Artificial intelligence may be getting easier to use, but Ohio University’s latest warning makes clear that convenience is not the same as safety. In a March 9, 2026 article, the university spelled out how public AI tools can expose data, weaken institutional control, and create device-level privacy risks if users are careless with prompts, uploads, or browser permissions. The message is not that staff, faculty, and students should avoid AI altogether; it is that they need to understand where the guardrails are before they type, paste, or click. Ohio’s guidance now sits alongside a broader university push to adopt AI selectively, while keeping sensitive information inside approved boundaries. (ohio.edu)
Ohio University’s warning arrives at a moment when higher education is being pulled in two directions at once. On one side, generative AI has become a practical productivity layer for drafting, summarizing, and searching. On the other, universities have to protect student records, research data, personnel information, and all the other material that cannot be casually handed to an external vendor. OHIO’s Secure Use of Artificial Intelligence (AI) Tools Standard, which explicitly governs users who process, store, or transmit university data, is the legal and operational backbone behind the latest message. (ohio.edu)
The standard is unusually direct. It says unvetted or externally hosted AI services cannot be held accountable for data governance and security requirements in the same way approved vendors can, and it warns that these tools may be hosted outside Ohio’s legal jurisdiction. That matters because the university’s administrators cannot enforce the same privacy, retention, or compliance rules on a public AI platform that they can on a contracted enterprise service. In practice, this means the university is not only judging the technology; it is judging the vendor’s willingness and ability to participate in governance. (ohio.edu)
The broader pattern is also important. In 2025, Ohio University ran a yearlong Microsoft 365 Copilot pilot with approximately 130 participants from across the institution, with monthly feedback sessions and a focus on ROI, workflow fit, and data-security compliance. The pilot found that Copilot was especially useful for quick drafting in Outlook, Word, and PowerPoint, but that measurable time savings were uneven. That is the real-world backdrop for the 2026 warning: the university is not rejecting AI, but it is trying to separate useful workflow automation from reckless data handling. (ohio.edu)
At the same time, OHIO is building a social infrastructure around AI through its AI Community of Interest, which has been active since 2024 and includes members from OIT, CTLA, the Provost’s Office, University Human Resources, Libraries, and other units. That community is doing more than discussing tools; it is shaping norms, pilot groups, and feedback loops. In other words, the university is trying to make AI governance participatory rather than purely punitive. (ohio.edu)
This is where public AI use becomes risky for enterprise work. A user may think they are simply asking for a summary or a rewrite, but the tool may retain the input, log the interaction, or process it in ways the user never sees. The result is a compliance problem that starts with one prompt and ends with a records-management headache. That is precisely why the university keeps stressing “public” versus “protected” AI use. (ohio.edu)
The policy also points out that public AI services may be hosted outside Ohio or even the United States. That matters because jurisdictional uncertainty can complicate legal review, contractual enforcement, and incident response. If an AI tool is somewhere else, under someone else’s rules, the university may be left to rely on vendor assurances instead of enforceable controls. (ohio.edu)
This problem is especially dangerous in higher education, where a false citation, a hallucinated policy reference, or a made-up research summary can travel quickly. The university’s advice is not merely “double-check your work”; it is verify everything before it enters an institutional workflow. That distinction matters because AI mistakes can become policy mistakes if nobody catches them early. (ohio.edu)
OHIO’s guidance makes that operational by telling users to sign in with their university credentials at Copilot and confirm the protected indicator appears. That is a simple but useful habit: it forces the user to verify the session before entering anything sensitive. In practice, a quick visual check can prevent a much bigger cleanup later. (ohio.edu)
OHIO’s 2025 Copilot pilot helps explain the appeal. The university found that Copilot delivered moderate productivity gains, especially for communication-heavy roles, but that training and trust barriers remained. That means the institution is dealing with an adoption problem as much as a security problem. Users need to understand not just what Copilot can do, but what kind of Copilot they are using. (ohio.edu)
