This is OpenAI's privacy policy explaining what data they collect when you use products like ChatGPT and how they use it. Your conversations, uploaded files, and usage activity may be used to train and improve their AI models, but you can turn this off in your settings. The policy also explains your rights to access, delete, or export your data.
This is OpenAI's global privacy policy (with regional addenda for EU, US, and Korea) governing the collection, use, and sharing of personal data across OpenAI's suite of products including ChatGPT, Sora, Codex, and its API platform. The policy identifies multiple categories of personal data collected — including usage data, device identifiers, communications content, and user-provided inputs — and describes their use for service delivery, safety, research, and model training. Key rights afforded to users include access, deletion, correction, and data portability, with distinct provisions for EU users under GDPR and California residents under CCPA. Notably, the policy discloses that user inputs and conversations may be used to train and improve AI models unless users opt out via available controls. The document references third-party service providers, partners, and affiliate sharing, and addresses cross-border data transfers with appropriate safeguards.
This policy engages GDPR (EU users), CCPA/CPRA (California residents), and Korea's PIPA (via a dedicated addendum), creating multi-jurisdictional compliance obligations around lawful basis, data subj…
This policy engages GDPR (EU users), CCPA/CPRA (California residents), and Korea's PIPA (via a dedicated addendum), creating multi-jurisdictional compliance obligations around lawful basis, data subject rights, and cross-border transfer mechanisms. Legal teams should note the broad model training d…
Compliance intelligence locked
Regulatory exposure, material risk, and due diligence action items.