Comment by killerstorm

The fact that X.ai build it for themselves means that they are in full control. It's not challenging to install a rootkit on hardware under your control. Also if traffic within the datacenter is unencrypted, you can probably get copy of all comms via switches.

It's generally far easier to install spying software under a computer under your control than to detect it.