Aug 18 2023 08:53 AM
Aug 18 2023 08:53 AM
That is not clear in the current terms IMO
BingChat Enterprise – which could be enabled.
BingChat Enterprise Terms: Overview of Bing Chat Enterprise | Microsoft Learn &
Protected by default
Because workplace chats might contain sensitive data, Bing Chat Enterprise is designed with commercial data protection in place to keep organizational data safe. With Bing Chat Enterprise, you can be confident in using AI-powered chat for work.
Chat: When users ask questions in chat, it's called a prompt. Those prompts can send generated searches (also known as queries) to Bing, and the resulting answer is called a response. User and business data is protected and won't leak outside the organization. What goes in—and comes out—remains protected. Chat data isn't saved, and Microsoft has no eyes-on access to it—no one sees it. And your data isn't used to train the underlying models.
Search: Any searches generated by Bing Chat have workplace identities removed before they're sent to Bing. The searches aren't linked to users or organizations by Bing and any searches sent to Bing are under the terms of the Microsoft Services Agreement and covered by the privacy statement.
Organizational data: Bing Chat Enterprise doesn't have access to organizational resources or content within Microsoft 365, such as Word documents or PowerPoint presentations. Only content provided in the chat by users is accessible to Bing Chat Enterprise.
Plugins: Bing Chat Enterprise doesn't have plugin support to prevent any commercial data from being sent to any external providers.
Chat history: Bing Chat Enterprise doesn't retain chat prompts or responses. With Bing Chat history disabled for Bing Chat Enterprise users, no previous chats are maintained or available to users.
Sep 04 2023 12:56 AM
Sep 28 2023 11:34 PM - edited Sep 28 2023 11:35 PM
While the data is protected it would still be very helpful to have this scenario covered also in Terms & Conditions as there are concerns about employees making requests to BCE on web pages that containing data from internal IT systems or documents. Another related information would be a clarification what data is read exactly from a web page: just the visible text, everything that page source could contain, cookies, URL etc. This would be helpful in assessing the related risks and also clear our any uncertanties related to functionality of reading web pages or PDFs