OpenAI is fighting a court order at the demands of The New York Times and plaintiffs, which involves retention of consumer ChatGPT and API user data indefinitely. Learn how we’re working to uphold user privacy, address legal requirements, and stay true to our data protection commitments.

The first time you connect an app in ChatGPT, we’ll help you understand what types of data may be collected by the third party. Developers of apps must also include clear privacy policies, collect only the minimum data they need, and be transparent about permissions.

3 weeks ago - The main concerns being investigated include the collection and storage of sensitive biometric data. Existing AI models such as OpenAI’s flagship GPT-4o have largely been trained on publicly available data from the internet.

While OpenAI would likely counter that no organization is hack-proof, increased transparency around safety steps and incident reporting could help ease these concerns. The other big question facing OpenAI is whether they use data from customer interactions with their commercial services to improve their AI without explicit consent. For services like ChatGPT, GPT-3 and DALL-E, OpenAI does state in their privacy policies that conversations, text inputs and other user data may be utilized for improving models, training algorithms and more.

The OpenAI API and ChatGPT business plans undergo regular third-party penetration testing to identify security weaknesses before they can be exploited by malicious actors.

Needless to say, OpenAI went, “Oh, hell no,” and immediately appealed the verdict. CEO Sam Altman also took to social media, saying that the judge's decision compromises user privacy and “sets a bad precedent”. In this blog, we’ll look at the events that gave rise to the court case and at the wider implications of Judge Wang’s order for cybersecurity and data privacy.

Infrastructure supporting ChatGPT for Teachers is adherent to industry best practices for security & privacy. Read more in our · Security Portal⁠⁠(opens in a new window). Each of your workspace members control whether their conversations are retained. Any deleted conversations are removed from our systems within 30 days, unless we are legally required to retain them. Note that retention enables features like conversation history, and shorter retention periods may compromise product experience. The OpenAI API Platform gives developers access to powerful models like our GPT‑5 models.

For individuals in the European Economic Area, United Kingdom, and Switzerland, you can read this version⁠ of our Privacy Policy · We at OpenAI OpCo, LLC (together with our affiliates, “OpenAI”, “we”, “our” or “us”) respect your privacy and are strongly committed to keeping secure any information we obtain from you or about you.

March 30, 2025 - As LLM tools become increasingly integrated into our daily workflows, understanding and addressing privacy and data safety concerns is essential. OpenAI provides a range of security measures, including robust encryption, customizable data retention settings, and compliance support for regulations such as GDPR and CCPA.

1 week ago - That could raise privacy concerns, as ChatGPT users often share deeply personal, sensitive, and sometimes even confidential information that appears to go into limbo if a user—who otherwise owns that content—dies.

The main concerns being investigated include the collection and storage of sensitive biometric data. Existing AI models such as OpenAI’s flagship GPT-4o have largely been trained on publicly available data from the internet.

3 weeks ago - Wang had said in her initial order to produce the chats that OpenAI users' privacy would be protected by the company's "exhaustive de-identification" and other safeguards. Wang reiterated on Wednesday that the company's measures would "reasonably mitigate associated privacy concerns."

The New York Times is suing OpenAI. As part of their baseless lawsuit, they’ve demanded the court to force us to hand over 20 million user conversations. This would allow them to access millions of user conversations that are unrelated to the case. We strongly believe this is an overreach. It risks your privacy without actually helping resolve the lawsuit.

Recently, Poland's Personal Data Protection Office has taken a significant step towards asserting the importance of data privacy in the age of artificial intelligence. This move was prompted by a complaint against OpenAI, the company responsible for the popular AI language model, ChatGPT, alleging violations of the General Data Protection Regulation (GDPR).

Foundry is an Azure service; Microsoft hosts the Azure Direct Models in Microsoft's Azure environment and Azure Direct Models do NOT interact with any services operated by Azure Direct Model providers, for example, OpenAI (e.g.

April 4, 2023 - Unlike the patchwork of state-level privacy rules in the United States, GDPR’s protections apply if people’s information is freely available online. In short: Just because someone’s information is public doesn’t mean you can vaccuum it up and do anything you want with it. Italy’s Garante believes ChatGPT has four problems under GDPR: OpenAI doesn’t have age controls to stop people under the age of 13 from using the text generation system; it can provide information about people that isn’t accurate; and people haven’t been told their data was collected.

September 12, 2024 - However, OpenAI's models, despite the organization's name, are not open in the sense that their exact training data and intricate model details are not publicly available. This lack of transparency can be a concern for enterprises as it affects ...

Azure AI Foundry is an Azure service; Microsoft hosts the Azure Direct Models in Microsoft's Azure environment and Azure Direct Models do NOT interact with any services operated by Azure Direct Model providers, for example, OpenAI (e.g.

September 3, 2024 - Hi Community We are creating application for pharma client using openai apis. Client data is highly confidential, and data privacy is big concern. As per openai policies, openai do not uses data for training if we are u…