What: The speed of AI deployment in retail and hospitality is outstripping the development of effective cybersecurity, increasing operational risks.

Why it is important: The trend underscores the increasing risk of sophisticated cyber threats as retailers prioritise rapid AI adoption over robust security.

Retail and hospitality sectors are experiencing a surge in AI adoption, with organizations leveraging advanced technologies to enhance operational efficiency and customer engagement. However, this rapid technological progress is creating a significant gap between innovation and security, as cybersecurity measures struggle to keep pace with the speed of AI deployment. The resulting vulnerabilities expose retailers to new and evolving threats, including sophisticated cyber attacks and novel risks such as prompt injection. Despite the clear benefits of AI-driven innovation, only a small fraction of retailers have achieved mature digital security, leaving the majority susceptible to breaches that can compromise both operations and customer trust. This imbalance is forcing industry leaders to urgently reassess their digital strategies, emphasising the need for robust governance, transparency, and integrated security protocols. As the sector continues to evolve, the challenge remains to balance the pursuit of technological advancement with the imperative to protect sensitive data and maintain operational resilience.

IADS Notes: The rapid adoption of AI in retail and hospitality is fundamentally transforming operational efficiency and customer experience, but it is also exposing a widening gap between technological innovation and cybersecurity readiness. As highlighted by RH-ISAC in March 2026, retailers are deploying AI at unprecedented speed, yet security protocols are struggling to keep pace, creating new vulnerabilities and operational risks. The Bain & Company Technology Report from September 2025 underscores that while 87% of AI-adopting retailers have seen revenue growth, only 18% possess mature digital core security, leaving the sector exposed to high-profile breaches. The Robin Report in August 2025 details how AI integration introduces novel threats such as prompt injection attacks, amplifying existing risks and demanding robust governance. The Financial Times in November 2025 emphasises that the explosive growth of AI-driven commerce is forcing retailers to recalibrate digital strategies and urgently address transparency and responsible governance. Meanwhile, The Retail Bulletin in August 2025 reports a surge in sophisticated cyber threats, with ransomware accounting for 30% of incidents and only a minority of retailers equipped with adequate security, highlighting the urgent need for integrated, proactive security strategies to sustain growth and customer trust.
The speed gap: Why AI in retail and hospitality is outpacing security

The speed gap: Why AI in retail and hospitality is outpacing security