Skip to main content

Salesforce lets the Genie out of the bottle!

Salesforce's Einstein lets the Genie out of the bottle
The news

During the Salesforce AI Day on June 12 as well as the Salesforce AI Industry Analyst Forum on June 20, Salesforce provided a lot of interesting information on how the company addresses the challenge – or should I say problem – of trust into artificial intelligence. Salesforce sees this gap caused by hallucinations, lack of context and data security as well as toxicity and bias. According to Salesforce, this gets compounded by the need for integrating external models into business software.

To address this problem, Salesforce has announced its AI Cloud that combines an “Einstein GPT Trust Layer”, Customer 360 and its CRM to offer AI-powered business processes that are built right into the system, based on an AI that can be trusted. The main vehicle is the Einstein GPT Trust Layer that takes care of

secure data retrieval from business applications,

  • dynamic grounding to reduce the risk of hallucinations and to increase response accuracy by automatically enriching prompts with relevant business-owned data

  • data masking, the anonymization of sensitive data to avoid its unintentional exposure of sensitive data to external tools,
  • toxicity detection to make sure that generated content adheres to corporate policy, is free of unwanted words or images, and unbiased,
  • creating and maintaining an audit trail,
  • the external (or internal) AI not retaining, storing, any corporate information that gets sent to it via the request.

This trust layer sits in between the used AI models and the apps and the respective development environments. All requests to the models, along with their data, get routed through this layer, ensuring authorization protected retrieval of data, the grounding of prompts using it as well as data masking for anonymization. Responses by the models get routed through it as well. This enables an audit trail as well as toxicity detection. Models can be ones within Salesforce, ones developed and deployed by the customers in their infrastructure and third party models.

Figure 1 The Salesforce AI Cloud Architecture; source Salesforce

To round this off, Einstein Studio allows the building and deployment of models, their training using data within Salesforce and, at a later stage, the building of own models using a no-code environment.

The bigger picture

Although AI is not new, it is safe to say that generative AI is a game changer. OpenAI managed to get AI out of the realm of data scientists and into the hands of mere mortals. And most of us use business applications on a daily basis.

One of the most daunting problems of the use of AI is that there are a number of considerable risks involved with its usage. The one that is currently talked about most in the context of generative AI is the one of accuracy of responses to prompts, which is often referred to as hallucinations. This is not only problematic in consumer usage but even more so in business usage.

What comes on top in a business context is very much related to data privacy bias and profanity. Both have also been discussed in the consumer arena. Do you remember Microsoft’s infamous Tay bot? Or more recently of Samsung, Amazon, Apple, and other companies ordering their staff to not use ChatGPT et al.?

The management of all of these risks is of paramount importance to businesses, for regulatory reasons as well as for the need of protecting own intellectual property. No business can afford customer data and/or sensitive corporate data leak into external tools. This is doubly true in strongly regulated industries. But how to ensure this, when the models are not fully understood and when it is not even clear where and how data is stored? How to adhere in a GDPR-request to delete a customer’s data in this case? The management of these risks requires organizational, educational, and cultural measures in companies. These need to be supported or enforced with the help of technology. 

The obvious technical resolution for this is an AI security layer that I outline in my (upcoming, as of this writing) column article on CustomerThink as follows.

Figure 2 An AI security layer; source Thomas Wieberneit

This is of course simplified, not exactly trivial, but possible.

My analysis and point of view

One could, or rather should, say that trust and security are two of the most important assets in business. Customers need to trust that businesses do not collect an inordinate amount of data and that they furthermore use the data given by customers only for consented to purposes. In addition, they need to trust businesses that they keep their data safe. A multitude of regulations mandates this. Being trustworthy is even more important in times of AI as a service, when businesses cannot even tell anymore where customer data is stored, as it is learned by the AI and stored in a very decentralized manner – as part of an unknown number of parameters.

To enable this trustworthiness, what lies closer for a tier one platform vendor than ingraining an AI security layer directly into the own platform? The gateway to external services is already provided by the platform and can be reused by the AI security layer.

This is what Salesforce has done in an exemplary manner with the aptly named Einstein GPT Trust Layer. Kudos for this.

Figure 3 - How the Einstein GPT Trust Layer works; source Salesforce

In my opinion, the most interesting part is the zero-retention portion. Salesforce cannot guarantee on its own that external providers do not store any data. Whenever a prompt is sent to an external vendor, this data is leaving Salesforce’s systems boundaries. This means that external vendors assume temporary control of this data to provide their services. Masked or not, this data that can potentially be demasked, is handled by them.

To accommodate for this, Salesforce has established “zero-retention policies” with these vendors. According to information given during an analyst briefing, these policies ensure that the vendors won’t store any in-flight data, including inputs and outputs, nor won’t they use it for any purposes besides generating a response to the prompt.

This is quite an important statement that also indicates GDPR compliance, if “policy” can be translated to contract. On the other hand, this makes me curious how the refinement of prompts works in this case. Obviously, for highly security-oriented customers, this also suggests the preference of Salesforce or customer-owned models over external ones.

