Celadon — Governance

Zero Data Retention, explained

5 min readGovernance

The phrase gets used loosely. It can mean no training, no storage, or both — and the guarantees differ by provider and plan. Here is how to read it.

“Zero Data Retention” is one of the most-used and least-precise phrases in enterprise AI procurement. Before you rely on it, it helps to separate what it can mean.

Three guarantees, often confused

Not trained on. Your data is excluded from model training. This is now common by default on enterprise and API tiers — but “by default” and “guaranteed in contract” are different things.

Not retained. Prompts and outputs are not stored after the request completes, or are stored only briefly for abuse monitoring. This is what “Zero Data Retention” should mean, but the window and scope vary.

Not accessible. Even where data is briefly stored, who can see it, under what controls, and in which jurisdiction?

What to require before sending real data

Terms differ by provider, plan, and region, and they change often. Treat any general statement — including this one — as a prompt to confirm the current language in your own agreement.

Data handling is one of the first lenses in a Celadon AI Audit, and a key input to choosing a provider.

Put governance on solid ground

Celadon assesses data handling, risk, and governance as part of every AI Audit — before a single production prompt is sent.

Get an AI Audit →