Most Shadow AI coverage in 2026 focuses on Layer 1 — the consumer AI tools your employees open in a browser tab. ChatGPT, Claude, Gemini, Perplexity. The tools you can name. They are not the whole picture, and in many mid-market organizations they are not even the largest exposure surface.
Layer 2 is embedded AI inside the SaaS you already pay for — Microsoft Copilot inside Microsoft 365, Salesforce Einstein, Slack AI, Notion AI, HubSpot Breeze, Zoom AI Companion, Atlassian Intelligence. The AI you did not separately procure but turned on with a checkbox. Layer 3 is BYOD (bring-your-own-device) AI — employees authenticating to AI services with personal credentials outside any IT control. Layer 4 is agentic AI — MCP (Model Context Protocol) servers, A2A (agent-to-agent) discovery chains, autonomous agents deployed via Claude Agent SDK or OpenAI Agents SDK or Google’s Agent Platform that invoke tools, call other agents, retain memory, and act with delegated authority. Most security tools — DLP (data loss prevention), CASB (cloud access security broker), SSE (security service edge) — enforce perimeter controls at Layer 1. AI-SPM (AI Security Posture Management) platforms like Wiz, Palo Alto AI Access, and Cisco AI Defense observe runtime activity inside Layer 4. Observability is not governance. Enforcement is not governance. Neither produces the regulation-anchored AUP, the Executive Risk Report, the Board Memo, or the third-party-verifiable artifact a board signs and an underwriter files. Layers 2 and 3 sit between perimeter-enforcement and runtime-observability and are, in most mid-market organizations, the bigger, mostly invisible surface.
What to do. Audit all four layers, not just the browser tab. SanctumShield’s multi-LLM agentic assessment covers Layer 1 (direct AI tools registry, 60+ pre-rated services), Layer 2 (embedded AI inside SaaS catalog), Layer 3 (BYOD authentication risk model), and Layer 4 (deployed agent governance per Section 14 of the generated AUP) — in a single 10-minute guided assessment, with the regulatory clause anchoring auditors and underwriters require. Next step: see the four-layer model rendered in a real Acme Health audit at /sample-outputs.