Are companies actually enabling Claude/AI connectors to Slack, Drive, Gmail? How are you controlling access?

I’m a security manager at a mid-large company (public listed in India), and we’re currently using Claude Team. We’ve blocked connectors (Google Drive, Slack, Gmail) so far because of obvious data exposure risks, but now there’s a lot of internal pressure to enable them since teams say it’s impacting productivity. I’m trying to find a practical middle ground instead of just saying “no” to everything. For folks in similar roles: A