Led by Digital Sector Forum Chair Jill Leckie (Fractional CMO for Self Storage), this session tackles one of the fastest-moving risks in the industry right now: the wave of data breaches being caused by AI-generated code that is shipped without any security review.
As operators increasingly rely on AI-built tools (booking chatbots, tenant portals, pricing engines and internal dashboards) many have no visibility into what's running under the hood or the exposure it creates. At the same time, the Data (Use and Access) Act 2025, which came into force in February 2026, means the stakes have never been higher: cookie consent failures and marketing violations now carry the same maximum fine as a serious data breach (up to £17.5 million or 4% of global turnover).
Research shows that between 40% and 62% of AI-generated code contains vulnerabilities, and Common Vulnerabilities and Exposures (CVEs) entries directly attributable to AI coding tools have accelerated sharply as a result.
This session will cut through the noise and give operators practical, actionable guidance, including five questions every operator should be asking their suppliers right now.
Key takeaways for attendees:
• Understand what "vibe coding" is and why it already affects products being sold into our industry.
• Identify the specific vulnerabilities — hardcoded credentials, broken access controls, exposed databases — that keep appearing in AI-built software
• Know what UK GDPR and the DUAA 2025 actually require of you as a data controller, explained in plain English.
• Leave with a practical checklist to audit your own digital stack and the questions to ask any agency or supplier building tools that touch tenant data.
Panellists (to be confirmed):
• A UK data protection solicitor or DPO specialist with SME and proptech experience
• A cybersecurity practitioner who works with small digital businesses
• A storage operator with lived experience of a security or supplier issue
We will also include a quick round-robin on recent digital updates relevant to operators—ICO enforcement news, AI tool developments, and where to keep up with weekly changes.

