CFOtech Australia - Technology news for CFOs & financial decision-makers
Australia
Proofpoint extends oversight into Claude AI activity
Data Protection Digital Transformation Cloud Security

Proofpoint extends oversight into Claude AI activity

Fri, 22nd May 2026 (Today)
Sean Mitchell
SEAN MITCHELL Publisher

Proofpoint has integrated its platform with the Claude Compliance API, extending its security and governance controls into Claude Enterprise and Claude Platform activity.

The integration lets organisations apply existing data loss prevention policies, behavioural risk models and supervision rules to AI prompts, responses, files, projects and administrative actions inside Claude.

The product is aimed at companies that want to manage AI activity through the same control framework they already use across email, endpoint, cloud services and collaboration tools. It also gives customers visibility into Claude prompts, responses, files, activity logs and workflows.

The announcement reflects a broader shift in corporate security as AI assistants move from pilot projects into day-to-day operations. Proofpoint's 2026 AI and Human Risk Landscape Report found that nearly nine in ten global organisations have moved AI assistants beyond the pilot stage, while 42% have already experienced a suspicious or confirmed AI-related incident.

Two integrations

The first integration brings Claude Enterprise conversation content and Claude Platform activity logs into Proofpoint's data security and insider risk tools. Enterprises can use the same classifiers and policies they already deploy elsewhere to assess how staff and AI systems handle sensitive information.

AI interactions in Claude are evaluated using the same detection logic already applied to endpoint, cloud and email environments. This is intended to help security teams enforce common controls and investigate AI-assisted workflows without adding a separate stack of AI-specific tools.

The second integration extends Proofpoint's Digital Communications Governance product into Claude Enterprise. In practice, this allows organisations to apply supervision, retention, eDiscovery and investigation processes to communications involving AI assistance.

Proofpoint said the aim is to go beyond simple transcript capture by giving companies a way to review the context, intent and sequence of activity behind decisions. That is likely to matter most in regulated sectors and internal investigations, where firms need to reconstruct how a decision or communication was produced.

AI agents are now operating inside business processes with access to files, communication channels and systems previously handled only by staff. As companies expand that use, security and compliance teams are under pressure to show that AI-generated actions can be reviewed within the same governance structure as human activity.

Mayank Choudhary, Executive Vice President and General Manager of Proofpoint's Information Protection, Cloud Security, and Compliance Products Group, said this reflects the company's view of that shift.

"Organisations cannot succeed with one governance model for people and another for AI. Humans and AI agents operate in the same workflows, access the same sensitive data, and shape the same business decisions. They require one control layer. By extending our data security, insider risk, and communications governance solutions into Claude, we're enabling customers to manage AI activity through the same platform they trust to protect the rest of their enterprise. We are excited to integrate with the Claude Compliance API, which makes the integration of controls secure and scalable."

Growing oversight

The development underlines a growing effort by security vendors to bring generative AI activity under existing corporate oversight systems rather than treating it as a separate category. Many large businesses have already built controls for email archives, collaboration platforms and cloud file sharing. They now face the question of how to apply those controls when workers rely on AI assistants to draft, summarise, analyse and trigger actions.

For compliance teams, the issue is not limited to whether sensitive data enters an AI system. It also extends to record-keeping, supervision and post-event review, particularly when AI tools influence customer communications, internal approvals or operational decisions.

The integrations are available to Proofpoint and Anthropic customers that deploy Claude Enterprise and Claude Platform in Anthropic-hosted environments. The system is designed to let organisations govern both human and AI activity through a single control layer across enterprise environments.

Related stories
Meta AI agent exposes sensitive data in internal leak
Nearly half of Australian firms hit by AI incidents
Proofpoint extends controls into Claude Enterprise
Exclusive: Arctic Wolf builds out agentic security
Experts warn passwords no longer sufficient in AI era
Top stories
Skillsoft appoints Ron Kisling as Chief Financial Officer
Tariff risk pushes firms towards faster freight modes
Education bodies boost AI budgets despite poor returns
eflow & Iress frame trading compliance partnership
REA adds property walkthrough reels to app video hub