Skip to main content
CloudLast verified May 11, 2026

OpenAI data retention policy

OpenAI's API does not train on customer data by default and retains inputs and outputs for a short abuse-monitoring window. Zero data retention is available for eligible enterprise endpoints. Verified policy summary plus how to route OpenAI through Meetily as a BYOK summary provider.

Quick policy snapshot

Default retention
30 days (default)
Zero data retention available
Yes
Trains on API customer data by default
No

OpenAI's API training default

OpenAI's enterprise privacy page commits that data submitted through the OpenAI API, ChatGPT Enterprise, and ChatGPT Team is not used to train OpenAI's models. The consumer ChatGPT free and Plus tiers default differently and are out of scope for this page.

When Meetily users select OpenAI as their summary provider via BYOK, the request hits api.openai.com under your API key and your account's contract. The defaults on this page apply unless you have a separate enterprise arrangement.

Retention

OpenAI's documented default for API inputs and outputs is short-term retention for abuse monitoring (up to 30 days as published by OpenAI), after which the data is deleted unless legal obligations require longer retention. Specific endpoints such as fine-tuning, Assistants, and Stored Completions have their own retention semantics that you opt into when you use those features.

For exact retention windows, consult OpenAI's enterprise privacy documentation and your Business Associate Agreement (if applicable). Reviewing those before deployment is recommended for regulated workloads.

Zero data retention

OpenAI offers zero data retention for eligible enterprise customers on supported endpoints. With ZDR, prompts and outputs are processed in memory and not retained after the request completes. ZDR is not a self-serve toggle - eligibility and supported endpoints are listed in OpenAI's enterprise documentation, and your account team must enable it.

How Meetily uses OpenAI

Meetily routes OpenAI traffic through your own API key. Your account's contract terms apply. The transcript text is sent over TLS to api.openai.com for summarization, and the response is returned to Meetily and stored locally on your device. Audio is never transmitted to OpenAI at any point.

If you want stronger guarantees than the cloud default offers, switch your summary model to a local provider (Ollama). Meetily's transcription path is already local, so the local-summary path keeps the entire pipeline on-device.

Last verified: May 11, 2026 . Policy source: OpenAI policy

Frequently asked questions

Does OpenAI train models on my API prompts and outputs?
No, not by default. OpenAI's enterprise privacy page commits that data submitted via the API, ChatGPT Enterprise, and ChatGPT Team is not used to train OpenAI's models. The consumer ChatGPT free and Plus tiers are governed by different settings; this page covers the API path.
How long does OpenAI retain my API prompts and outputs?
OpenAI's published default for API inputs and outputs is up to 30 days for abuse monitoring, after which they are deleted, unless legal obligations require longer retention. Specific endpoints (e.g., fine-tuning, Assistants) carry their own retention semantics described in OpenAI's documentation.
Is zero data retention (ZDR) available for the OpenAI API?
Yes, for eligible enterprise customers on supported endpoints. ZDR removes the 30-day default retention, so prompts and outputs are not stored after the request completes. Eligibility and supported model endpoints are listed in OpenAI's enterprise privacy documentation; contact your OpenAI account team to enable it.
Where is OpenAI API data stored geographically?
OpenAI processes API traffic primarily on US infrastructure. Data residency options (e.g., European data residency) are available for eligible enterprise contracts; consult OpenAI sales for the current geographic scope.
How do I request deletion of data OpenAI has retained?
For API accounts, OpenAI deletes data on the published retention schedule by default. For deletion of data outside the default schedule, submit a request through OpenAI's privacy contact channels per the privacy policy on openai.com.
Does OpenAI have SOC 2, HIPAA, or other compliance certifications?
OpenAI publishes its compliance posture on their Trust Portal. SOC 2 Type 2 is available; HIPAA BAAs are available for eligible enterprise customers on supported endpoints. Consult OpenAI sales for the current scope.
How does Meetily handle OpenAI when I pick it as my summary provider?
Meetily transcription is always 100% local. When you select an OpenAI model as your summary provider via BYOK, Meetily routes transcript text (not audio) to api.openai.com using your own API key. The retention and training defaults on this page apply to your traffic, not Meetily's.
What if I want zero retention but my OpenAI account does not have ZDR enabled?
Two options: ask your OpenAI account team to enable ZDR on your workspace, or switch your Meetily summary model to a local provider like Ollama. Meetily's transcription path is unchanged on the local-summary route, so the entire pipeline runs on your device.

Use OpenAI with Meetily, on your terms

Meetily transcription stays 100% local. For summaries, bring your own OpenAI key (BYOK) so the data path matches the policy you just read - or pick a local model if you want zero retention by construction.

Set up BYOKDownload Meetily