Not in the consumer version. Free ChatGPT can retain and train on what you paste, and client financial data becomes a Reg S-P and books-and-records problem the moment it leaves your control. Use a business or enterprise tier with data retention turned off, keep a human reviewing every output, de-identify what you can, and write it into policy. The tool is fine. The guardrails are the job.
Last updated: July 16, 2026
Can I paste client data into the free version of ChatGPT?
No. The consumer tier is the one place you should never put a client’s name, account number, holdings, or planning details. On the free and personal plans, your inputs can be retained and used to improve the model, which means client nonpublic personal information has left your firm’s control and gone somewhere you cannot produce, delete, or account for. That is the exact thing Regulation S-P and your privacy policy promise clients you will not do.
Here is what makes this urgent rather than theoretical. Schwab’s 2026 study found that among RIAs using AI, 82% are using generative AI tools, most often through individual experimentation rather than firm-wide systems (Schwab Advisor Services). Read that carefully. It is not that firms carefully rolled out AI. It is that individual advisors and associates started pasting things into ChatGPT on their own. That is the shadow AI problem, and in an advisory firm the shadow is made of client data. Your CCO cannot supervise what she does not know is happening.
What rules is an RIA actually working under here?
Three that bite. Regulation S-P governs how you safeguard client nonpublic personal information and who you can share it with. The Advisers Act books-and-records rule, Rule 204-2, means communications and records tied to your advice have to be retained and producible, and a chat you cannot retrieve is a chat you cannot produce. And if the AI touches anything client-facing or promotional, the Marketing Rule applies, because an AI-generated claim in an advertisement is still your advertisement and still has to be fair, balanced, and substantiated.
None of this says do not use AI. It says know where the data goes and be able to prove it. The SEC has been clear that it expects advisers to inventory AI use across the firm, including by staff and vendors, and to show the governance policy is actually followed and not just written and filed. An examiner is not going to be impressed that you have a policy. They are going to ask what your team actually did on a Tuesday.
So what setup is actually safe?
A governed one. The pieces are not complicated, they just have to be in place before anyone touches a client record, not after.
Use a business, team, or enterprise tier where the vendor contractually does not train on your data and you can turn retention off. Get the data processing agreement signed and keep it. De-identify inputs wherever the work does not require the real name and number, because the best way to protect a client’s data is to not send it in the first place. Keep a human in the loop on every output that reaches a client or a file, because the model is fluent and confident and will state a wrong cost basis or a wrong beneficiary with total composure. And write the whole thing down as a policy your Form ADV honestly reflects.
That last part matters more than advisors expect. If you market yourself as AI-powered while doing almost nothing, or you use AI heavily while disclosing nothing, that mismatch is precisely what examiners are looking for. Say what you actually do.
Where does ChatGPT help an advisor without the risk?
In all the work that never needed a client’s identity to begin with. It is genuinely useful for drafting a first version of a market-commentary email, restructuring your own long-winded writing into something a client will read, summarizing a public fund prospectus, turning your rough meeting notes into a clean agenda, or explaining a concept like a backdoor Roth in plainer language. That is real leverage, and none of it requires you to hand over nonpublic personal information.
The line is simple enough to teach a whole team in one meeting. If the prompt needs a real client’s real data to work, it belongs in a governed, retention-off, human-reviewed workflow. If it does not, it is fair game.
| Green light with the consumer tool | Red light without a governed setup |
|---|---|
| Drafting general market commentary | Anything with a client name, account, or holdings |
| Rewriting your own copy for clarity | Meeting notes that identify the client |
| Summarizing a public document | Uploading a statement, 1099, or trust document |
| Explaining a concept in plainer terms | Anything that becomes a book-and-record you must produce |
| Building a checklist template | Anything client-facing you would not pre-clear with your CCO |
Only 38% of affluent investors say they are even somewhat comfortable with AI in their financial relationship (Cerulli Associates). Your clients are watching this more closely than you think, and the trust you have built over years is the asset. Guardrails are not bureaucracy here. They are how you keep that trust while still getting the leverage.
Your next step
Before you write a policy from a blank page, find out what your team is already doing. The AI Readiness Audit inventories where AI is already in use across your firm, where client data is leaking into ungoverned tools, and hands you the guardrail policy and the ready-versus-not-ready map. It is $750 and credits toward the build.
Start with the free fit call, or read the thinking behind it in AI only amplifies what it can read. For the fuller starting point, see AI for financial advisors and RIAs: where to start when you’re curious but concerned.