Cloudflare Launches New Zero Trust Tools for Secure AI Adoption at Scale

Cloudflare, Inc. (NYSE: NET), the leading connectivity cloud company, today announced powerful new capabilities for Cloudflare One, its Zero Trust platform, designed to help organizations securely adopt, build and deploy emerging generative AI applications. With these new features, Cloudflare is giving customers the ability to automatically understand, analyze and set controls on how generative AI is used throughout their organization – enhancing the productivity and innovation of their teams without sacrificing security or privacy standards.

Across every team – from finance and marketing to engineering and design – companies are using generative AI to work faster, streamline daily tasks, and create powerful new applications. However, this widespread adoption is frequently occurring without security or privacy in mind. For example, employees may accidentally paste confidential company information into chatbots, or engineers may deploy AI-driven apps without the input of their security teams. To prevent these risks, businesses need to understand and manage the use of AI so all employees can use it efficiently and safely—with security built in by default.

“Cloudflare is the best place to help any business roll out AI securely. We are the only company today that can offer the security of a Zero Trust platform with a full set of AI and inference development products—all backed with the scale of a global network,” said Matthew Prince, CEO and co-founder at Cloudflare. “The world’s most innovative companies want to pull the AI lever to move, build and scale fast, without sacrificing security. We are in a unique position to help power that innovation–and help bring AI to all businesses safely.”

Cloudflare is introducing AI Security Posture Management (AI-SPM) into its Zero Trust platform to allow organizations to safeguard against a range of potential threats posed by the wide adoption of AI tools, enabling businesses to move faster with the confidence that AI is being used safely by all teams. Now, with the availability of all features, security teams will be able to:

• Discover how employees are using AI: With Cloudflare’s new Shadow AI Report, security teams can get instant insights from their traffic to gain a clear, data-driven picture of their organization's AI usage. This granular view allows them to see not just that an employee is using an AI app, but which AI app, and what users are accessing it.
• Protect against Shadow AI: Cloudflare Gateway makes it easy to automatically enforce AI policies at the edge of Cloudflare’s network, ensuring consistent security for every employee, no matter where they work. Security teams can choose to fully block unapproved AI applications, limit the types of data uploaded into AI applications, and complete reviews of AI tools, to ensure they continue to meet security and privacy standards.
• Safeguard sensitive data without fully restricting AI usage: AI Prompt Protection allows security teams to identify potentially dangerous or risky employee interactions with AI models, and flag those prompts and responses. Policies can now be enforced inline at the prompt level to mitigate risk early on, and warn the employee about, or block them from, submitting sensitive data—like source code—being entered into an untrusted AI provider. This will give security teams the control they need to monitor company data that may be sent outside the organization, without fully restricting employees’ usage of AI tools.
• Gain visibility of AI model interactions with tools outside the business: Zero Trust MCP Server Control consolidates all MCP tool calls—a request from an AI model or application to a server to execute a specific task—into a single dashboard. This visibility ultimately allows all MCP traffic, regardless of origin, to be routed through Cloudflare for increased control and access management. Now, with centralized insights, security teams can set user-level policies at both the gateway and individual MCP server levels.

To learn more, please check out the resources below:

• Cloudflare One
• Blog: Best Practices for Securing Generative AI with Cloudflare SASE
• Blog: Unmasking the Unseen: Your Guide to Taming Shadow AI with Cloudflare One

About Cloudflare

Cloudflare, Inc. (NYSE: NET) is the leading connectivity cloud company on a mission to help build a better Internet. It empowers organizations to make their employees, applications and networks faster and more secure everywhere, while reducing complexity and cost. Cloudflare’s connectivity cloud delivers the most full-featured, unified platform of cloud-native products and developer tools, so any organization can gain the control they need to work, develop, and accelerate their business.

Powered by one of the world’s largest and most interconnected networks, Cloudflare blocks billions of threats online for its customers every day. It is trusted by millions of organizations – from the largest brands to entrepreneurs and small businesses to nonprofits, humanitarian groups, and governments across the globe.

Learn more about Cloudflare’s connectivity cloud at cloudflare.com/connectivity-cloud. Learn more about the latest Internet trends and insights at https://radar.cloudflare.com.

Follow us: Blog | X | LinkedIn | Facebook | Instagram

Forward-Looking Statements

This press release contains forward-looking statements within the meaning of Section 27A of the Securities Act of 1933, as amended, and Section 21E of the Securities Exchange Act of 1934, as amended, which statements involve substantial risks and uncertainties. In some cases, you can identify forward-looking statements because they contain words such as “may,” “will,” “should,” “expect,” “explore,” “plan,” “anticipate,” “could,” “intend,” “target,” “project,” “contemplate,” “believe,” “estimate,” “predict,” “potential,” or “continue,” or the negative of these words, or other similar terms or expressions that concern Cloudflare’s expectations, strategy, plans, or intentions. However, not all forward-looking statements contain these identifying words. Forward-looking statements expressed or implied in this press release include, but are not limited to, statements regarding the capabilities and effectiveness of new features in the Cloudflare One suite of Zero Trust solutions and Cloudflare’s other products and technology, the benefits to Cloudflare’s customers from using new features in the Cloudflare One suite of Zero Trust solutions and Cloudflare’s other products and technology, the benefits to Cloudflare’s customers from using new features in the Cloudflare One suite of Zero Trust solutions and Cloudflare’s other products and technology, the timing of when new features in the Cloudflare One suite of Zero Trust solutions will be developed and available in beta form, or generally available, to all current and potential Cloudflare customers, Cloudflare’s technological development, future operations, growth, initiatives, or strategies, and comments made by Cloudflare’s CEO and others. Actual results could differ materially from those stated or implied in forward-looking statements due to a number of factors, including but not limited to, risks detailed in Cloudflare’s filings with the Securities and Exchange Commission (SEC), including Cloudflare’s Quarterly Report on Form 10-Q filed on July 31, 2025, as well as other filings that Cloudflare may make from time to time with the SEC.

The forward-looking statements made in this press release relate only to events as of the date on which the statements are made. Cloudflare undertakes no obligation to update any forward-looking statements made in this press release to reflect events or circumstances after the date of this press release or to reflect new information or the occurrence of unanticipated events, except as required by law. Cloudflare may not actually achieve the plans, intentions, or expectations disclosed in Cloudflare’s forward-looking statements, and you should not place undue reliance on Cloudflare’s forward-looking statements.

©2025 Cloudflare, Inc. All rights reserved. Cloudflare, the Cloudflare logo, and other Cloudflare marks are trademarks and/or registered trademarks of Cloudflare, Inc. in the U.S. and other jurisdictions. All other marks and names referenced herein may be trademarks of their respective owners.

View source version on businesswire.com: https://www.businesswire.com/news/home/20250825753948/en/