Privacy & Security

Encompasses risks to personal privacy and system security from AI. This spans unauthorized inference or leakage of sensitive information, as well as vulnerabilities in AI systems that can be exploited through adversarial attacks, data breaches, or manipulation of model behavior.

Incidents up 93% since 2024
13% average extreme risk across subdomains under current trajectory
High average expert concern (13.3%) — among the most flagged risk domains
332 governance documents adopted or proposed in 2025–2026
54% of incidents involve AI system as the causal entity
OpenAI is the most frequently cited developer (21 incidents, 19%)

192 risks(5th)

112 incidents(5th)

953 governance(3rd)

13.3% expert concern(4th)

2.1 Loss of privacy

80 risks 88 incidents 414 governance10.5% expert concern

View subdomain details →

2.2 AI security vulnerabilities

112 risks 24 incidents 539 governance16.2% expert concern

View subdomain details →

Governance vs. Incident volume

Well-covered (-0.05)

Well-governedUnder-governed

Incident volume relative to governance coverage; each dot is one of 7 domains

Dataset Drilldown

Domain Severity Overview (2025-2030)

Severity by subdomain (current trajectory)

Negligible

Minor

Substantial

Severe

Catastrophic

expert concern %

Entity

Who or what caused the harm

Human

AI system

Other

Not coded

Intent

Whether the harm was intentional or accidental

Intentional

Unintentional

Other

Not coded

Timing

Whether the risk is pre- or post-deployment

Pre-deployment

Post-deployment

Other

Not coded

Browse all 199 risks →

Recent Incidents

Ethical hacker Nisarga Adhikary exposed multiple security vulnerabilities in India's Central Board of Secondary Education's OnMark digital evaluation platform, revealing that 9.3 million rows of sensitive student data including answer sheets were unprotected and accessible without authentication.

HumanUnintentionalPost-deployment

Developers: Large Language Model Developers, Google

Deployers: Government Of India, Coempt Eduteck, Central Board Of Secondary Education

View on AIID View full details →

The Galileu AI system, developed by the Brazilian Regional Labor Court, successfully detected and prevented a prompt injection attack in a legal petition that contained hidden instructions attempting to manipulate the AI's analysis.

HumanIntentionalPost-deployment

Developers: Tribunal Regional Do Trabalho Da 4a Regiao, Conselho Superior Da Justica Do Trabalho

Deployers: Conselho Superior Da Justica Do Trabalho, Tribunal Regional Do Trabalho Da 8a Regiao, 3a Vara Do Trabalho DE Parauapebas, Judicial System Of Brazil, Brazilian Labor Courts

View on AIID View full details →

A Meta AI agent provided inaccurate technical advice on an internal forum, leading to a security incident that temporarily allowed employees unauthorized access to sensitive company and user data.

AI systemUnintentionalPost-deployment

Developers: Meta

Deployers: Meta

View on AIID View full details →

Browse all 112 incidents →

Recent Governance Documents

Authorize the Secretary of Defense to establish AI Institutes focused on national security. Directs support for interdisciplinary AI research, partnership, innovation ecosystems, and workforce development.

EnactedHard LawAI Systems

Source AGORA

View full details →

Requires the Secretary of Defense to develop requirements ensuring DoD-funded biological data resources facilitate AI use. Defines "qualified biological data," includes metrics for data quality, cybersecurity safeguards, privacy protections, and allows national security exceptions. Requires the Secretary to consult relevant sectors about the feasibility of new requirements and review existing frameworks.

EnactedHard Law

Source AGORA

View full details →

Requires the Secretary of Defense to develop a cybersecurity policy for AI/ML systems no later than 180 days after the act is passed. Develop a comprehensive review of the effectiveness of the AI/ML policies. Addresses potential security risks, implements methods to mitigate those risks, and establishes standard policy. Requires a comprehensive report of the threats and cybersecurity measures by August 31, 2026.

EnactedHard LawAI Systems

Source AGORA

View full details →

Browse all 649 documents →

Subdomain Comparison

Each metric scaled to 0–100% of its peak across all 24 subdomains, so you can compare relative standing across different scales.

Risks

Incidents

Governance

Expert Concern (%)

Dataset Drilldown

Domain Severity Overview (2025-2030)

Severity by subdomain (current trajectory)

Negligible

Minor

Substantial

Severe

Catastrophic

expert concern %

Entity

Who or what caused the harm

Human

AI system

Other

Not coded

Intent

Whether the harm was intentional or accidental

Intentional

Unintentional

Other

Not coded

Timing

Whether the risk is pre- or post-deployment

Pre-deployment

Post-deployment

Other

Not coded

Browse all 199 risks →

Recent Incidents

HumanUnintentionalPost-deployment

Developers: Large Language Model Developers, Google

Deployers: Government Of India, Coempt Eduteck, Central Board Of Secondary Education

View on AIID View full details →

HumanIntentionalPost-deployment

Developers: Tribunal Regional Do Trabalho Da 4a Regiao, Conselho Superior Da Justica Do Trabalho

Deployers: Conselho Superior Da Justica Do Trabalho, Tribunal Regional Do Trabalho Da 8a Regiao, 3a Vara Do Trabalho DE Parauapebas, Judicial System Of Brazil, Brazilian Labor Courts

View on AIID View full details →

A Meta AI agent provided inaccurate technical advice on an internal forum, leading to a security incident that temporarily allowed employees unauthorized access to sensitive company and user data.

AI systemUnintentionalPost-deployment

Developers: Meta

Deployers: Meta

View on AIID View full details →

Browse all 112 incidents →

Recent Governance Documents

EnactedHard LawAI Systems

EnactedHard Law

EnactedHard LawAI Systems

Source AGORA

View full details →

Browse all 649 documents →

Subdomain Comparison

Each metric scaled to 0–100% of its peak across all 24 subdomains, so you can compare relative standing across different scales.

Risks

Incidents

Governance

Expert Concern (%)

Privacy & Security

Governance vs. Incident volume

Dataset Drilldown

1507. COEMPT Quality Assurance Engineers Allegedly Violated Indian CBSE Student Data Privacy Rights by Processing It with Google Gemini

1497. Hidden Prompt Injection in Brazilian Labor-Court Petition Reportedly Tried to Manipulate Galileu

1471. Meta Internal AI Agent Reportedly Gave Advice That Allegedly Exposed Sensitive Data to Unauthorized Employees

Recent Governance Documents

FY2026 NDAA, Section 224 ("National Security and Defense Artificial Intelligence Institute")

FY2026 NDAA, Section 245 ("Biological data for artificial intelligence")

FY2026 NDAA, Section 1512 ("Artificial intelligence and machine learning security in the Department of Defense")

Subdomain Comparison

Privacy & Security

Governance vs. Incident volume

Incidents vs Governance

Dataset Drilldown

1507. COEMPT Quality Assurance Engineers Allegedly Violated Indian CBSE Student Data Privacy Rights by Processing It with Google Gemini

1497. Hidden Prompt Injection in Brazilian Labor-Court Petition Reportedly Tried to Manipulate Galileu

1471. Meta Internal AI Agent Reportedly Gave Advice That Allegedly Exposed Sensitive Data to Unauthorized Employees

Recent Governance Documents

FY2026 NDAA, Section 224 ("National Security and Defense Artificial Intelligence Institute")

FY2026 NDAA, Section 245 ("Biological data for artificial intelligence")

FY2026 NDAA, Section 1512 ("Artificial intelligence and machine learning security in the Department of Defense")

Subdomain Comparison

Incidents vs Governance