Strategy Right to Keep Bitcoin Sale Option Open: Analyst
Samson Mow defends Strategy's potential Bitcoin sales for shareholder protection.
CryptoPotato1 min read
Your AI Chatbot May Be Leaking Your Chats to Meta, TikTok and Google
TL;DR
A study by IMDEA Networks reveals that major AI chatbots like ChatGPT and Grok leak user conversations to third-party trackers from Meta, Google, and TikTok. Grok was identified as the worst offender, sharing verbatim messages without user consent.
Key points
- IMDEA Networks identified 13+ third-party trackers in AI chatbots
- ChatGPT, Claude, Grok, and Perplexity were studied
- Grok shares guest conversations publicly by default
- Data is shared with Meta, Google, and TikTok
- Rejecting cookies does not prevent data leakage
Mentioned in this story
IMDEA NetworksMetaGoogleTikTok
ChatGPTClaudeGrokPerplexity
In brief
- Researchers at IMDEA Networks found 13+ third-party trackers embedded in ChatGPT, Claude, Grok, and Perplexity, including tools from Meta, Google, and TikTok.
- Grok was the worst offender: guest conversations are public by default, and TikTok's tracker received verbatim message content via Open Graph metadata.
- Rejecting cookies doesn't always help.
When you type something into an AI chatbot, you probably assume the conversation stays between you and the machine. You're wrong—and a new study spells out exactly who else is listening.
Researchers at IMDEA Networks Institute published findings on May 4 showing that all four of the biggest AI assistants—ChatGPT, Claude, Grok, and Perplexity—quietly share data with third-party advertising and analytics services, including Meta, Google, and TikTok. The project, called LeakyLM, identified more than 13 trackers embedded across these platforms. Zero of them are disclosed to users in plain language.
Image: IMDEA Networks Institute
Think of it this way: Every time you open a chat, invisible software tools embedded in the webpage phone home to ad networks—sending details about who you are, what page you're on, and sometimes even what you typed.
What's actually being leaked
The most basic leak is your conversation URL—a web address that points to a specific chat. Sounds harmless, right? The problem is that several platforms make those URLs publicly accessible by default, meaning anyone who has the link can read your conversation without logging in. When those URLs are also sent to Meta or Google's ad systems, those companies gain the ability to access and read your chats.
"Leaking a URL is not just metadata—it can be equivalent to leaking the conversation itself," the researchers say.
Grok, Elon Musk's AI chatbot from xAI, is the most exposed. Guest conversations are public by default on the platform—no login required to read them. TikTok's tracker received not just URLs but verbatim message content through what's called Open Graph metadata, a standard used to generate preview images when you share a link. Basically, TikTok's system received a screenshot of your conversation.
Q&A
Which AI chatbots are leaking user data to third parties?
The AI chatbots identified as leaking user data include ChatGPT, Claude, Grok, and Perplexity.
What are the consequences of AI chatbots sharing data with Meta, Google, and TikTok?
The sharing of data can lead to privacy violations, as user conversations may be accessed by third-party advertising and analytics services.
How many third-party trackers were found in the AI chatbots studied?
The researchers found over 13 third-party trackers embedded in the AI chatbots.
Why is Grok considered the worst offender in data leakage?
Grok is considered the worst offender because it makes guest conversations public by default and shares verbatim message content via TikTok's tracker.
