI tools your team uses. Pay for business tiers for any tool that touches customer or sensitive data.
  2. Write a three-rule AI policy: approved tools, never-paste list, ask-first protocol.
  3. Don't let customer-facing AI quote, commit, or decide without human review.
  4. For consequential decisions, AI recommends; humans decide.
  5. Re-check this all once a year. The landscape is moving.

That's the entire safety framework. It is less than most consultants will sell you. It is more than most small businesses have. The middle is where you want to be.

Want a second opinion?

Thirty minutes, on us.

Tell us what you're looking at. We'll tell you if it makes sense, what to ask the vendor, or whether to skip it entirely. No pitch.

Book a call(208) 220-8174
Keep reading
Implementation

Why most AI implementations fail (and how to avoid it)

Four patterns we see over and over. Spoiler: it's almost never the technology.

6 min readRead
Tools

ChatGPT for small business: a real workflow guide

What to use it for, what to never paste into it, and the three prompts that do 80% of the work.

12 min readRead
Buying decisions

AI tools to skip in 2026

A short list, with reasoning. Updated quarterly. Includes the famous ones.

5 min readRead