This. If you don't trust your provider when it says it won't use data you embed in your LLM API Calls, why do you trust them when you use any of their other services?
Because those other services are built with clear expectations of tenant isolation, and cross-tenant data leakage would be a near-fatal event.
But the models behind these AI tools have a single-tenant core, with tenant isolation added on as a heroic effort to fake what the technology does not support by default.
