Comment by andrepd
4 hours ago
Nonsense. It's easy to design an app where the server stores all information in an encrypted form. If OpenAI "cared about privacy" like this PR piece claims, they would do this. They don't because they (obviously) don't care and they (obviously) want the data for their purposes.
"Easy" does not mean "lowest cost" or "easiest". It's far far far easier to stor conversations as plain text and return them as is, instead of having to encrypt, rotate keys, etc. etc.
That's a tricky system to get right and maintain
(Please do not interpret this as a defense of OpenAI! I just think that we shouldn't trivialize the task of encrypting user data so that it's not visible to the provider).
> It's easy to design an app where the server stores all information in an encrypted form.
If you read the article, you'd see this:
> Our long-term roadmap includes advanced security features designed to keep your data private, including client-side encryption for your messages