Forget business secrets. In my anecdotal surveys, normal people are feeding their entire lives into the normal web ui! Many of these people are on the free plan with no data protection at all! People I know have admitted to feeding chat transcripts, documents with tons of PII, most email correspondence, their private IP (medical texts, fiction, lyrics), and don’t even get me started on the emotional counseling.

I’ve had a long history of managing my digital privacy and even I’ve been quite lax with this. It’s just so easy to dump stuff in the black box. I try to use ZDR endpoints when I can via openrouter for certain tasks.

Google’s policies regarding data collection on paying customers is so shady as well. From what I understand: they train on all days of all paying customers unless you turn Gemini apps and activity off. This completely disables your ability to save chats. They obviously merge these two settings to collect as much data as possible. They allegedly do not train on temporary chats, but the UX for them is annoying and requires so many more button clicks.

Ultimately I just treat any endpoint as a public record at this point. If I wouldn’t be happy letting the world see it, I don’t attach it. Welp.

On average a company uses 100+ SaaS companies

https://www.sellerscommerce.com/blog/saas-statistics/

Salesforce has had your client list, the amount the deal is worth, the status of the deal, which of your employees are working on the deal, their bill rate etc. for years.

Zoom/Gong/Microsoft Teams knows every conversation yoh have with a client if you turn transcriptions on.

Your email provider gets your company email in plain text.

Slack has all of your interoffice communications.

Atlassian gets exactly what you are working on, whose working on it and the status of every task.

AWS/GCP/Azure know everything about your infrastructure.

BTW, Amazon is one of the most paranoid companies about confidentiality you can imagine (former employer). They use Microsoft Office, Slack (they were moving away from Chime before I left) - and the internal consulting division uses Salesforce.

Why the moral panic about Anthropic? I doubt very seriously they are going to start in my company’s case - a cloud consulting division

Your em-dashes make me think this is an AI generated post but whatever.

My company uses Github Copilot. We have a very specific enterprise agreement that states that data does go to Microsoft's servers where it gets processed in an ephemeral environment and wiped after 3 months.

I'm guessing Anthropic has something similar in their agreements. Now, if you have some proof that Anthropic is stealing highly confidential and/or trade secrets, that'd be good to see, but also whomever is throwing that kind of information into an off-premises and non airgapped model is just asking for a data leak.

Is that allowed in their ToS?