This risk is especially relevant in mixed-use environments like universities, where a single device may touch personal, academic, and administrative work. The more permissions a tool asks for, the more it can potentially expose if it is poorly designed or malicious. In security terms, every extra permission is another chance to leak something that was never meant to leave the machine. (ohio.edu)
For users, the practical lesson is simple: permission prompts should trigger skepticism, not reflexive approval. If an AI tool wants broad access to files, histories, or sessions, that should raise the same alarm bells as any other unfamiliar software. The safest assumption is that convenience and trust are not the same thing. (ohio.edu)
This approach also scales well across departments. A communications office may use public AI for newsletter drafts, while a research office may need to keep unpublished findings entirely out of third-party systems. By grounding the standard in data classification, OHIO gives each unit a framework that can adapt to the sensitivity of the work. (ohio.edu)
That formalism also keeps AI governance from becoming ad hoc. If a department wants to adopt a tool for a research, administrative, or instructional workflow, it cannot simply rely on enthusiasm or a vendor demo. It has to go through review, which creates a paper trail and a control point. That’s a bureaucratic burden, yes — but it is also the point. (ohio.edu)
The pedagogical challenge is real. Instructors are being asked to model responsible AI use while also adapting assignments and classroom policies to a rapidly changing technology landscape. OHIO’s guidance does not eliminate that tension, but it does give faculty a reliable line: public content is one thing; confidential course, research, and student data are another. (ohio.edu)
The key downside is that users may not always distinguish “internal” from “confidential.” OHIO’s standard helps by defining sensitive data broadly, but the day-to-day burden falls on the employee to recognize when a request crosses the line. That is why the university keeps emphasizing verification and asking for help when unsure. (ohio.edu)
OHIO’s simple rule of thumb is useful here: if you would not send the content to an unknown vendor, do not paste it into a public AI tool. That advice is memorable precisely because it translates a technical policy into an everyday judgment call. Sometimes the best security training is the sentence people can remember under pressure. (ohio.edu)
This matters competitively because universities are increasingly comparing AI products on security, not just features. A tool that drafts beautifully but cannot satisfy governance requirements is likely to be excluded from serious institutional use. A tool that is slightly less flashy but easier to audit may win the contract. (ohio.edu)
The real market implication is segmentation. Public tools will remain attractive for casual use and experimentation, while enterprise tools will dominate sensitive operational workflows. The organizations that understand that split will move faster because they will spend less time debating whether AI is allowed and more time deciding which AI is appropriate. (learn.microsoft.com)
The next step will be making the safe path feel normal rather than exceptional. If users can quickly identify the right tool, confirm the green shield, and understand when to escalate a question, OHIO will have done more than reduce risk; it will have operationalized AI governance. That is the real test now: not whether the policy exists, but whether it becomes muscle memory. (learn.microsoft.com)
Source: Ohio University Understanding the risks of AI tools: Protecting your data, devices at Ohio University
Ohio University’s warning arrives at a moment when higher education is being pulled in two directions at once. On one side, generative AI has become a practical productivity layer for drafting, summarizing, and searching. On the other, universities have to protect student records, research data, personnel information, and all the other material that cannot be casually handed to an external vendor. OHIO’s Secure Use of Artificial Intelligence (AI) Tools Standard, which explicitly governs users who process, store, or transmit university data, is the legal and operational backbone behind the latest message. (ohio.edu)The standard is unusually direct. It says unvetted or externally hosted AI services cannot be held accountable for data governance and security requirements in the same way approved vendors can, and it warns that these tools may be hosted outside Ohio’s legal jurisdiction. That matters because the university’s administrators cannot enforce the same privacy, retention, or compliance rules on a public AI platform that they can on a contracted enterprise service. In practice, this means the university is not only judging the technology; it is judging the vendor’s willingness and ability to participate in governance. (ohio.edu)
Why the timing matters
