In March 2023, Samsung allowed its engineers to use ChatGPT. Within approximately nineteen days, three separate data leaks had occurred. Engineers pasted proprietary semiconductor source code into ChatGPT to check for errors. A second uploaded equipment defect detection code seeking optimization advice. A third converted confidential internal meeting recordings into transcripts using an AI transcription tool, then fed those transcripts to ChatGPT to generate meeting minutes. All of it traveled to OpenAI's public servers, outside Samsung's security perimeter. Samsung banned ChatGPT and other generative AI tools company-wide in May 2023.

On June 21, 2026, Samsung announced it is deploying ChatGPT Enterprise to all employees in South Korea and its global Device eXperience (DX) division — reportedly approximately 125,000 people, in one of OpenAI's largest enterprise rollouts to date. The deployment includes Codex for software development workflows and spans product engineering, marketing, and manufacturing. Training for the global workforce is expected to complete by end of 2026. What changed between the ban and this rollout is not ChatGPT. It's the enforcement layer Samsung put between its employees and the model.

Why the Ban Was the Wrong Fix

Banning AI tools does not eliminate the underlying risk. It eliminates visibility into it.

In the three years Samsung blocked ChatGPT, employees continued using AI assistants through browser extensions, personal accounts, and third-party tools that never touched the corporate network. The proprietary code and meeting notes kept moving. Samsung just had no record of any of it.

The structural failure in 2023 was not that ChatGPT existed. It was that there was no content enforcement layer between employees and the model. When an engineer pasted semiconductor source code into a chatbot, no system evaluated what was in that paste, classified it as proprietary, or blocked the call before it went out. The ban created the appearance of governance while leaving the actual risk unaddressed.

This is the pattern that repeats in every enterprise AI ban. Organizations treat access as the control surface and miss that the real control surface is the data traveling through AI systems. Restricting access to one tool redirects that data to a less visible one. The risk doesn't go away — the audit trail does.

What Enterprise AI Content Policy Actually Requires

An enterprise AI content policy is a governance control that evaluates the data in an AI call before the call leaves the perimeter, applies a classification to that data, and enforces a rule — block, redact, log, or escalate — based on the classification. This is distinct from post-hoc DLP alerting, which detects sensitive data after it has already traveled to an external model. Pre-execution enforcement acts before the exposure. Post-hoc detection reports on it.

Enterprise AI governance at the data layer requires three things: classification, enforcement, and audit.

Classification means the system knows what kind of data is in a given request before it leaves the perimeter. Source code, internal financial projections, meeting transcripts, customer records — these need to be classified at the point of call. Classification can be rule-based (pattern matching against known code syntax, IP-specific strings), semantic (ML-based identification of proprietary language), or both. The Samsung 2023 incidents — source code paste, equipment code upload, meeting transcript processing — would each have been classifiable at the call layer.

Enforcement means the system acts on that classification in real time. If an employee pastes source code into a ChatGPT session and that paste matches a Content policy rule, the call is blocked, the sensitive fragment is redacted, or the request is routed to human review before it goes anywhere. Pre-execution enforcement is the difference between preventing a leak and logging one.

Audit means there is a durable record of every AI call: what was sent, what was blocked, what was allowed through, and which policy decision applied. Without it, you cannot remediate after an incident, you cannot demonstrate compliance to a regulator, and you cannot determine whether your controls are actually working.

Samsung's 2026 deployment reportedly includes end-to-end encryption, data isolation, and real-time data loss prevention monitoring — enterprise controls built at the ChatGPT platform tier. What they do not cover is the application tier: the custom AI agents, internal copilots, and CI/CD integrations that enterprise teams build on top of the model. Platform-tier controls govern the ChatGPT Enterprise interface. They do not extend to every AI call your company makes.

What Teams Should Check Before an Enterprise AI Rollout

Before scaling an AI deployment to hundreds or thousands of employees, close these gaps first:

Determine whether your controls are pre-execution or post-execution. Log-based DLP that alerts after sensitive data has traveled to an external model is useful for forensics. It is not useful for preventing the Samsung 2023 incidents. Enforcement needs to sit before the LLM call, not after it.

Map your full AI call surface, not just your enterprise contracts. ChatGPT Enterprise's controls apply to ChatGPT Enterprise. If developers are calling Claude or GPT-4o through direct API access, or using a third-party coding copilot in their IDE, or running internal agents against production data — those calls fall outside the enterprise platform's scope. Document every path through which AI calls leave your perimeter.

Verify your data classification logic handles code. Standard DLP systems are built around documents and email. Proprietary source code has different lexical and structural patterns. Confirm your classification rules are explicitly tested against developer workflows: copy-paste from IDE, inline code review queries, and upload of scripts or notebooks.

Check whether you have an AI-specific audit trail. Standard security logs capture network-level events. AI governance audit trails capture what was in the prompt, what the model returned, and what policy decision was applied to the call. These are different records. You need both, and you need the latter to exist before a regulator asks for it.

