AboutBlogBusiness First AIFounder FreedomBook a conversation

Free or paid AI tier: where to draw the line

Two colleagues reviewing a document at a desk with a laptop open between them
TL;DR

Free AI tiers default to training on whatever your team types in, which means client briefs, pricing models, and internal strategy can end up improving someone else's model. The rule is simple: public data anywhere, anything internal or confidential only on a paid commercial tier with a Data Processing Agreement and training disabled. Write that choice down as a deliberate decision, not a default you drifted into.

Key takeaways

- Free tiers of major AI tools, including ChatGPT and Google Gemini, default to training on user inputs; anything confidential typed in can become part of their model training data. - The line is not about budget, it is about what data touches the tool: public data anywhere, internal or confidential only on a paid tier with a Data Processing Agreement and a no-training commitment. - Commercial access with data privacy protections costs roughly £15 to £30 per active user per month, a modest figure against the cost of a single data incident or regulatory investigation. - Document the free-versus-paid decision explicitly, whether you choose free or paid, so it is a conscious risk call rather than an oversight that becomes evidence of absent governance. - Before committing to any paid tier, confirm three things: a Data Processing Agreement you can sign, a no-training commitment, and data stored within the UK or EU.

Your finance director has a point. The team is already using ChatGPT’s free tier, they’re getting things done faster, and the budget conversation is uncomfortable. Why pay £20 per person per month for something that appears to be working?

The answer sits in the terms of service. Free tiers of the major AI platforms default to using your team’s inputs to train and improve their models. Whatever an employee types in, client briefs, internal pricing, supplier contracts, board materials, can become part of the model that improves responses for everyone else on that platform. Including your competitors. The licence fee is not the real cost. The data is.

What does the free tier actually do with your team’s inputs?

Free tiers of the major AI tools default to training on user inputs. ChatGPT’s free tier and Google’s Gemini free tier use what employees type to improve their models. An opt-out exists, but it requires deliberate action each session. The default state, unless someone actively changes it, is that your team’s inputs contribute to a training pool shared across all users of that tool.

In 2023, Samsung engineers used the free ChatGPT tier to complete work tasks and inadvertently pasted semiconductor design specifications, source code, and internal meeting notes into the interface. That information entered OpenAI’s training data. Samsung’s response was to restrict ChatGPT to commercial tiers with data privacy protections. The governance failure was the absence of any policy specifying which data was allowed into which tool.

Your team is doing exactly what Samsung’s engineers did, using the tool available to get work done faster. The question is whether the data they are typing into it should be anywhere near a public training pipeline.

Why does this cost more than the licence fee?

The visible cost of free AI tiers is zero. The invisible cost is the data you hand over. A commercial tier with data privacy protections runs roughly £15 to £30 per active user per month, so a team of four regular AI users costs £60 to £120 a month. A single regulatory investigation or professional indemnity claim triggered by a data exposure would dwarf that figure.

For businesses in regulated sectors, the calculation is more specific. The Solicitors Regulation Authority has clarified that feeding client matter information into a public AI tool without explicit consent and a Data Processing Agreement constitutes a breach of professional duty and a likely UK GDPR violation. The Financial Conduct Authority holds similar expectations for firms using AI in client-facing processes. The General Medical Council does the same in healthcare.

For many owner-managed businesses in professional services, using a free tier for confidential client data amounts to a professional standards breach, dressed as a cost-saving decision.

Where will you actually meet this decision?

The choice shows up in specific, everyday moments. A team member drafting a proposal pastes in a client’s requirements. Someone in finance formats a board report with actual revenue figures. The operations lead summarises a supplier negotiation. Each of these tasks is exactly what employees reach for AI to help with, and each involves information that has no place in a public training pool.

A practical data classification separates content into three tiers. Public data is anything the business or its clients already intend to make available: published marketing material, public research, website copy. This can go into any tool, including free tiers, because there is nothing confidential at risk.

