Google Adds AI‑Driven Auto Browse, Skills, and Gemini Summary to Chrome Enterprise, Expanding Automation and Introducing New Security Controls
What Happened – Google announced three AI‑powered features for Chrome Enterprise: Auto Browse (an autonomous agent that can act across open tabs), Skills (saved, reusable Gemini prompts) and Gemini Summary (visibility into shadow‑AI usage). The updates are rolling out to Workspace customers in the United States.
Why It Matters for TPRM –
- Introduces new data‑processing flows inside the browser that could expose sensitive corporate information to AI services.
- Provides IT administrators granular controls, but also adds configuration complexity that must be managed.
- Sets a precedent for AI‑enabled workspaces, prompting vendors to reassess their own AI‑risk policies.
Who Is Affected – Enterprises using Google Workspace and Chrome Enterprise (technology, SaaS, finance, healthcare, etc.).
Recommended Actions –
- Review the new Chrome Enterprise policy settings and enable required approvals for Auto Browse and Skills.
- Conduct a data‑flow analysis to ensure no regulated data is inadvertently sent to Gemini.
- Update third‑party risk questionnaires to capture AI‑agent usage and associated controls.
Technical Notes –
- Auto Browse operates as an on‑device agent that can invoke APIs in other tabs after user confirmation.
- Skills are stored locally; most require explicit confirmation before execution.
- Gemini Summary adds monitoring for “shadow AI” by flagging external AI calls from the browser. No CVEs are disclosed. Source: ZDNet Security