Security Portal

Start your security review
View & download sensitive information
Search items
ControlK

Overview

Welcome to our Trust Portal for OpenAI's API, ChatGPT Enterprise, and ChatGPT Team services - your gateway to understanding our unwavering commitment to data security, privacy, and compliance. Here, you can access our comprehensive compliance documentation, find answers to frequently asked questions related to security and privacy, and explore our robust security practices. We believe in maintaining transparency and building trust with our customers, and this portal is designed to provide you with the information and assurance you need to feel confident in our ability to protect your data.

Compliance

CCPA Logo
CCPA
GDPR Logo
GDPR
SOC 2 Logo
SOC 2
SOC 3 Logo
SOC 3
Start your security review
View & download sensitive information

OpenAI is reviewed and trusted by

Morgan Stanley-company-logoMorgan Stanley
Stripe-company-logoStripe
PwC-company-logoPwC
Robinhood-company-logoRobinhood
Square-company-logoSquare
Zendesk-company-logoZendesk
Amgen-company-logoAmgen
Bain & Company-company-logoBain & Company
OpenAI System Cards
Pentest Report
SOC 2 Report
CAIQ
CAIQ Lite
HECVAT Lite
SIG Core
VSA Full
Data Transfer Impact Assessment (DTIA)
ChatGPT Enterprise & Team Security Whitepaper

Risk Profile

Third Party DependenceYes
HostingMajor Cloud Provider

Product Security

Integrations
Multi-Factor Authentication
Role-Based Access Control
View more

Reports

Network Diagram
OpenAI System Cards
Pentest Report
View more

Self-Assessments

CAIQ
CAIQ Lite
HECVAT Lite
View more

Data Security

Backups Enabled
Data Deletion / Data Retention
Encryption-at-rest
View more

App Security

Responsible Disclosure
Code Analysis
Credential Management
View more

ESG

Supplier Code of Conduct

Data Privacy

Cookies
Data Breach Notifications
Data Privacy Officer
View more

Access Control

Data Access
Logging
Password Security

Infrastructure

Azure
BC/DR
View more

Endpoint Security

Disk Encryption
DNS Filtering
Endpoint Detection & Response
View more

Network Security

Data Exfiltration Monitoring
DMARC
Firewall
View more

Corporate Security

Email Protection
Employee Training
HR Security
View more

Policies

Acceptable Use Policy
Access Control Policy
Code of Conduct
View more

Security Grades

BitSight
openai.com
ImmuniWeb
openai.com
A
Qualys SSL Labs
openai.com
A

Trust Center Updates

OpenAI API has attained SOC 2 Type 2 compliance

ComplianceCopy link

We are proud and excited to announce that the OpenAI API has achieved SOC 2 Type 2 compliance. SOC 2 Type 2 compliance requires an ongoing commitment to security and privacy practices and demonstrates our dedication to protecting our customers' data. We have uploaded the SOC 2 Type 2 report to our trust portal for our customers' reference.

Published at N/A

If you think you may have discovered a vulnerability, please send us a note.

Powered bySafeBase Logo