Internal data is what the business uses day-to-day but does not share externally: meeting notes, financial forecasts, strategy documents, internal processes. This should only go into a paid commercial tier where the vendor has a signed Data Processing Agreement and a contractual no-training commitment.

Confidential data is information provided by clients in confidence: matter notes, financial records, unpublished plans. This should only be handled by a tool with explicit client consent and a DPA in place, or kept on an on-premise system that stays within your infrastructure.

The classification is simple enough to summarise in a one-page table. The harder part is making it a team habit rather than something people assume someone else has already sorted.

When does paying for a commercial tier become the right call?

Pay for a commercial tier the moment your team starts putting internal or confidential data into an AI tool, and that moment is probably already here. For three or four daily AI users, the cost is roughly £45 to £120 a month. Document the decision either way: if you choose to stay free, write down which data your team is and is not allowed to input.

The documented decision matters because it draws a line between a governance choice and an oversight. If a data incident occurs and you have never committed to paper which AI tier your team uses and what data is permitted in it, the absence of that record becomes evidence that governance was not in place. If you have written it down, even in an email or a shared document, you have demonstrated that the decision was a considered one.

For businesses where the team uses AI only for brainstorming with publicly available information, free tier use is defensible. A marketing agency generating copy ideas from published sources is in a different position from a law firm where paralegals are summarising client files. The line is about data, not about whether you can afford the licence.

What else do you need to check before committing to a tier?

Choosing a paid tier is the starting point. Before you commit, get clear answers on three things from any vendor. Do they offer a Data Processing Agreement you can sign? Have they committed not to train on your inputs? Does data stay within the UK or EU? The major providers, OpenAI, Google, Anthropic, and Microsoft, offer these protections on commercial tiers, though which tier includes them depends on the provider.

Getting a contractual no-training commitment from OpenAI requires the API commercial tier or an enterprise agreement, not the Plus subscription. Gemini Business, part of Google Workspace, includes a training opt-out as standard. Anthropic’s Claude for Work includes a business agreement with data handling commitments. The tier naming changes; the question you ask stays constant: does this tier include a signed DPA and a no-training commitment?

If your business processes personal data systematically through AI tools, the ICO’s guidance indicates that a Data Protection Impact Assessment is often required before deployment under UK GDPR. That is a 1 to 2 hour document, not a month-long project, but it needs to happen before the tool goes live rather than after the first incident.

The rule is simple enough to state. Public data can go anywhere. Internal and confidential data goes only to a paid tier with a DPA and training disabled. Write the choice down, whichever way it lands, so it is deliberate rather than default.

Sources

- ICO (UK Information Commissioner's Office). Guidance on AI and data protection (2024). Clarifies that UK GDPR applies when AI systems process personal data and that a Data Processing Agreement is required when using third-party AI processors. https://ico.org.uk/for-organisations/uk-gdpr-guidance-and-resources/artificial-intelligence/guidance-on-ai-and-data-protection/ - ICO (UK Information Commissioner's Office). Contracts and Data Processing Agreements guidance (2024). Sets out what a DPA must include for third-party processors under UK GDPR, including no-training and deletion commitments. https://ico.org.uk/for-organisations/uk-gdpr-guidance-and-resources/contracts-and-liability/contracts/ - Solicitors Regulation Authority. Using AI in legal practice (2024). Confirms that feeding client matter information into public AI tools without explicit consent and a DPA constitutes a breach of professional duty and potentially a UK GDPR violation. https://www.sra.org.uk/solicitors/guidance/use-of-ai/ - NIST. AI Risk Management Framework 1.0 (2023). National Institute of Standards and Technology. Maps governance functions, Govern, Map, Measure, Manage, applicable to AI tool adoption decisions at any organisation scale. https://airc.nist.gov/RMF_Overview - OWASP. LLM Top 10 (2025). Open Worldwide Application Security Project. Lists sensitive information disclosure as a top risk category for large language model deployments, directly relevant to free-tier data exposure. https://owasp.org/www-project-top-10-for-large-language-model-applications/ - OpenAI. Enterprise privacy and data handling documentation (2025). Documents the distinction between free-tier data use for training and the contractual no-training commitment available on commercial API and enterprise tiers. https://openai.com/enterprise - Google. Gemini Apps Privacy Hub (2025). Sets out that the free Gemini tier uses conversations to improve models; Workspace commercial tiers offer training opt-out and data processing protections. https://support.google.com/gemini/answer/13594961 - TechCrunch. Samsung bans use of generative AI tools after internal data leak (May 2023). Reports that Samsung employees using ChatGPT's free tier inadvertently disclosed semiconductor designs and source code, which entered the training pipeline. https://techcrunch.com/2023/05/02/samsung-bans-use-of-generative-ai-tools-like-chatgpt-after-internal-data-leak/ - Anthropic. Privacy policy and business agreements (2025). Documents commercial tier data handling commitments and the business agreement available to enterprise customers. https://www.anthropic.com/legal/privacy - Microsoft. Copilot data privacy and protections documentation (2025). Clarifies the distinction between free-tier and enterprise-tier data handling, including training opt-out and data residency options available on paid plans. https://learn.microsoft.com/en-us/copilot/privacy-and-protections

