Copyright computerworld
Some industry officials said enterprises will have to rely on legal contracts, including service level agreements, to control what a vendor can do with their data. The problem is that the data that OpenAI would access would also be available to a very large number of employees, contractors, and third parties. If some of this sensitive data was later discovered on the dark web or in the possession of a data broker, it would be all but impossible to prove from where that data was accessed. “That data would be difficult to track” and that would make it easy “to find ways to avoid the repercussions” and to potentially deny that the data came from OpenAI, said Brady Lewis, the senior director of AI Innovation at the Marketri marketing consulting firm. “This is one of those announcements that sounds great on paper, until you start thinking about what it actually means for your organization. The productivity promise is legit. Instead of toggling between Slack to find assignments, tabbing to Google Drive for specific files, or hunting for names and numbers, ChatGPT can deliver all that information directly into your chat session,” Lewis said. “Here’s where my 25+ years in tech makes me pause. Employees are submitting company data to ChatGPT and other tools with little to no oversight, often including PII or PCI data. So while OpenAI is building enterprise-grade controls, the real question is whether organizations are prepared to govern their employees properly.”