This is not Ohio University’s first AI policy step. In January 2024, OHIO’s Information Security committee formally approved a secure-use standard for artificial intelligence tools, already warning that sensitive data must not be entered into systems like ChatGPT, Google Bard, Bing, or DALL·E 3. Since then, the university has expanded its messaging from a policy document into operational guidance, pilot programs, and campus communities of practice. That progression suggests OHIO is moving from defining the risk to managing day-to-day behavior.The broader pattern is also important. In 2025, Ohio University ran a yearlong Microsoft 365 Copilot pilot with approximately 130 participants from across the institution, with monthly feedback sessions and a focus on ROI, workflow fit, and data-security compliance. The pilot found that Copilot was especially useful for quick drafting in Outlook, Word, and PowerPoint, but that measurable time savings were uneven. That is the real-world backdrop for the 2026 warning: the university is not rejecting AI, but it is trying to separate useful workflow automation from reckless data handling. (ohio.edu)
The university’s posture
OHIO’s guidance also reflects a key institutional instinct: make the safe path the easiest path. The university says the protected version of Microsoft Copilot can be used with sensitive data, while public tools should be reserved for low-impact, publicly available information. That distinction is reinforced both by OHIO’s own policy page and Microsoft’s documentation on enterprise data protection, which states that Copilot Chat prompts and responses are processed within the Microsoft 365 service boundary and are not used to train the underlying foundation models. (ohio.edu)At the same time, OHIO is building a social infrastructure around AI through its AI Community of Interest, which has been active since 2024 and includes members from OIT, CTLA, the Provost’s Office, University Human Resources, Libraries, and other units. That community is doing more than discussing tools; it is shaping norms, pilot groups, and feedback loops. In other words, the university is trying to make AI governance participatory rather than purely punitive. (ohio.edu)
What Ohio University Is Warning About
The core warning is straightforward: if you share data with a public AI tool, you may lose control over where it goes, how it is stored, and what it is later used for. OHIO says prompts, files, and device access can expose information to external servers, subcontractors, and even breaches. That is especially concerning for regulated content, including FERPA-protected student records, HIPAA data, export-controlled research, and proprietary university materials. (ohio.edu)Data exposure is the first line of risk
The university’s public-facing article breaks “data exposure” into concrete outcomes: storage on external servers, model improvement, subcontractor sharing, and breach exposure. That framing is useful because it turns a vague privacy concern into a chain of custody problem. Once a document leaves the university’s controlled environment and enters a third-party system, the institution can no longer assume it knows every hand that touches it. (ohio.edu)This is where public AI use becomes risky for enterprise work. A user may think they are simply asking for a summary or a rewrite, but the tool may retain the input, log the interaction, or process it in ways the user never sees. The result is a compliance problem that starts with one prompt and ends with a records-management headache. That is precisely why the university keeps stressing “public” versus “protected” AI use. (ohio.edu)
Loss of institutional control is a governance issue
OHIO’s policy makes a blunt institutional argument: once information is entered into an unapproved AI tool, the university has no authority over how it is retained, processed, or shared. That is not just a technical limitation; it is a governance boundary. For universities, control over data is inseparable from their duties to students, researchers, employees, and sponsors. (ohio.edu)The policy also points out that public AI services may be hosted outside Ohio or even the United States. That matters because jurisdictional uncertainty can complicate legal review, contractual enforcement, and incident response. If an AI tool is somewhere else, under someone else’s rules, the university may be left to rely on vendor assurances instead of enforceable controls. (ohio.edu)
Output can be wrong even when it sounds confident
Ohio’s guidance also addresses a subtler danger: AI systems can generate incorrect or fabricated information. The university says output from unapproved tools should not be assumed factual and must be verified before use in university work. That is a critical reminder because users often treat polished language as a sign of reliability, when in fact fluency can mask error. (ohio.edu)This problem is especially dangerous in higher education, where a false citation, a hallucinated policy reference, or a made-up research summary can travel quickly. The university’s advice is not merely “double-check your work”; it is verify everything before it enters an institutional workflow. That distinction matters because AI mistakes can become policy mistakes if nobody catches them early. (ohio.edu)
The Approved Path: Microsoft Copilot and Enterprise Protections