Frequently asked questions

Does ChatGPT Plus stop OpenAI from training on my team's inputs?

Not automatically. ChatGPT Plus gives you access to better models but does not change the training default unless you opt out manually each session. A contractual no-training commitment requires the API commercial tier or an enterprise agreement with a signed Data Processing Agreement. The Plus subscription is a step up in capability but not a step up in data privacy.

Is there a legal requirement to use a paid AI tier?

No law mandates a paid tier specifically. What UK GDPR and sector regulators, including the SRA, FCA, and GMC, require is that any personal or confidential data processed by a third-party tool is covered by a Data Processing Agreement, which free tiers do not offer. If your team uses AI only for brainstorming with no personal or confidential data involved, free tier use is legally defensible, provided that choice is documented.

How much should I budget for commercial AI access across a small team?

For a team where three to five people use AI tools regularly, budget roughly £60 to £150 a month for commercial access to a major provider. OpenAI, Google, Anthropic, and Microsoft all offer commercial tiers in the £15 to £30 per user per month range. That figure buys a signed Data Processing Agreement, a contractual no-training commitment, and data stored within agreed jurisdictions.

Written by Dr Dave Heath, AI consultant and business strategist.

This post is general information and education only, not legal, regulatory, financial, or other professional advice. Regulations evolve, fee benchmarks shift, and every situation is different, so please take qualified professional advice before acting on anything you read here. See the Terms of Use for the full position.

Ready to talk it through?

Book a free 30 minute conversation. No pitch, no pressure, just a useful chat about where AI fits in your business.

Book a conversation

Related reading

A person reviewing a document at a desk in a naturally lit office

AI vendor lock-in: how to buy without getting trapped

Vendor lock-in is the AI buying risk that's invisible at the point of purchase and hardest to exit years later. Here's how to spot it and contract against it.

A person at a desk reviewing printed notes and documents before a meeting, laptop open nearby

Twelve questions to ask any AI vendor before you sign

Twelve plain-English questions any delegate can ask during an AI vendor evaluation call to protect their business without a procurement team or a CISO.

Person reviewing documents at an office desk with a laptop and printed papers

Buy or build AI in a regulated financial firm

The buy-or-build AI question in financial services has an extra criterion beyond cost and timeline: the system must be explainable to a regulator on demand.

If any of this sounds familiar, let's talk.

The next step is a conversation. No pitch, no pressure. Just an honest discussion about where you are and whether I can help.

Book a conversation
AboutBlogBusiness First AIFounder FreedomContactBook a conversation
Privacy PolicyTermsCookie Policy

© 2026 Larocca Consulting Ltd