Overall, this is a great offering that addresses important concerns  of the C-suite.

The only qualm that I have is the price tag, which is quite steep, starting at currently $360,000 US. For sure, customers can derive good value out of it, this is not the problem. Where I see a challenge is that this is out of reach for most SMBs. I’d love to see an adaptation of this offering combined with offerings like Salesforce Easyor similar.

I wait to see when other vendors come forward with a comparable offering. Especially the other tier one but also the tier two vendors need to make a move now. Salesforce truly let the Genie out of the bottle and put them in a tight spot.

Kudos again! 


Last Year's Top 5 Popular Posts

SugarCRM explains how the third wave of CRM adds value

The news On October 4 and 5, 2023, SugarCRM held its Connected event followed by an analyst summit in London. The first day – Connected – was targeted mostly at customers while the second day focused on analysts.  The event started off with an intense speech by Katherine Grainger, DBE , a British rowing champion. Her core messages were about team bonding, the importance of communication, continuous improvement, and perseverance (well, at least that’s my take). This was followed by information about what is new in the software and, more importantly, a customer panel.  The main sponsor, Mobileforce , placed some words about the partnership. In addition, the analysts had 1:1s with customers, partners, and Sugar executives. The second day was filled with information targeted at analysts. CEO Craig Charlton and his executive team shared about financial status, strategy and more in-depth product news. Sugar being a privately held, VC backed company, the financials are of course under NDA, s

How to play the long game Zoho style

The news On February 7 and 8 2024, Zoho held its annual ZohoDay conference, along with a pre-conference get together and an optional visit to SpacX’s not-too-far-away Starbase. Our guide, who went by Chief, and is probably best described as a SpaceX-paparazzi was full of facts and anecdotes, which made the visit very interesting although we couldn’t enter Starbase itself. The event was jam-packed with 125 analysts, 17 customer speakers, and of course Zoho staff for us analysts to talk to. This was a chance we took up eagerly. This time, the event took place in MacAllen, TX, instead of Austin, TX. The reason behind this is once more Zoho’s ruralization strategy, transnational localism.  Which gives also one of the main themes of the event. It was more about understanding Zoho than about individual products, although Zoho disclosed some roadmaps. More about understanding Zoho in a second.  The second main theme was customer success and testimonials. Instead of bombarding us with presenta

Relevance, reliability, responsibility are key for AI – the SAP way

The News A lot is going on in the SAPverse during October and the early days of November 2023. First, SAP conducted its CXLive event with CX-related announcements, then the company reported good Q3/2023 figures, a new version of its CX software that includes new generative AI capabilities got released and lastly, it executed its SAP TechEd event with a good number of AI-, BTP-, and ERP related announcements. As this is quite a lot, I covered the CX world in a previous post and will cover the TechEd related news in this post.  So, what is new at SAP TechEd ? For one, it is enough to fill a 17-page pre-event news guide that SAP sent out. SAP certainly is able to stack up the news for major events. I took the liberty to ask ChatGPT for a summary of the document, which I slightly edited afterwards. Here we are: AI and Development Environments: ·       SAP introduces SAP Build Code with generative AI, improving application development and testing, while new AI capabilities are integrate

Don't mess with Zoho - A Zohoday 2022 recap

After spending two days in Austin, TX, attending the ZohoDay 2022, it is time for a little recap of this interesting event.  We were 99 analysts and 24 customers and plenty of knowledgeable Zoho personnel. The incredible Sandra Lo and her team organized the event around open and transparent communication. So, there was plenty of access for us to customers and the Zoho team.  Which was very important, as already the keynote session by founder and CEO Sridhar Vembu was quite hardcore. Vembu talked about how strategy and culture need to be one, how culture needs to be the root of strategy, and how Zoho implements this. The Zoho strategy lies on three main pillars ·       Transnational localism, a unique concept that in its essence is about embedding a company into a local community by not only selling into it but also by investing into it. This investment is e.g., by offering high paying jobs in areas where these are scarce, by fostering local education, but also by own local sourcing in

The Generative AI Game of Thrones - Is OpenAI toast?

The News This has been an exciting weekend for the generative AI industry. On Friday November 17, OpenAI announced that the company fired its figurehead CEO Sam Altmann and appointed Chief Technology Officer Mira Murati as interims CEO in a surprise move. The press release states that Altmann “ was not consistently candid in his communications with the board .” Surprised was apparently not only Sam Altmann, but also the till then chairman of the board Greg Brockman who first stepped down from this position and subsequently quit OpenAI. Investors, notably Microsoft, found themselves blindsided, too – or flat footed depending on the individual point of view. Satya Nadella was compelled to state that Microsoft stays committed to the partnership with OpenAI in a blog post that got updated on November 19, 11:55 pm. All hell broke loose. Microsoft shares took a significant hit. A number of additional senior OpenAI personnel quit. Both, Altman and Brockman, voiced the idea of founding anoth