Ohio University is not banning all AI use. Instead, it is endorsing a narrower, safer route: the protected version of Microsoft Copilot for sensitive or internal information. OHIO says its paid Microsoft 365 environment gives users access to Copilot at no additional charge and that the protected version does not use user inputs to train the underlying large language models. Microsoft’s own documentation supports the distinction, describing enterprise data protection and a green shield indicator in the interface. (ohio.edu)What the green shield means
The green shield is more than a visual flourish. In Microsoft’s documentation, it signals that enterprise data protection is active, and Microsoft says prompts and responses are processed within the Microsoft 365 boundary rather than fed into model training. For campus users, that means the shield is shorthand for a very different data-handling regime than the one used by ordinary consumer AI tools. (learn.microsoft.com)OHIO’s guidance makes that operational by telling users to sign in with their university credentials at Copilot and confirm the protected indicator appears. That is a simple but useful habit: it forces the user to verify the session before entering anything sensitive. In practice, a quick visual check can prevent a much bigger cleanup later. (ohio.edu)
Why enterprise protection matters for universities
Enterprise protections matter because universities are not ordinary customers. They hold regulated student information, research data under contract, and internal records that can trigger legal and reputational harm if mishandled. Microsoft’s documentation notes that Copilot Chat can be covered by enterprise data protection and that prompts and responses are logged within the Microsoft 365 tenant for auditing and eDiscovery. That logging capability is exactly the sort of feature a university wants when it is trying to prove compliance and maintain accountability. (learn.microsoft.com)OHIO’s 2025 Copilot pilot helps explain the appeal. The university found that Copilot delivered moderate productivity gains, especially for communication-heavy roles, but that training and trust barriers remained. That means the institution is dealing with an adoption problem as much as a security problem. Users need to understand not just what Copilot can do, but what kind of Copilot they are using. (ohio.edu)
Enterprise versus public AI
The distinction between enterprise and public AI is now central to Ohio’s approach. Public AI tools can be fine for summarizing public web content or brainstorming ideas, while enterprise tools are the place for internal drafts, non-public workflows, and sensitive institutional context. That split is sensible because it maps risk to use case instead of treating all AI the same. (ohio.edu)- Public AI: good for low-impact or public information.
- Protected Copilot: appropriate for sensitive university information.
- Unapproved tools: should not receive proprietary, regulated, or confidential data.
- Verified environment: always confirm the green shield before use.
- Logged environment: assume enterprise prompts may be retained for audit purposes. (ohio.edu)
Device and Browser Privacy Risks
The university’s article wisely extends the warning beyond text prompts. Some AI browser extensions and apps ask for access to browsing history, device data, or files, and that creates a different class of exposure. Once a tool has that kind of permission, it is not just reading your prompt; it may be seeing the surrounding context of your digital life. (ohio.edu)Why permissions matter more than users think
Many people think of AI tools as chat boxes, but browser extensions and desktop apps can be much more invasive. If a tool can inspect open tabs, read file contents, or monitor browsing behavior, the privacy risk becomes closer to endpoint compromise than simple information sharing. That is why unvetted apps are a concern even when a user is not entering obvious sensitive data. (ohio.edu)This risk is especially relevant in mixed-use environments like universities, where a single device may touch personal, academic, and administrative work. The more permissions a tool asks for, the more it can potentially expose if it is poorly designed or malicious. In security terms, every extra permission is another chance to leak something that was never meant to leave the machine. (ohio.edu)
The malware angle
OHIO also notes that unvetted tools can increase the risk of malware. That is an important point because the AI conversation often focuses on privacy and copyright while ignoring endpoint security. A flashy new extension that promises productivity can still be the easiest way to introduce unwanted access into a browser or operating system. (ohio.edu)For users, the practical lesson is simple: permission prompts should trigger skepticism, not reflexive approval. If an AI tool wants broad access to files, histories, or sessions, that should raise the same alarm bells as any other unfamiliar software. The safest assumption is that convenience and trust are not the same thing. (ohio.edu)
A short checklist for device safety
- Read permission prompts carefully before installing AI extensions.
- Avoid granting file or browsing access unless there is a clear business need.
- Prefer approved university tools over consumer add-ons.
- Remove tools that are no longer needed.
