What are the institutional and regulatory implications of this document?

REGULATORY LANDSCAPE: The GPT-4o System Card engages the EU AI Act's general-purpose AI model provisions, which impose transparency and risk-assessment obligations on providers of models with systemic risk. The document also intersects with FTC authority over deceptive or unfair practices involving AI-generated content, including synthetic voice generation and influence operations. OpenAI's voluntary commitments to the US government on AI safety, referenced in the card, are not legally binding …

How does OpenAI's GPT-4o System Card (PDF) affect users?

The document discloses GPT-4o's technical capabilities to process real-time audio and visual inputs and identifies risks including unauthorized speaker identification, generation of synthetic voices resembling real people, and emotional state inference from audio. Users of ChatGPT and applications built on the GPT-4o API operate under usage policies and operational restrictions that OpenAI has configured in response to these identified risks, with residual risks documented in the system card.

How often is OpenAI's GPT-4o System Card (PDF) updated?

ConductAtlas monitors this document daily and captures every version with cryptographic hashing and timestamp verification. Update frequency varies — see the change timeline on this page for complete version history.

Can I get alerted when OpenAI updates this document?

Yes. Watcher subscribers ($9.99/month) can add OpenAI to their watchlist and receive same-day email alerts whenever this document or any other OpenAI document changes.

CA-D-000008

GPT-4o System Card (PDF)

OpenAI

Last change detected March 10, 2026 System card

SHA-256: 13469e1f569bac73628… 1 version captured 0 changes documented

Create free account

Track 1 platform and get the weekly governance digest. No credit card required.

View original document at OpenAI ↗

This page describes what the document states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability may vary by jurisdiction. Methodology

7 Total

2 High severity

4 Medium severity

1 Low severity

Summary

This document is OpenAI's system card for GPT-4o, disclosing the model's capabilities across audio, image, and text processing and the identified risks prior to release. The document establishes that GPT-4o processes and generates voice, images, and text simultaneously, and identifies specific risk categories including voice output that resembles real individuals, emotional state inference from audio, and potential use in influence operations or cyberattacks. OpenAI applied mitigations to these identified risks while acknowledging residual risks remain after deployment.

Technical / Legal Breakdown

This document is the GPT-4o System Card published by OpenAI, a technical safety and governance disclosure describing the capabilities, risks, and mitigation measures associated with the GPT-4o model prior to its public release. The card states that OpenAI conducted external red teaming, frontier risk evaluations under its Preparedness Framework, and implemented behavioral mitigations across audio, vision, and text modalities to address identified risk areas including CBRN uplift, persuasion, model autonomy, and voice-based harms. The document discloses that GPT-4o introduces a native audio-visual modality that creates operationally distinct risk surfaces compared to text-only predecessors, including the potential for voice cloning, unauthorized speaker identification, real-time emotion inference, and generation of content that could enable social engineering or influence operations. The card engages the EU AI Act's high-risk and general-purpose AI classification frameworks, the FTC's consumer protection authority over deceptive AI-generated content, and broader voluntary AI safety commitments made by OpenAI to the US government. The document acknowledges residual risks across evaluated categories and states that GPT-4o received a 'medium' risk rating under the Preparedness Framework for CBRN and cybersecurity, with deployment authorized subject to ongoing monitoring and post-deployment mitigation updates.

Institutional Analysis

Institutional analysis available with Professional

Regulatory exposure by statute, material risk assessment, vendor due diligence action items, and enforcement precedent. Available on Professional.

Start Professional free trial

High — 2 provisions

Audio Modality Speaker Identification and Emotion Inference Restrictions Compare →

GPT-4o can process live audio, but OpenAI has restricted it from identifying who is speaking from their voice alone or from analyzing and reporting on a person's emotions based on how they sound.

Added May 12, 2026 Standard Seen across 179 platforms
Influence Operations and Election-Related Content Restrictions Compare →

OpenAI tested whether GPT-4o could be used to run influence operations or create political disinformation, applied restrictions to reduce this risk, but acknowledged that some residual risk remains.

Added May 12, 2026 Standard Seen across 179 platforms

Medium — 4 provisions

Preparedness Framework Risk Classification

OpenAI rated GPT-4o as a medium risk for helping people create biological, chemical, nuclear, or radiological weapons and for assisting cyberattacks, meaning it was cleared for release but with conditions and ongoing monitoring.

Added May 12, 2026 Rare
Synthetic Voice Generation and Voice Similarity Controls

GPT-4o can generate realistic human-sounding voices, but OpenAI states it has built controls to prevent the model from generating voices that closely copy real people's voices without their permission.

Added May 12, 2026 Rare
Cybersecurity Uplift Assessment and Residual Risk Compare →

OpenAI tested whether GPT-4o could help people conduct cyberattacks and rated it as a medium-level risk, meaning it was approved for release but with safety measures in place and continued monitoring.

Added May 12, 2026 Standard Seen across 262 platforms
Operator Responsibility for Downstream Deployment Safeguards

Businesses and developers who build products using GPT-4o are responsible for adding their own safety measures on top of OpenAI's, because OpenAI's built-in protections are designed as a starting point, not a complete solution for every application.

Added May 12, 2026 Rare

Low — 1 provision

External Red Teaming and Safety Evaluation Methodology

Before releasing GPT-4o, OpenAI hired outside experts to try to find ways the model could be misused, used their findings to guide the safety measures put in place, and then assessed the model against its own internal risk framework.

Added May 12, 2026 Rare

Monitoring

OpenAI has updated this document before.

Watcher includes same-day alerts, structured change summaries, and monitoring for up to 10 platforms.

Start Watcher free trial Or create a free account →

Professional Governance Intelligence

Need provision-level monitoring and regulatory mapping?

Professional includes governance timelines, compliance memos, audit-ready analysis, and full provision tracking.

Start Professional free trial

Cross-platform context

See how other platforms handle Audio Modality Speaker Identification and Emotion Inference Restrictions and similar clauses.

Compare across platforms →