In place of unplanned issues at OpenAI, such as cyber attacks or catastrophic issues, Please provide details of options available to safeguard access to the data and system\application such as an escrow service for the system / application and independent backup of data.
#Unplanned issues
teal wedge
ashen kettleBOT
Hi @teal wedge. I'm kapa.ai, your friendly support bot. I will try to answer your question by searching through the knowledge base. :wave:
Hmm, I don't know enough to give you a confident answer yet. The extracts provided do not contain specific information about escrow services or independent backup of data at OpenAI. However, OpenAI is committed to security and privacy, and it has several measures in place to protect customer data, models, and products. For instance, OpenAI complies with GDPR and CCPA, and the OpenAI API has been evaluated by a third-party security auditor and is SOC 2 Type 2 compliant. The API also undergoes annual third-party penetration testing to identify security weaknesses. OpenAI also invites security researchers, ethical hackers, and technology enthusiasts to report security issues via their Bug Bounty Program. For more details, you may want to visit OpenAI's security practices (https://www.openai.com/security) and trust and compliance portal (https://trust.openai.com/).
Note: you can ask me a follow up question by @ mentioning me again :speech_balloon:
teal wedge
@ashen kettle in the case of a cyber attack at OpenAI, and the system goes down, what will OpenAI do to get the system back online quickly and what happens to our data? when using the API
ashen kettleBOT
Let me check the knowledge base for you. One moment! :books:
Based on the provided extracts, OpenAI has a strong commitment to security and privacy. They have robust measures in place to protect customer data, models, and products. However, the specific procedures that OpenAI would follow to restore the system quickly after a cyber attack are not detailed in the extracts.
OpenAI's API has been evaluated by a third-party security auditor and is SOC 2 Type 2 compliant, which means it has controls in place to protect against unauthorized access, data disclosure, and data loss. The API also undergoes annual third-party penetration testing to identify and address security weaknesses before they can be exploited.
As for your data, OpenAI has a clear policy that data and files passed to the OpenAI API are never used to train their models. You also have the ability to delete your data whenever you require. However, the extracts do not provide specific information about data backup or recovery in the event of a system outage.