ethira
FeaturesAboutBlogSign inBook a demo

Insights & research

Ethira Blog

Research, regulatory analysis, and engineering notes from the Ethira team. Built for CISOs, GRC leads, and the people building AI governance programmes.

Featured

Research7 min read

2nd Party Risk: Same Fundamentals, Shifting Ground

AI-assisted development tools have created a new asset class that sits between first-party and third-party risk. The fundamentals of security still apply — discover, review, monitor, prove — but the surface they must cover has fundamentally changed.

Jasper Mills
Jasper MillsCo-Founder & CEO, Ethira
28 May 2026Read report
Research4 min read

Governance Isn’t a Dashboard. It’s Instrumentation.

Policy-first AI governance fails because you are asked to govern something you cannot see. The case for building real accountability from discovery, observability, and proof — not frameworks and dashboards.

Jasper Mills
Jasper MillsCo-Founder & CEO, Ethira
22 May 2026Read report
Regulatory8 min read

Shadow Subcontractors: The Hidden Vendors Inside Your SaaS Tools

Every SaaS tool your employees use talks to dozens of other services you never vetted. This post explains why those hidden fourth-party vendors are a compliance liability under GDPR and DORA, and how the Ethira browser extension surfaces them automatically.

Lucas de Araújo
Lucas de AraújoCo-founder & CTO, Ethira
15 May 2026Read report
How-to7 min read

How to Find Shadow AI and Shadow SaaS in Your Organisation

The average enterprise runs 261 unsanctioned applications before it knows they exist. This guide explains how SSO integration and a browser extension surface every AI and SaaS tool your workforce is using — and who owns each one.

Lucas de Araújo
Lucas de AraújoCo-founder & CTO, Ethira
14 May 2026Read report
Technical6 min read

How to Connect the Ethira MCP to Claude and Manage Your Inventory

A five-minute walkthrough for connecting your Ethira workspace to Claude.ai as a custom connector, then using Claude to keep your systems, products, datasets, and microservices inventory current — without leaving the chat.

Lucas de Araújo
Lucas de AraújoCo-founder & CTO, Ethira
14 May 2026Read report
Technical8 min read

When a Company MCP Server Meets a Personal ChatGPT Account

MCP lets any employee connect a corporate SaaS — GitHub, Jira, Salesforce — to their personal ChatGPT account in under two minutes. This post explains why traditional security tools miss it entirely, and how the Ethira browser extension detects it through five correlated browser-level signals.

Lucas de Araújo
Lucas de AraújoCo-founder & CTO, Ethira
14 May 2026Read report
How-to5 min read

Govern MCP Tools from Slack: Request, Review, Onboard, and Offboard Without Leaving the Channel

MCP tool sprawl is the fastest-growing source of shadow AI risk in agent-first organisations. Ethira's Slack integration puts the full tool lifecycle — request, review, approve, onboard, and offboard — into the channel your team already works in, with a complete audit trail behind every decision.

Lucas de Araújo
Lucas de AraújoCo-founder & CTO, Ethira
22 May 2026Read report

See it in action

Govern every AI tool in your org.
Before the regulator does.

Book a demoTry it free
ethira

Govern every asset. Automatically.

Platform

  • Features
  • AI Governance

Use Cases

  • Shadow AI Discovery
  • AI Agent Governance
  • Third-Party Risk (TPRM)
  • ICT Risk Management
  • DORA RoI Reporting

Company

  • About
  • Blog
  • FAQ
  • Brand
  • Privacy Policy
  • Terms of Service
  • Subprocessors
  • Contact

© 2026 Ethira AB · Luntmakargatan 26, 111 37 Stockholm, Sweden

Privacy PolicyTerms of ServiceSubprocessors