Skip to main content
All CollectionsAPISecurity and API Key Safety
Compliance APIs for Enterprise Customers
Compliance APIs for Enterprise Customers

Obtain logs of all conversations and GPTs in your Enterprise workspace.

Updated over a week ago

Compliance API access is currently only available to Enterprise customers.
If you'd like to purchase an Enterprise plan for your organization, please reach out to our sales team.

How it works

Our Compliance API provides logs of all conversations and GPTs in your workspace that you can connect with your eDiscovery, DLP, or SIEM tools.

eDiscovery tools help in identifying, collecting, and delivering electronic information that can be used as evidence in legal cases.

  • Organizations use these tools during litigation, investigations, or audits. They enable legal teams to sift through large volumes of data to find relevant documents and communications efficiently.

DLP (Data Loss Prevention) tools are used to detect and prevent data breaches, data exfiltration, and the unauthorized use or access to sensitive information within an organization.

  • They are commonly used to protect intellectual property and ensure compliance with privacy laws and regulations such as GDPR, HIPAA, etc. DLP systems monitor, detect, and block sensitive data while in-use (endpoint actions), in-motion (network traffic), and at-rest (data storage).

SIEM (Security Information and Event Management) tools provide real-time analysis of security alerts generated by applications and network hardware.

  • They are used for threat detection, security incident management, and compliance. By aggregating and analyzing log data, SIEM systems help identify anomalous behavior and potential threats.

To help with their compliance requirements, customers can take advantage of 8 Compliance API integrations built by leading eDiscovery and Data Loss Prevention (DLP) companies.

You can read more in our blog post.

Compliance API capabilities

The Compliance API allows you to export or delete ChatGPT conversations and files from your Enterprise workspace. This API always returns the latest stored version of the conversation. ChatGPT Enterprise Workspace Owners can choose to store all versions that they retrieve or only the latest depending on the use case.

With read permissions , you can obtain the following:

  • Lists of workspace conversations.

  • Lists of Workspace GPTs.

  • Information about a specific GPT.

  • Lists of all versions of a GPT.

  • Lists of users a GPT is shared with.

  • Lists of workspace users.

  • Lists of workspace memories.

With delete permissions, you can perform the following actions:

  • Delete workspace conversations.

  • Delete a Workspace GPT and all associated files.

  • Delete specific files associated with a Workspace GPT.

  • Remove access to a Workspace GPT.

  • Delete a file associated with a workspace user.

  • Delete a memory entry for a workspace user.

You can see the full details on each endpoint in the Enterprise Compliance API Spec (you must be logged into your Enterprise workspace to view).

Please reach out to your account representative for more information on using the Compliance API.

Data Retention with the Compliance API

Deleted data is not recoverable. This API does not provide the capability for deleting any data logged for audit or security within OpenAI. All authenticated requests to this API are logged for security and compliance purposes. When an item is deleted using this API, it is also removed from all internal search and retrieval indexes. Data is retained internally for no greater than 30 days following a deletion request.

Will you support any partner integrations?

We are partnering with some of the top compliance tools to provide an out-of-the-box integration to make your connection seamless. Please look out for updates from us later this year.

Did this answer your question?