Public First, Private Later

If you want to learn AI at work, do not start by pasting the most sensitive thing you have. Start with what is already public, approved, synthetic, or deliberately prepared for training.

Why public first.

Public information is a good first surface because the organisation has already chosen to publish it. Your website, public product pages, public policies, help pages, press releases, job adverts, and approved sample material can teach you the workflow without putting people, clients, contracts, secrets, or live systems at risk.

The point is not to stay public forever. The point is to learn the shape of the work before you ask for more access.

Do not use this yet.

For a first exercise, keep these out of the tool unless your organisation has explicitly approved the tool, the purpose, and the boundary:

personal data that is not already approved for this use
client or customer information
HR, employment, health, finance, payroll, banking, or payment data
contracts, commercial secrets, and confidential board or management papers
API keys, passwords, tokens, recovery codes, private keys, and security details
anything behind a login that you are not sure you can use
production data or live systems that can change real records

If you are unsure, use a public page or a made-up sample. A safe example is enough to learn the method.

Use a clean account boundary.

When the work moves beyond a local test, ask whether a dedicated second email or twin account is the right pattern. Something like tony.wood.twin@my-domain.com can be safer than mixing learning experiments into your personal mailbox.

The account should start with least privilege, MFA, no admin rights, and clear ownership. An email alias may be useful, but it is not the same as a separate account if audit, permissions, or offboarding matter.

Ask IT before you look clever.

The best first request is calm and narrow: I want to build my skills. I will start with public or approved sample material. I will not use private, client, HR, finance, confidential, secret, or live-system information without approval. What boundary should I use?

If you are using a harness like Codex, Claude Code, Cowork, or an approved company tool, say that clearly. Explain that your goal is to speed up safe work, share what you learn, invite feedback, and help the organisation roll this out responsibly.

The analogy is simple: you are asking to start swimming in the shallow end. Public information, sample data, visible prompts, draft-only outputs, and human review first. Deeper water comes later, when the controls and skills are ready.

If someone says, "No, we do not use AI here," stay polite. Ask them to help you understand the specific risk if the work uses only public information. Ask what boundary would make the test acceptable. If the answer is still a flat no to any public-information learning, that is a serious organisational signal. Some organisations will choose to be left behind. This training cannot fix that.

A good first exercise.

Ask the agent to review only your public website or public documentation and prepare something useful: a glossary, FAQ, briefing, customer question list, onboarding map, or content gap review.

Then review the answer. Did it cite the public sources it used? Did it guess? Did it invent? Did it ask before going wider? That is the training.

The expansion ladder.

Public. Website, public docs, public policies, public product pages, and synthetic examples.
Approved sample. Deliberately prepared training packs and redacted examples.
Internal read-only. Narrow, approved internal material with a clear owner and review trail.
Narrow private data. Only with the right lawful basis, policy approval, access controls, and review.
Live or write access. Much later, after logs, stop-lines, supervision, rollback, and ownership are working.

Copy these into your agent.

These prompts are designed to make the agent help you stay inside the boundary. They are not permission to ignore your organisation's policy.

Create my public-info-only starter plan

Help me create a public-information-only starter plan for using an AI or agentic tool at work. Do not ask me for private, confidential, client, HR, finance, health, credential, contract, customer, or live-system information. Do not connect to work systems, send messages, create accounts, upload files, publish anything, or make changes. Start by interviewing me: 1. What public information can I safely use? Examples: our website, published policies, public product pages, public help docs, public job adverts, public press releases, or synthetic/sample material. 2. What kind of useful output do I want? Examples: a briefing, checklist, FAQ, glossary, draft outline, training note, or research map. 3. What must stay out of scope? 4. Who at work should confirm the boundary before I use internal material? 5. How will I review the result before sharing it? Then give me: - one safe first exercise - allowed sources - forbidden sources - review steps - questions for IT, security, legal, or the DPO - the next safe expansion step

Draft my request to IT/DPO

Draft a calm request I can send to IT, security, legal, or our Data Protection Officer about starting to use AI safely at work. Use this intent: I want to build my skills with AI or agentic tools, but I do not want to use private, confidential, client, HR, finance, health, secret, or live-system information without approval. I want to run the work in an approved harness or local agent environment, such as Codex, Claude Code, Cowork, or the tool my organisation prefers. My goal is to speed up safe work, share what I learn, invite feedback, and help the organisation roll this out responsibly. I would rather start swimming in the shallow end: public information, sample data, visible prompts, and draft-only outputs, then progress only when the controls and skills are ready. Ask for: - what tools are approved - whether public company website material is allowed - whether synthetic/sample data is allowed - whether I may create my own transparent local skills or prompts for public-only work - whether a dedicated training or twin account is preferred - what data types are forbidden - who approves any move from public material to internal read-only material - whether logs, prompts, or uploaded files are retained by the tool - what I should document after the test - if the answer is no even for public information, what specific risk they are worried about and what boundary would make the test acceptable Keep the tone practical, respectful, and low-risk. Make it clear I am asking before acting.

Research our public website only

Use only our public website and public online material to help me understand what information is available. Allowed sources: - the company website - public product or service pages - public policies - public help pages - public press releases - public job adverts - public regulator or Companies House-style records if relevant Forbidden sources: - private email - private documents - customer or client records - HR or finance data - credentials or secrets - anything behind a login - anything I am not allowed to copy into this tool Create: - a short map of the public information - useful terms and definitions - questions a new starter or customer might ask - gaps where public information is missing or unclear - suggested next public-only task

Privacy/GDPR stop-lines

Use these privacy and GDPR stop-lines while helping me. Pause and challenge me if I try to use: - personal data that has not been approved for this tool - special-category data such as health, religion, ethnicity, biometrics, sexuality, union membership, or similar sensitive material - client-confidential information - HR or employment records - finance, payroll, banking, or payment data - contracts or commercial secrets - security details, credentials, API keys, tokens, or recovery codes - private documents behind a login - production or live-system data When you pause, say: 1. what category you think this is 2. why it may be risky 3. what safer public or synthetic substitute we could use 4. who should approve it before proceeding This is guidance, not legal advice. Company policy, IT, security, legal, and the Data Protection Officer decide the real boundary.

Check before you expand.

This page is training, not legal advice. In the UK and Europe, data protection, security, employment, client confidentiality, and sector rules may all matter. Your organisation's IT, security, legal team, and Data Protection Officer decide the real boundary.

Useful official starting points: