This analysis describes what OpenAI's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
The clause establishes that API data is not immediately discarded and may be held for up to 30 days for defined operational and safety purposes.
The updated terms shift governance of conversation access and retention from end users to workspace administrators. Under the revised policy, workspace admins can now view, access, export, and delete any end user conversations within their workspace and control how long workspace data is retained. Additionally, OpenAI now reserves the right to retain deleted or unsaved conversations beyond the standard 30-day deletion window if retention is reasonably necessary to protect its services or any third party from harm, beyond prior language that limited retention extensions to legal requirements. Within an enterprise account, end users no longer have unilateral control over conversation visibility or deletion of their own conversations.
View change record →Your API inputs and outputs may be retained by OpenAI for up to 30 days after submission.
How other platforms handle this
Developer must promptly and securely delete all Upwork User Data collected from Upwork users upon request of the Upwork user, when the Upwork user deactivates or uninstalls the Developer Application, when the Upwork user closes their account with Developer...
We may retain your Personal Data for a period of time consistent with the original purpose of collection...or as long as required to fulfill our legal and/or regulatory obligations.
We keep your personal information where we have an ongoing legitimate business need to do so (for example, to provide you with our Services or to comply with applicable legal, tax or accounting requirements).
Monitoring
OpenAI has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 25 platforms.
"OpenAI may securely retain API inputs and outputs for up to 30 days to provide the services and to identify abuse.— Excerpt from OpenAI's OpenAI Enterprise Privacy
Compliance Governance Intelligence
Need to monitor specific governance provisions?
Compliance includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
The clause establishes that API data is not immediately discarded and may be held for up to 30 days for defined operational and safety purposes.
Your API inputs and outputs may be retained by OpenAI for up to 30 days after submission.
ConductAtlas has identified this type of provision across 275 platforms. See the full comparison.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by OpenAI.