GDPR · Cloud AI in business

Can I use ChatGPT, Claude & Co. with customer data?

Short answer: no – not in their standard variants.

ChatGPT, Claude, Gemini and Copilot are US cloud services. The moment personal data flows into a prompt, a third-country transfer to the US begins – with all the GDPR obligations German companies often underestimate. Anyone working without a data processing agreement or using the free version typically breaches the GDPR with the very first prompt.

See the sovereign alternative Request a consultation
No

With standard accounts and no additional measures, this is not GDPR-compliant.

  • No DPA on Free/Plus/Pro tiers
  • Data transfer to the US
  • Professional secrecy can be criminally breached
What this is about

ChatGPT, Claude & Co. – these are the tools

All four leading AI assistants are cloud services from US vendors. Every text you enter leaves your company and Europe.

ChatGPT
OpenAI · USA

Market leader from OpenAI. Inputs are processed in the US. Free and Plus accounts have no data processing agreement and may use inputs for model training.

Claude
Anthropic · USA

Anthropic's language model. Hosted on AWS US. Standard accounts are not designed for processing personal data in German companies.

Gemini
Google · USA

Google's language model. Inputs flow into the Google ecosystem. Entanglement with other US services amplifies the third-country issue.

Copilot
Microsoft · USA

Microsoft's AI assistant (built on OpenAI models). Even with an EU-based M365 tenant, the vendor remains subject to the US CLOUD Act.

The legal pitfalls

Six GDPR questions cloud LLMs rarely answer cleanly

Anyone entering customer data into ChatGPT, Claude or Gemini typically trips over several of these at once.

01

No data processing agreement

Art. 28 GDPR

Free, Plus and Pro accounts come without a data processing agreement. Without a DPA, passing personal data to the provider is already unlawful.

02

Third-country transfer to the US

Art. 44–49 GDPR · Schrems II

Data lands on US servers. The EU-US Data Privacy Framework from 2023 is a political bridge whose legal certainty is being challenged again by privacy advocates and courts. The CLOUD Act remains untouched.

03

No solid legal basis

Art. 6 GDPR

Real consent from your customers for processing by OpenAI or Anthropic is practically never obtained. Legitimate interest rarely outweighs the risks of third-country transfer.

04

Information duties unmet

Art. 13 & 14 GDPR

Customers must be transparently informed that their data is shared with US LLMs – including recipients, third-country transfer and legal basis. In practice, no privacy policy says so.

05

Professional secrecy breached

§ 203 German Criminal Code

Doctors, lawyers, tax advisors, pharmacists, insurers, banks: anyone feeding client or patient data into cloud LLMs can commit a criminal offence under § 203 StGB – punishable by fine or imprisonment.

06

Trade secrets exposed

Trade Secrets Act

Once contract drafts, prices, source code or strategies reach cloud LLMs, they typically no longer qualify as adequately protected under the German Trade Secrets Act.

Concretely

Which customer data is especially critical

Anything that makes a person identifiable is personal data – names, email addresses, customer numbers, phone numbers, IP addresses. Even a single such field in a prompt triggers GDPR duties.

Special category data under Art. 9 GDPR – health, religion, ethnic origin, sexual orientation – should practically never enter cloud LLMs. The risk here is at its maximum.

Never enter into cloud LLMs

  • Customer names, addresses, dates of birth
  • Health or treatment data (Art. 9)
  • Job applications, CVs
  • Contract, pricing and condition data
  • Source code with internal logic or credentials
  • 1:1 email threads with customers
  • Client, patient or mandate data
The consequences

What can happen when it goes wrong?

⚖️

GDPR fine

up to €20 million

Or 4 % of global group turnover. The higher amount applies (Art. 83 GDPR).

👥

Damages

Art. 82 GDPR

Every affected person can claim non-material damages – even without concrete proof of harm.

🚨

Criminal liability

§ 203 StGB

Professionals with secrecy obligations face personal fines or imprisonment in addition to corporate sanctions.

📉

Reputation

hard to quantify

Published fines and privacy incidents remain visible in search engines and trade press for years.

Solutions

How to use AI in business safely?

Three paths – ranked by protection level. The strongest option is the one where your data never leaves your premises.

Recommended · highest protection

On-premise AI – data stays in-house

AI that runs on your own hardware. No third-country transfer, no DPA needed, full access to internal sources without compliance risk.

  • No data leaves your network
  • GDPR out of scope (no external processor)
  • Suitable for § 203 professions
More about KOSMO On-Premise
Conditionally suitable

EU-hosted AI vendor with DPA

Specialised European vendors hosting in the EU, offering a DPA and transparent training policy. Lower risk, but ongoing checks needed.

  • Verify the DPA and EU hosting
  • Opt out of training on your inputs
  • Check the parent company and CLOUD Act exposure
Risky · proceed with caution

Consistent anonymisation

If cloud LLMs are unavoidable: strip personal references before the prompt. Replace real names with placeholders, omit addresses, no plain text from contracts.

  • Clear usage policy across the company
  • Train employees
  • Residual risk remains – re-identification possible
Frequently asked

FAQ – the most common detailed questions

ChatGPT Enterprise offers a DPA, no model training on your inputs and EU data processing as an option. That is much better than the Plus variant. The core problem remains: OpenAI is a US corporation, and the US CLOUD Act allows US authorities to access data. A GDPR data protection impact assessment is mandatory, and for special category data or § 203 professions Enterprise is usually not sufficient.

Sources & further reading

This page draws on the following public and official sources:

Related topics on Splitbot.ai

RAG & Datenschutz
What the DSK guidance on RAG systems means for SMEs
On-Premise KI
Run KOSMO locally — data sovereignty through your own hardware
EU AI Act
Splitblog: What the EU AI Act means for public bodies and companies
Chatbots im Vergleich
Which chatbot fits which use case? A feature comparison

Sovereign instead of risky

KOSMO runs on your own hardware or in sovereign EU data centres. No US cloud, no third-country transfer, full control.

Discover KOSMO On-Premise Free consultation

This page provides a general overview and is not a substitute for legal advice. For specific cases – especially involving special category data or professional secrecy – consult your data protection officer or a specialised law firm.

Partners & supporters