If one member of a team is meant to be able to just use it without IT being involved, don't you foresee companies getting very cranky about an employee uploading all their work documents, emails, etc. to an external cloud they don't control?
Certainly happens - in this case IT usually contacts the employee, who connects us with IT and then we share our SOC II / describe our security processes and they grant us company wide access. Ends up not being a massive problem, but the added benefit on an employee / individual being able to self-serve offsets it, in our mind at least.
At some point, we'll likely kick off an enterprise-focused initiative. Thanks for bringing this up, very good points.
