OpenAI updated formatting in its Enterprise Privacy document on May 22, 2026 by modifying spacing around hyperlinks in three sentences. The changes involve adjusting whitespace before the opening parentheses in links to the DPA form, Student Data Privacy Agreement, and ChatGPT Business information pages. These are editorial formatting adjustments with no operational change to the substantive terms, obligations, or disclosures.
This change involves only formatting adjustments to hyperlinks in the Enterprise Privacy document and does not modify any substantive privacy terms, data handling procedures, or DPA requirements. The underlying policies regarding data processing, Student Data Privacy Agreements, and ChatGPT Business terms remain unchanged. No consumer action is required.
This change involves only formatting adjustments to hyperlink spacing in the Enterprise Privacy document. The substantive privacy terms, DPA execution requirements, and data handling procedures remain identical, so this update has no operational or regulatory significance.
Formatting adjusted; link remains unchanged.
Formatting adjusted; agreement reference and link remain unchanged.
Formatting adjusted; link remains unchanged.
This change record describes what was added, removed, or modified in the document. Analysis reflects what the updated agreement states or permits. It does not constitute a legal determination about enforceability. Applicability may vary by jurisdiction. Methodology
OpenAI updated link formatting in its Enterprise Privacy document on May 22, 2026. The change affects only whitespace placement around three external hyperlinks—to the DPA form, Student Data Privacy Agreement, and ChatGPT Business information—with no modification to substantive privacy obligations, data processing authorizations, or DPA execution requirements. This is a formatting clarification with no compliance, regulatory, or operational implication.
Full compliance analysis
Obligation analysis, escalation trigger, board language, and recommended action.
Monitor: regulatory citations + obligations. Compliance: full compliance memo.
ConductAtlas provides verified policy intelligence sourced directly from platform documents. All analysis is intended to support, not replace, legal and compliance review. Record CA-C-002250.
This addition explicitly establishes OpenAI's legal status under California privacy law and provides assurance that customer data is not used for behavioral advertising.
This provision adds clarity on the different retention policies between API and Enterprise products and introduces the concept of administrative control over conversation data deletion.
This addition provides transparency about third-party data processors and establishes a notification mechanism for changes, which is critical for compliance with data protection regulations like GDPR.
This provision's specific mention of zero-data-retention option was removed, though the 30-day default is preserved in the new consolidated data retention provision.
Removal of this explicit ownership provision may weaken customer claims to intellectual property rights over their inputs and model outputs.
Removal of this clarity statement eliminates the explicit boundary between enterprise and consumer products, potentially creating ambiguity about which provisions apply to which tiers.
Removed explicit mention of ChatGPT Team product and removed redundant 'by default' from the second sentence.
Changed 'DPA' terminology from 'Addendum' to 'Agreement', added explicit customer scope (API and ChatGPT Enterprise), and clarified SCCs are EC-approved for international transfers rather than just for GDPR compliance.
Narrowed scope from general 'customers' to specifically 'API customers' and removed mention of 'HIPAA-eligible services' in favor of direct BAA signing capability.
Changed from 'maintain' to 'achieved', added specificity about regular audits and security control maintenance, and clarified the purpose as data protection.
Cross-platform context
See how other platforms handle similar provisions across the ConductAtlas archive.
See the full side-by-side comparison of every sentence added, removed, and modified.
🔒 Full diff — MonitorOpenAI updated its Frontier Governance Framework on July 6, 2026, making two minor modifications to the document's presentation. The title …
Ad personalization controls removed. Contact scanning added. Advertiser data partnerships quietly dropped. A timeline of every change.
The bill does not regulate most AI startups directly. But it changes the companies they depend on. Here is what the first federal AI law wo…
872 provisions across 8 AI platforms. The terms your AI provider sets become the terms your product operates under.
Get alerted when this policy changes again — including what changed and why it matters.
Prefer a weekly summary instead?
Get the biggest policy changes across 352+ platforms every Sunday.