AI investment is accelerating across Europe and the Middle East, and the Nordics are part of that momentum. Deloitte’s 2025 survey shows that Nordic firms are increasing their commitment to AI, which is likely to push adoption forward quickly in the near term.
This creates a strategic dilemma for tech leaders: should they prioritize speed-to-market to capture value quickly, or focus on building stronger governance to keep AI adoption under control?
So what happens when organisations let speed outrun governance in AI adoption? And what lessons should Nordic tech leaders take from the US before shadow AI becomes harder to contain?
US Leaders Choose Speed Over Governance
The US market offers an early warning. EY’s latest survey of 500 technology business leaders across the U.S., found that more than half of department-level AI initiatives operate without formal approval or governance. Rapid tech deployment is a clear trend in the US when over 85% of technology leaders say speed-to-market now takes priority over AI governance.
EY found that 97% of technology executives view broad autonomous AI as a “high” or “essential” priority for their organisation’s long-term strategy. Once AI is framed at that level, moving too slowly starts to look like a competitive risk in itself.
Leaders are not prioritizing speed because governance is unimportant. They are doing so because the perceived cost of waiting is too high.
From a CIO standpoint, it creates a structural problem. If the approved path is slower than the business can tolerate, the unapproved path becomes attractive by default.
Shadow AI Is an Operating Consequence
More than half of department-level AI initiatives in US tech are already operating without formal approval or oversight, and 78% of leaders say AI adoption is outpacing their organisation’s ability to manage the risks involved. Suggesting that when organisations prioritize speed-to-market over governance, shadow AI becomes an operating consequence.
In practice, shadow AI tends to grow for predictable reasons. Teams adopt tools that solve immediate operational problems faster than central governance can respond.
A marketing team wants faster content production, a product team wants AI embedded into workflows, and an operations function wants to automate repetitive work. Each decision may appear rational on its own, but collectively they create a layer of AI usage the enterprise may not fully see, approve or control.
Hidden Risks of Shadow AI Go Far Beyond Security
Data and IP exposure showing up
Over 45% of technology executives say their organisation experienced a confirmed or suspected sensitive data leak in the past 12 months because employees used unauthorized third-party generative AI tools. Another 39% reported confirmed or suspected proprietary IP leaks tied to the same behavior.
These figures show that shadow AI is not simply a governance concern but it is already creating measurable consequences in practice.
Bigger risk is loss of visibility and control
Once AI adoption happens outside formal oversight, organisations begin losing visibility into which tools are in use, what data is being exposed, which workflows are being shaped by AI outputs, and who is accountable when something goes wrong.
That erosion of control can become just as serious as the technical risk itself, because it weakens governance, blurs decision rights and makes trust harder to maintain across the enterprise. CIO Dive summarizes that moving too quickly can expose sensitive data, intellectual property and customer trust.
AI Sprawl Makes Standardization Harder
Another hidden risk of shadow AI is fragmentation. When teams adopt AI tools outside formal oversight, organisations do not just face isolated security incidents; they also end up with a patchwork of vendors, workflows and controls that makes enterprise governance harder, weakens consistency across teams and raises the cost of scaling AI safely.
"Organisations that standardize approved tools, strengthen monitoring and security controls and invest in workforce enablement will be better positioned to scale safely and achieve their AI ambitions with manageable risk."
Ken Englund, EY Americas Technology Sector Growth Leader
Without that standardization, shadow AI can turn into AI sprawl, a condition where adoption continues, but coherence and control erode.
Take Aways for Nordic tech leaders
For Nordic tech leaders, the priority is not to slow adoption, but to scale governance fast enough that teams do not work around it.
Standardize approved AI tools for teams
As AI demand grows, tech leaders should not leave teams to build their own tool stack. The priority is to make the approved route faster and easier than the unofficial one by defining a small set of sanctioned tools, clear use cases and lightweight adoption processes. As EY notes, organisations need to “standardize approved tools” if they want to scale safely.
Put guardrails in place before incidents happen
Shadow AI becomes far more difficult to manage once adoption spreads without visibility. At that stage, it becomes harder to track which tools are being used, what data is being shared and where accountability sits.
EY found that 45% of technology executives reported a confirmed or suspected sensitive data leak linked to unauthorized third-party generative AI tools, while 39% reported confirmed or suspected proprietary IP leaks for the same reason.
Policies alone are not enough; effective governance depends on monitoring, risk-based controls and clear rules around which data and workflows can be used with AI.
Invest in workforce enablement
Governance rarely succeeds when employees experience it as friction and unmanaged tools feel faster and easier. EY recommends investing in “workforce enablement” alongside standardized tools and stronger controls, while the Nordic AI ROI perspective in your source also points to AI fluency and human-centered adoption as traits of stronger performers. The goal is not simply to restrict behavior, but to make responsible AI adoption practical in everyday work.
Achieving AI ROI With Precio Fishbone
Achieving AI ROI is not only about choosing the right use cases or investing in the right technology. It also depends on choosing the right partner. At Precio Fishbone, we help organisations move forward with AI in a practical and sustainable way:
- Tailored to your business processes – AI is designed around how your organisation works, not the other way around
- Seamless integration – connects smoothly with your existing systems and workflows
- Full control and flexibility – you own the code and can continue developing the solution as your needs evolve
- Built to scale – solutions grow with your business and support long-term transformation
With the right partner, AI becomes more than a tool investment. It becomes a structured journey, from early exploration to deployment, adoption and long-term business value.
Share this on
Jerry Johansson
Works in IT and digital services, turning complex ideas into clear, engaging messages — and giving simple ideas the impact they deserve. With a background in journalism, Jerry connects technology and people through strategic communication, data-driven marketing, and well-crafted content. Driven by curiosity, clarity, and a strong cup of coffee.