How Waxell Runtime Handles This

The gap Samsung encountered in 2023 — and that most enterprises still face when deploying AI at scale — is that governance tools have historically operated at the UI layer, not the execution layer. When AI calls happen through a custom integration, an internal agent, or a developer's direct API access, platform-tier controls do not see them.

Waxell Runtime sits at the execution layer. It wraps the LLM call, applies policy enforcement before the call reaches the model, and produces a durable execution record afterward. For content governance, Waxell Runtime's Content policy type lets you define what categories of data are permitted in AI calls — source code, PII, financial projections, credential strings — and enforces those rules at the point of call, before anything leaves your perimeter.

The initialization is two lines:

import waxell
waxell.init(api_key="YOUR_KEY")

import waxell
waxell.init(api_key="YOUR_KEY")

import waxell
waxell.init(api_key="YOUR_KEY")

import waxell
waxell.init(api_key="YOUR_KEY")

import waxell
waxell.init(api_key="YOUR_KEY")

After that, every LLM call in your stack is governed. Waxell Runtime supports 200+ libraries out of the box and requires no changes to your agent architecture. It ships with 26 policy categories across content, cost, control, quality, and kill-switch enforcement. A Content policy configured for source code classification would have caught all three Samsung 2023 incidents at the call layer — before any data left the network.

This is what data governance looks like at the execution layer: not an access ban, not a post-hoc alert, but a policy that evaluates every call before it goes out and enforces the rule before the data travels.

Samsung's 2023 incident was three engineers and three leaks in under three weeks. An enterprise deploying AI to 125,000 employees is running those probability curves at a different scale. The enforcement architecture needs to match.

For vendor-built or third-party AI agents that your team didn't build — tools that sit outside your codebase and connect via MCP or API — Waxell Connect extends governance to agents you don't control. It governs external agents at the data interface level without requiring SDK integration on the vendor's side.

Sign up at https://waxell.dev/signup to add a Content policy to your AI stack before your next enterprise rollout.

Frequently Asked Questions

What caused Samsung to ban ChatGPT in 2023?
Three Samsung engineers leaked proprietary data through ChatGPT within nineteen days of the company permitting its use. One pasted semiconductor manufacturing source code to check for errors. A second uploaded equipment defect detection code seeking optimization advice. A third converted confidential internal meeting recordings into transcripts and fed them to ChatGPT for meeting minutes generation. Samsung banned generative AI tools company-wide in response to the three incidents.

What changed in Samsung's 2026 ChatGPT deployment?
Samsung is deploying ChatGPT Enterprise — an enterprise-grade version with data isolation, end-to-end encryption, and administrative controls — to approximately 125,000 employees, rather than the public ChatGPT interface engineers used in 2023. The rollout includes real-time DLP monitoring and an enterprise AI governance framework. The fundamental difference is not the model; it's the enforcement controls between employees and the model.

Why doesn't a ChatGPT ban solve the data governance problem?
Banning one AI tool redirects usage to others while removing visibility. Employees continue using AI through personal accounts, browser extensions, and unapproved tools. A ban that operates at the access layer doesn't stop data from moving through AI systems — it stops the organization from seeing where that data goes.

What is an enterprise AI content policy?
An enterprise AI content policy is a governance rule that evaluates the data in an AI call before the call is made and applies an enforcement action — block, redact, log, or escalate — based on what the data contains. Content policies operate at the execution layer, before sensitive information reaches the model, unlike DLP alerting which detects exposure after the fact. You can read more about content policy mechanics on the Waxell glossary.

Does ChatGPT Enterprise's data isolation cover custom integrations and internal agents?
No. ChatGPT Enterprise's controls govern the ChatGPT Enterprise interface. Custom API integrations, internal AI agents, coding assistants accessed through developer tooling, and third-party AI tools that call LLMs directly are outside the platform's governance scope. Those calls require a separate enforcement layer at the application or infrastructure tier.

How does Waxell Runtime enforce content policies across an enterprise AI stack?
Waxell Runtime wraps LLM calls at the execution layer and applies Content policies before the call reaches the model. It initializes in two lines, supports 200+ libraries without architectural changes, and ships with 26 policy categories covering content, cost, control, quality, and kill-switch rules. Content policies can be configured to block, redact, log-and-pass, or escalate to human review depending on data classification and severity.

Sources

• Samsung Bans Use of Generative AI Tools Like ChatGPT After April Internal Data Leak | TechCrunch (May 2, 2023)

• Samsung ChatGPT Data Leak (2023): What Was Leaked & How | Authentech AI

• Incident 768: ChatGPT Reportedly Implicated in Samsung Data Leak of Source Code and Meeting Notes | AI Incident Database

• Samsung Electronics Brings ChatGPT and Codex to Employees | OpenAI (June 21, 2026)

• Samsung Deploys ChatGPT Enterprise and Codex to Employees | Dataconomy (June 22, 2026)

• OpenAI Lands Samsung as Major ChatGPT Enterprise Customer | Korea Times (June 22, 2026)

• Samsung Ends ChatGPT Ban: Enterprise AI Governance Enables OpenAI Tool Deployment | Windows News

• Samsung Reverses Years-Long Ban on External Gen AI Use | CIO