ChatGPT Enterprise — Compliance API Onboarding

Last updated: May 12, 2026

To enable ChatGPT Enterprise archiving in Hadrius, you’ll send us three values from your ChatGPT Enterprise workspace.

What Hadrius needs

Field

Example

Where it comes from

compliance_api_key

sk-comp-...

Generated when you create a Compliance API key in your workspace

workspace_id

workspace_abc123…

Your ChatGPT workspace identifier

organization_id

org-abc123…

Your OpenAI organization identifier

Step-by-step

1. Confirm you have the right plan

The Compliance API is available on ChatGPT Enterprise and ChatGPT Edu. If you only have ChatGPT Team or a personal plan, contact your OpenAI account rep — the endpoints we use will not exist on your account.

2. Create a Compliance API key

  1. Sign in as a workspace owner at https://chatgpt.com/admin.

  2. Open Compliance → API keys (sometimes shown as “Compliance API” under Settings → Data Controls).

  3. Click Create new key, give it a recognizable name (e.g. Hadrius Archiving), and copy the secret value. OpenAI shows the secret only once — save it somewhere safe before closing the dialog.

  4. Make sure the key has scope to read:

    • Conversation message logs

    • User-uploaded files (this is what lets us archive attachments alongside the conversation transcripts)

3. Find your workspace_id

In the same admin console, open Settings → Workspace (or Settings → General). The workspace ID is shown near the workspace name and starts with workspace_…. Copy the full value.

4. Find your organization_id

  1. Open https://platform.openai.com/settings/organization/general while signed in as an org admin.

  2. Copy the Organization ID (starts with org-…).

If your ChatGPT Enterprise workspace was provisioned without a linked OpenAI Platform org, ask your OpenAI account rep — the Compliance API still requires this ID for routing.

5. Send the values to Hadrius securely

Please do not send the API key over plain email or chat. Use one of:

  • flashpaper.hadrius.com

  • A 1Password / LastPass / Bitwarden shared item

  • An encrypted email (S/MIME or PGP)

  • The secure file drop link your Hadrius onboarding contact will share with you

Format:

compliance_api_key: <key starting with sk-comp-...>
workspace_id:      <workspace_...>
organization_id:   <org-...>

Once we receive them, archiving begins on the next sync cycle (typically within an hour). You don’t need to give us anything else from your ChatGPT account — no admin login, no SSO bypass, nothing.

What we’ll do with these values

  • compliance_api_key is stored encrypted in AWS Secrets Manager, scoped to your tenant. It is used to call OpenAI’s Compliance API to download conversation message logs and user-uploaded files for the configured retention period.

  • workspace_id scopes every API call so we only see your workspace, never another customer’s.

  • organization_id is used for the small subset of compliance endpoints that bind to the OpenAI Platform org rather than the ChatGPT workspace (typically Agent / App data).

We do not post anything to ChatGPT, modify any settings, or have any write access to your workspace. The Compliance API is read-only.

Rotation & revocation

  • You can revoke the Compliance API key at any time from the same admin console — archiving will stop on the next sync attempt and we’ll surface a clear error to your Hadrius admins.