AI Compliance Hub
Youngstown State University  ·  IT Governance & Procurement
Last Verified: April 14, 2026
Live Policy Tracking
8
Models Evaluated
5
Policy Approved
3
Do Not Procure
This dashboard tracks AI subscription services against YSU's AI Policy for individual Pro/Paid tiers. Procurement must verify compliance status before processing purchase requests. Scores reflect Data Training risk and Encryption posture on a 1–5 scale.
Score Key (Out of 5)
5 = Best / Zero-Retention
4 = Compliant / Easy Opt-Out
3 = Standard Secure
2 = Legacy / High-Friction
1 = Mandatory Training / High Risk
Filter:
Model Compliance Review
Individual / Pro Tier Subscriptions
Claude AI
Anthropic
Approved
Data Training
5
Encryption
4
Required Action
No action required — compliant by default
Paid tiers do not train on user data by default.
AES-256 at rest · TLS 1.3 in transit · SOC 2 compliant.
ChatGPT
OpenAI
Config Required
Approved
Data Training
4
Encryption
4
Required Action — Must Configure Before Use
Training is enabled by default. User must opt out.
Settings → Data Controls
Toggle off "Chat History & Training"
Copilot Pro
Microsoft
Approved
YSU Enterprise Agreement
Data Training
4
Encryption
4
Required Action
No action required — covered by Enterprise Agreement
Security and data privacy are built into the YSU enterprise contract.
No manual configuration is necessary.
Gemini
Google
Config Required
Approved
Data Training
4
Encryption
4
Required Action — Must Configure Before Use
"Gemini Apps Activity" used for training by default.
Gemini Settings → Your Data in Gemini
Turn off "Gemini Apps Activity"
Grok
xAI / X Corp
Denied
Data Training
3
Encryption
2
Procurement Action
Do Not Purchase — Policy Violation
Combined score below threshold.
Encryption standards not clearly defined or documented.
Perplexity AI
Perplexity
Config Required
Approved
Data Training
4
Encryption
3
Required Action — Must Configure Before Use
Training opt-out available through account settings.
Settings → Account
Toggle off "AI Data Retention"
Meta Llama 4
Meta AI
Denied
Data Training
2
Encryption
3
Procurement Action
Do Not Purchase — Policy Violation
Opt-out requires high-friction "Right to Object" form.
Combined score falls below organization standard.
DeepSeek AI
DeepSeek
Denied
Data Training
1
Encryption
2
Procurement Action
Do Not Purchase — Policy Violation
Mandatory training policy with no opt-out.
Maintained in restricted region per organizational rubric.
Data Verification Log
Sources audited April 14, 2026
Date Model Source Status Notes
04/14/2026 Gemini support.google.com/gemini/answer/13594961 Verified Confirmed Apps Activity toggle prevents human review. No changes.
04/14/2026 ChatGPT openai.com/policies/privacy-policy Verified User-enabled training opt-out confirmed current. No changes.
04/14/2026 Copilot Pro learn.microsoft.com/copilot/microsoft-365 Verified Enterprise Agreement verified active. Enterprise-grade encryption confirmed.
04/14/2026 Claude AI anthropic.com/trust Verified Zero-retention default for paid subscriptions confirmed. No changes.
04/14/2026 Grok x.ai/security Verified Incomplete documentation for protocol standards. No changes.
04/14/2026 Perplexity AI trust.perplexity.ai Verified Toggle for AI data retention confirmed functional. No changes.
04/14/2026 Meta Llama 4 facebook.com/privacy/genai Verified Right to Object form remains high-friction method. No changes.
04/14/2026 DeepSeek AI deepseek.com/en/privacy-policy Verified Confirmed mandatory training policy with no opt-out. No changes.
Procurement Quick Reference
Purchase Approved
✓ Claude AI (Zero Retention)
✓ ChatGPT (post-config)
✓ Copilot Pro (Enterprise)
✓ Gemini (post-config)
✓ Perplexity AI (post-config)
Do Not Purchase
✕ Meta Llama 4
✕ Grok
✕ DeepSeek AI
Policy Basis
YSU AI Policy — Individual Tier Requirements. Subscriptions must score ≥ 7 for institutional approval.
Contact
YSU IT Governance
For questions on this report, contact the Office of Information Technology.