This analysis describes what OpenAI's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
Retention is permissive rather than mandatory and is capped at 30 days, but the two stated purposes — service provision and abuse identification — authorize OpenAI to hold API data during that window.
The updated terms establish that workspace admins, rather than individual end users, control how long workspace conversation data is retained and authorize admins to view, access, export, and delete end user conversations. Previously, the policy stated that each user controlled whether their conversations were retained and that only end users could view their own conversations. The revised terms also permit OpenAI to retain deleted or unsaved conversations beyond the standard 30-day deletion window if retention is required by law or reasonably necessary to protect OpenAI's services or third parties from harm. Workspace users should review their organization's data governance policies to understand what access and retention practices their admins have implemented.
View change record →Your API inputs and outputs may be held by OpenAI for up to 30 days and used for service provision and abuse identification.
How other platforms handle this
If you decide to delete your Profile, it will no longer be visible to other Grindr users and your personal information will generally be deleted within 28 days.
Developer must promptly and securely delete all Upwork User Data collected from Upwork users upon request of the Upwork user, when the Upwork user deactivates or uninstalls the Developer Application, when the Upwork user closes their account with Developer...
We may retain your Personal Data for a period of time consistent with the original purpose of collection...or as long as required to fulfill our legal and/or regulatory obligations.
Monitoring
OpenAI has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 25 platforms.
"OpenAI may securely retain API inputs and outputs for up to 30 days to provide the services and to identify abuse.— Excerpt from OpenAI's OpenAI API Data Usage Policies
Compliance Governance Intelligence
Need to monitor specific governance provisions?
Compliance includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
Retention is permissive rather than mandatory and is capped at 30 days, but the two stated purposes — service provision and abuse identification — authorize OpenAI to hold API data during that window.
Your API inputs and outputs may be held by OpenAI for up to 30 days and used for service provision and abuse identification.
ConductAtlas has identified this type of provision across 275 platforms. See the full comparison.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by OpenAI.