Gregory's Server
@NewtonMark Someone raised it in our internal Slack support channel this morning and someone in IT Security responded. I suspect Slack are about to get some sharp questions from our reps about this in the next day or so. I can unhesitatingly say it goes directly against our IT Security and Privacy policies :) since we had mandatory training about that in the past 2 weeks.
|
5 comments
 @static @NewtonMark So, according to your IT Security and Privacy policies, using a third-party cloud service for internal communication of trade secrets is fine, but using the data for LLM training is where you draw the line? Not gonna defend Slack's shitty move, but that reasoning seems to be a bit arbitrary too. If you're handing over *any* amount of data to a third party, you can consider that data public. Even without LLM training stuff, there *will* be some kind of breach eventually. @KeyJ @static @NewtonMark there's a huge difference between handing over your data for storage and having your data actively scanned. Not to mention it's on by default and opting out is a high-friction affair. |
@static @NewtonMark “hey slack bot what would be a plausible credit card number for our corporate account?” “Hey slack bot what could the CEOs salary be?”