Bonfy.AI announced Bonfy Adaptive Content Security (Bonfy ACS) 2.0, a platform built to protect enterprise content across all systems, applications, and AI agents where data moves, resides, and is processed.
As organizations rush to deploy copilots, custom AI apps, and increasingly autonomous AI agents, security leaders are struggling with blind spots in how these systems access, transform, and share sensitive data—gaps that traditional DLP and DSPM tools were not designed to address.
Gartner predicts that by 2028, 22% of cyberattacks and data breaches will involve generative AI, and by 2029, more than 50% of successful cybersecurity attacks against AI agents will exploit access control issues.
Bonfy provides real-time, contextual protection across email, SaaS apps, collaboration tools, browsers, cloud and on-premises file stores, AI systems, and agent frameworks, so businesses can safely accelerate AI adoption without acting blindly.
Natively covering Microsoft 365 (Exchange Online, SharePoint, Entra, Copilot, Purview), Google Workspace (Gmail, Google Drive, Google Directory), Salesforce, HubSpot, Slack, on-premises file stores, AWS S3, and more, Bonfy becomes a unified data security layer that follows your content regardless of channel or AI workflow.
“AI agents are poised to become the biggest catalyst in our market and the biggest new attack surface that enterprises have seen in a decade,” said Gidi Cohen, co-founder and CEO of Bonfy. “They read, write, click, send, and connect to everything. At Bonfy 2.0, our mission is simple: protect data throughout its lifecycle, no matter what agent, platform, or workflow is used.”
Built for agent and autonomous AI
Bonfy ACS 2.0 is specifically designed for system-level and browser-based AI agents that plan, reason, invoke, and execute actions across enterprise systems.
By treating agents as first-class entities, rather than just extensions of users, Bonfy enables security teams to see which agents access what data, how they use it, and where the output ends up.
Bonfy ACS 2.0 fits neatly into your existing security and productivity stack. It complements Microsoft Purview and M365 DLP, integrates with Microsoft Entra and Google Directory, plugs into SIEM/SOAR tools like Splunk, Sentinel, and Rapid7 to automate workflows, and integrates with modern AI platforms like Microsoft Copilot Studio, OpenAI, Anthropic Claude, and Google Gemini via MCP server interfaces and APIs. and other enterprise agent frameworks.
Bonfy is designed to deliver executive-level visibility and governance for CISOs, CIOs, and is designed to be operated by security teams, security architects, and AI platform teams responsible for GenAI and agent deployments in financial services, insurance, technology, biotech/pharma, healthcare companies, and more.
It provides one policy and automation engine that spans traditional data security, AI data governance, and AI agent guardrails, eliminating the need to stitch together separate point products for systems and agents. The Bonfy platform can be used by organizations for projects both leveraging and building AI.
“The AI agent factory is already here,” said Tal Hornstein, CISO at Cast and Crew. “Microsoft, Google, Salesforce, ServiceNow, and hyperscalers are all shipping frameworks for building agents. Bonfy gives enterprises a way to say, ‘Yes, I want productivity, but I’m not willing to lose control of my data to get it.’ ”
Bonfy ACS 2.0 Headline Features
Bonfy ACS 2.0 introduces six key features that form a second generation high-performance data security platform for the AI era.
AI agent data guardrails (MCP and agent framework support)
Bonfy adds a “data-in-use” security solution by adding an MCP server interface, API, and agent-enabled controls, allowing enterprises to inspect and manage the content that AI agents read, share, and generate during planning, inference, and execution, not just the final output. Agents can call Bonfy inline to label and risk score content before it reaches external services or users, preventing AI-driven leaks and trust boundary violations.
Browser extension for Shadow AI and agent activities
The lightweight browser extension provides real-time, content-aware inspection of web traffic, including unapproved AI tools and browser-based assistants. Bonfy distinguishes between safe uses of AI and risky disclosures, detects shadow AI automation, and shows security teams exactly where sensitive data is going.
Full support for Google Workspaces
Bonfy 2.0 adds native support for Gmail, Google Drive, and Google Directory, provides parity with Microsoft 365 integration, and extends multichannel protection across both ecosystems. Organizations powered by Google can take advantage of unified, entity-aware controls, including automatic, context-aware classification labeling.
Visualizing data surface for risks in the AI era
The new Data Surface Visibility view provides CISOs with a live map of where sensitive content resides and how employees and agents are using it across data stores such as Microsoft SharePoint, Google Drive, AWS S3 buckets, on-premises file stores, and AI systems. Teams can drill down from high-level exposures to specific actors and flows to understand real business risks, not just isolated events.
Covers on-premises and cloud file stores
Bonfy covers on-premises file stores and cloud object storage such as AWS S3, along with existing SharePoint, Google Drive, and other SaaS applications. This creates a unified control plane for unstructured data at rest, in motion, and in use.
Data minimization, enhanced encryption, and SOC 2
Bonfy 2.0 enhances data minimization, encryption, and configurable retention, so the platform itself has a smaller footprint and is better protected. Completing SOC 2 Type 2 certification as part of the release strengthens Bonfy’s readiness for highly regulated industries.
“System-level agents don’t run on customer-controlled endpoints. System-level agents run on compute infrastructure provided by Microsoft, Google, OpenAI, Anthropic, Salesforce, and wherever data already exists. This makes it very easy and straightforward for these agents to access that data (and more) through the tools available to them and power their learning with enterprise-specific data,” said Vishnu Varma, Head of Product at Bonfy. says Mr. “Endpoint, browser-only DLP doesn’t allow you to see that world. Bonfy is truly built as a multichannel platform, so you can protect your content no matter where your agents are operating.”
Bonfy ACS 2.0 is available immediately. RSAC 2026 attendees can contact Vishnu Varma to schedule a live demo.