- Report suspicious behavior to information security immediately. (ohio.edu)
The University’s Compliance Logic
Ohio University’s standard is ultimately about compliance architecture, not just personal caution. The policy names FERPA, HIPAA, PCI-DSS, GLBA, GDPR, export controls, and identifiable human subject research because those are the kinds of obligations that can turn a careless prompt into a regulatory event. The university is signaling that AI use is now part of the larger compliance stack, not a separate side activity. (ohio.edu)Data classification is the real gatekeeper
The policy distinguishes between publicly available or low-impact information and medium- or high-impact data. That means the classification of the information should determine whether AI use is acceptable, not the novelty of the tool itself. In a campus setting, this is a much cleaner rule than trying to memorize a list of brand names or features. (ohio.edu)This approach also scales well across departments. A communications office may use public AI for newsletter drafts, while a research office may need to keep unpublished findings entirely out of third-party systems. By grounding the standard in data classification, OHIO gives each unit a framework that can adapt to the sensitivity of the work. (ohio.edu)
Exceptions are possible, but formal
The university does allow exceptions, but they must be documented with the Information Security Office before approval by the Information Security Governance Committee. That process is important because it prevents exception creep, where informal approvals slowly erode the policy. In security governance, exceptions are useful only if they are traceable, reviewable, and renewed periodically. (ohio.edu)That formalism also keeps AI governance from becoming ad hoc. If a department wants to adopt a tool for a research, administrative, or instructional workflow, it cannot simply rely on enthusiasm or a vendor demo. It has to go through review, which creates a paper trail and a control point. That’s a bureaucratic burden, yes — but it is also the point. (ohio.edu)
Why higher education is unusually exposed
Universities are especially vulnerable because they sit at the intersection of research, education, labor, and health-adjacent data. A single AI prompt could touch student records, grant-funded material, confidential HR information, or proprietary research, each of which may be governed by a different rule set. That is why OHIO’s guidance reads broader than a simple acceptable-use memo; it is a risk management document in disguise. (ohio.edu)How This Affects Faculty, Staff, and Students
The practical impact of OHIO’s warning will vary by role. For faculty, the biggest concern is the temptation to upload course materials, grading rubrics, or unpublished research into a public AI tool for quick help. For staff, it is the allure of using AI to summarize internal emails, policy drafts, or personnel-related documents. For students, the risk may be less institutional and more about accidentally exposing their own academic or personal information. (ohio.edu)Faculty: teaching and research require extra care
Faculty users need to be especially careful because the university’s standard explicitly prohibits using AI to generate non-public university data, including non-public instructional materials, grading, and certain research-related outputs. That means even a seemingly harmless prompt can become a policy issue if it pulls in content not meant for general circulation. (ohio.edu)The pedagogical challenge is real. Instructors are being asked to model responsible AI use while also adapting assignments and classroom policies to a rapidly changing technology landscape. OHIO’s guidance does not eliminate that tension, but it does give faculty a reliable line: public content is one thing; confidential course, research, and student data are another. (ohio.edu)
Staff: internal work needs the protected lane
Staff members often handle the most operationally sensitive material, from HR workflows to business planning and internal communications. The university’s recommendation to use protected Copilot for sensitive or internal information is therefore especially relevant to them. It creates a sanctioned environment for drafting and summarizing without forcing employees to choose between speed and security. (ohio.edu)The key downside is that users may not always distinguish “internal” from “confidential.” OHIO’s standard helps by defining sensitive data broadly, but the day-to-day burden falls on the employee to recognize when a request crosses the line. That is why the university keeps emphasizing verification and asking for help when unsure. (ohio.edu)
Students: the risk is often accidental
Students are likely to use public AI for brainstorming, summarizing public readings, or studying, and the university explicitly allows low-impact use for public information. The danger comes when students paste in private records, unpublished projects, or data from academic work that should not leave the university environment. Even when no policy violation occurs, a student may still expose personal information unnecessarily. (ohio.edu)OHIO’s simple rule of thumb is useful here: if you would not send the content to an unknown vendor, do not paste it into a public AI tool. That advice is memorable precisely because it translates a technical policy into an everyday judgment call. Sometimes the best security training is the sentence people can remember under pressure. (ohio.edu)
- Faculty should avoid uploading non-public instructional or research materials.
- Staff should treat internal documents as sensitive unless clearly public.
- Students should avoid entering personal or academic records into public tools.
- Everyone should use the protected Copilot path for sensitive work.
