I want to know more about the data lifecycle of our inputs into these systems. Considering We know they use input data to retrain models periodically and CC is definitely reading and using API keys and other private information to connect systems. I feel like this is either common knowledge and I just missed that day in class or people are genuinely giving their blind trust with valuable credentials? My “research” says:
- OpenAI states business data is encrypted with AES-256 at rest and TLS 1.2+ in transit.
- OpenAI and Anthropic SAY inputs are not used for training by default …for commercial products.
- OpenAI stores data for up to 30 days.
- OpenAI Codex Cloud “Secrets” are encrypted separately, decrypted only during task execution, and removed before the agent phase. “The practical answer: don’t give AI agents durable, high-privilege secrets. Treat them like junior devs with shell access.” submitted by /u/dennisplucinik
Originally posted by u/dennisplucinik on r/ClaudeCode
You must log in or # to comment.
I once generated a key and pasted it into ChatGPT amid a bunch of code because I was curious what it would do. It immediately warned me that I had pasted a key and that I should go change it.