Zapier Extends Enterprise AI Governance Across Every Surface Where Building HappensĀ 

Apr 23, 2026 | AI, Fresh Ink, Security

New controls, governed agents, and an open SDK give teams the tools to enable AI at scale — without losing visibility or controlĀ 

April 23, 2026 — ZapierĀ today announced a major expansion of its enterprise governance capabilities, giving IT and security teams a unified policy layer that covers every surface where AIĀ runs:Ā no-code workflows, AI agents, MCP-connected AI assistants like Claude and ChatGPT, and SDK-built applications.Ā 

A new Zapier report surveying 200 enterprise executives foundĀ 93% say AI initiatives in their organizations fail to reach productionĀ at least occasionally due to governance constraints. 94% agree governance must shift from static policies and approvals to aĀ continuouslyĀ operating system embedded in how AI is built and run.Ā Ā 

“Building has gotten very easy, very fast. And for most organizations,Ā new ideasĀ are already outrunning the guardrails around them,” said Wade Foster, Co-founder and CEO of Zapier. “If building is everywhere, governance has to be everywhere too.”Ā 

Before, governance was designed for a world where only a fewĀ people builtĀ things, in a few controlled places. That world is gone. Today’s announcementĀ isĀ built for the one that replaced it.Ā 

New governance controls for every team and toolĀ 

Admins, department leads, and IT can set the rules for specific teams, workflows, and agents:Ā 

  • App Access Controls:Ā Decide which apps your team can access. Allow or block by workspace, team, or user, enforced across the Editor, Agents, and MCP.Ā 
  • Action Restrictions:Ā Then control what they can do inside each app. Ex. A sales rep can read and update contacts inĀ HubSpot, butĀ neverĀ deleteĀ them.Ā 
  • Managed App Connections + Domain Restrictions:Ā Manage how team members connect to apps in your account. With company-owned connections, youĀ don’tĀ risk data flowing through personal accounts, or workflows breaking when someone leaves.Ā 
  • Bring Your Own Model (BYOM):Ā Know exactly where company data and knowledgeĀ isĀ being processed. Route Zapier’s Agents and knowledge processing, starting with AWS Bedrock, through your own infrastructure.Ā 
  • Workspaces (GA end of Q2):Ā Give each team their own environment with the apps, connections, and policies they need, and the guardrails youĀ require.Ā Ā 
  • Log Streaming and Asset History:Ā If something goes wrong, see exactly what Zapier touched, what failed, and when, streamed in real time to Datadog, Splunk, orĀ yourĀ existingĀ SIEMĀ so your security team investigates where they already work.Ā 

Governance that follows youĀ 

Zapier Agents are now generally available, with Enterprise MCP support. Your teams can use agents and connect to your systems — off-platform or inside workflows — with the same controls that already govern the rest of Zapier.Ā Ā 

Zapier SDK now in open betaĀ 

Connect your agent toĀ literally anything — every app, every workflow, Zapier’s full catalog — from any environment, governed by your policies. Available now at zapier.com/sdk.Ā 

All governance features are available now for Zapier customersĀ atĀ zapier.com/governĀ Ā Ā Ā 

About ZapierĀ 

Zapier is an AI orchestration platform that connects more than 8,000 apps to help companies automate workflows and improve productivity. Since 2012, millions of users have trusted Zapier to automate everything from lead routing and data synchronization to customer conversations, all without writing code. From startups to Fortune 500 companies, organizations worldwide trust Zapier to accelerate growth through intelligent automation. Learn more atĀ www.zapier.com.Ā 

Top 10 Cybersecurity Stories This Week: Operation Endgame Dismantles StealC/Amadey/SocGholish Infrastructure, Cisco Unified CM Zero-Day Drops Webshells, Mandiant Reveals Months-Long Cisco SD-WAN Zero-Day Campaign

Top 10 Cybersecurity Stories This Week: Operation Endgame Dismantles StealC/Amadey/SocGholish Infrastructure, Cisco Unified CM Zero-Day Drops Webshells, Mandiant Reveals Months-Long Cisco SD-WAN Zero-Day Campaign

June 26, 2026 | ITBriefcase.net Why it matters: Europol, Microsoft, and law enforcement partners from six countries dismantled the infrastructure behind three malware families — SocGholish, Amadey, and StealC — that together form the opening stages of the modern...

read more
Top 10 Cybersecurity Stories This Week: Record Microsoft Patch Tuesday 200+ CVEs, Check Point VPN Zero-Day Linked to Qilin Ransomware, Ivanti Sentry CVSS 10.0 Exploited Within Hours of PoC Release

Top 10 Cybersecurity Stories This Week: Record Microsoft Patch Tuesday 200+ CVEs, Check Point VPN Zero-Day Linked to Qilin Ransomware, Ivanti Sentry CVSS 10.0 Exploited Within Hours of PoC Release

June 12, 2026 | ITBriefcase.net Why it matters: Microsoft's June 2026 Patch Tuesday, released June 9, addressed approximately 200 security vulnerabilities — the largest single Patch Tuesday release in the program's history — including one actively exploited Exchange...

read more
Why Executives Are the #1 Cybersecurity Vulnerability in Your Company

Why Executives Are the #1 Cybersecurity Vulnerability in Your Company

What happens when a venture capitalist gets surgically targeted by cybercriminals? He builds a company to make sure it never happens to anyone else. Jeremy shares the SIM-swapping attack that nearly derailed his life, why product security is no substitute for personal security, and how CyberHealth is treating executive cyber risk the same way medicine treats personal health — with measurement, personalized care plans, and ongoing monitoring.

read more