- Everyone should verify AI output before relying on it. (ohio.edu)
Competitive and Market Implications
Ohio University’s guidance also tells us something broader about the AI market in higher education. The vendors that can offer enterprise protections, clear logging, and credible compliance controls will have a much easier time earning institutional trust than consumer-grade tools that depend on loose privacy promises. In that sense, the university is not just setting policy; it is helping shape procurement demand. (ohio.edu)Enterprise AI is becoming the default institutional story
Microsoft stands to benefit from this kind of governance because it has positioned Copilot around enterprise data protection, tenant-level controls, and integration with Microsoft 365. OHIO’s own materials cite a contractual agreement with Microsoft and describe the enterprise version as available to staff, faculty, and students. That makes Copilot not just a productivity tool but a compliance-friendly platform for campus work. (ohio.edu)This matters competitively because universities are increasingly comparing AI products on security, not just features. A tool that drafts beautifully but cannot satisfy governance requirements is likely to be excluded from serious institutional use. A tool that is slightly less flashy but easier to audit may win the contract. (ohio.edu)
Public AI tools still have a role
That does not mean public AI tools are finished in higher education. OHIO explicitly says they can be used for public or low-impact information, such as summarizing publicly available web content or generating general ideas. For many everyday tasks, that is enough. (ohio.edu)The real market implication is segmentation. Public tools will remain attractive for casual use and experimentation, while enterprise tools will dominate sensitive operational workflows. The organizations that understand that split will move faster because they will spend less time debating whether AI is allowed and more time deciding which AI is appropriate. (learn.microsoft.com)
Higher education as a proving ground
Universities are increasingly acting as early validators for enterprise AI governance. Their requirements are stricter than many private workplaces, but their workflows are also diverse and highly visible. If an AI vendor can satisfy a university’s standards, it can make a strong case elsewhere. In that sense, campus policy is becoming a competitive filter for the entire AI industry. (ohio.edu)Strengths and Opportunities
OHIO’s approach is stronger than a blanket warning because it pairs caution with a usable alternative. That balance matters: if users are given only prohibitions, they will improvise; if they are given a safe tool and a clear standard, they are more likely to comply. The policy also has the advantage of being easy to explain, which is often what determines whether security guidance actually sticks. (ohio.edu)- Clear rules reduce ambiguity about what counts as sensitive data. (ohio.edu)
- Protected Copilot access gives users a practical approved option. (ohio.edu)
- Data-classification framing makes the policy easier to apply across departments. (ohio.edu)
- Technology review requirements help prevent shadow AI adoption. (ohio.edu)
- Verification guidance addresses hallucination and misinformation risk. (ohio.edu)
- The AI Community of Interest creates a forum for feedback and shared learning. (ohio.edu)
- Pilot experience gives the university evidence rather than guesswork. (ohio.edu)
Risks and Concerns
The biggest concern is that policy clarity does not automatically produce behavior change. Users may understand the rules and still paste sensitive material into a public tool out of habit, speed, or convenience. The university can publish standards, but it cannot eliminate the human tendency to optimize for the immediate task. (ohio.edu)- Shadow AI use may continue in informal or rushed workflows. (ohio.edu)
- False confidence in AI output can introduce errors into official work. (ohio.edu)
- Permission creep in browser extensions may expose more data than intended. (ohio.edu)
- Jurisdictional uncertainty can complicate legal and regulatory oversight. (ohio.edu)
- User confusion between Copilot products could lead to accidental misuse. (learn.microsoft.com)
- Exception management may become cumbersome if too many units seek special approvals. (ohio.edu)
- Vendor dependence may create pressure to standardize around a small number of approved platforms. (ohio.edu)
Looking Ahead
Ohio University’s AI posture is likely to keep evolving, but the direction is becoming clearer. The institution is building a layered model: public AI for public information, protected enterprise AI for sensitive work, formal review for new tools, and active education through campus communities and security guidance. That model is more sustainable than a rigid ban because it recognizes that AI is already embedded in modern work. (ohio.edu)The next step will be making the safe path feel normal rather than exceptional. If users can quickly identify the right tool, confirm the green shield, and understand when to escalate a question, OHIO will have done more than reduce risk; it will have operationalized AI governance. That is the real test now: not whether the policy exists, but whether it becomes muscle memory. (learn.microsoft.com)
- Expect more guidance tied to approved AI products and use cases. (ohio.edu)
- Expect continued emphasis on data classification and compliance training. (ohio.edu)
- Expect more scrutiny of third-party apps, browser extensions, and plugins. (ohio.edu)
- Expect the AI Community of Interest to remain a key forum for campus feedback. (ohio.edu)
- Expect universities across the country to follow similar enterprise-versus-public AI distinctions. (ohio.edu)
Source: Ohio University Understanding the risks of AI tools: Protecting your data, devices at Ohio University
Similar threads
- Article
- Replies
- 1
- Views
- 32
- Article
- Replies
- 0
- Views
- 78
- Article
- Replies
- 0
- Views
- 115
- Featured
- Article
- Replies
- 0
- Views
- 5
- Article
- Replies
- 1
- Views
- 41