Data Security in SpiderAI

Overview

SpiderAI uses OpenAI’s enterprise-grade infrastructure, so when you submit prompts, files, or other data through SpiderAI, your data benefits from the same security, encryption, and privacy protections that OpenAI offers. This means your inputs and outputs are encrypted in transit and at rest, your data isn’t used to train public models, and you retain control over your content.

This article explains how SpiderAI — via its OpenAI integration — handles data security, and where to find the full policy for more detail.  Employees cannot use University Administrative Data in SpiderAI. Refer to the following policies: Administrative Data Management PolicyData Security Policy

These protections do not apply when using a personal or free OpenAI (ChatGPT) account.

Details / Instructions

 

Encryption and Secure Transmission

  • All data sent from SpiderAI to OpenAI is encrypted in transit using TLS 1.2+. 

  • At-rest storage is encrypted using AES-256, ensuring that stored transcripts, uploaded files, and generated outputs remain secure on disk.

These measures ensure that data remains protected both during transfer and while stored — minimizing risk of unauthorized interception or access.


Data Ownership & Training Exclusion

  • For enterprise/API customers (such as SpiderAI), OpenAI specifies that user data—inputs and outputs—are not used to train or improve OpenAI models by default. 

  • You retain ownership and control over the content you submit; OpenAI acts as a processor acting on your behalf. 


Compliance, Controls & Data Policies

  • OpenAI supports compliance with major data protection and privacy regulations (e.g., GDPR, CCPA) for enterprise customers. 

  • For API-based use (as in SpiderAI), OpenAI provides a Data Processing Addendum (DPA) which governs how data is handled, stored, and retained. 


What This Means for SpiderAI Users

  • When you upload files, audio, or other content to SpiderAI, that content is transmitted securely, stored encrypted, and not used for external model training.

  • You retain ownership of your submitted content and generated outputs.

See Also

OpenAI Enterprise Privacy & Security Policy – https://openai.com/enterprise-privacy/

Print Article