OpenAI has started deploying a new functionality within ChatGPT called Library, a cloud space where the platform keeps the files and images you upload to be able to reuse them as reference in later conversations. A simple view is a digital backpack: you upload a document, a spreadsheet or a photo, and ChatGPT can then consult it without having to attach it every time.
The arrival of Library is not universal: OpenAI is currently making it available to payment subscriptions - the Plus, Pro and Business modalities - and has temporarily excluded users in the European Economic Area, Switzerland and the United Kingdom. If you want to check if you already have it, just update the ChatGPT web interface: some users have seen the new section automatically appear on the side bar.
One of the things that most surprises those who find it active is that the Library does not appear empty: by default, ChatGPT stores in that repository any file you have recently uploaded to the platform. OpenAI explains that the items uploaded and created in chats (documents, presentations, spreadsheets and images you upload) are placed in a safe and dedicated location to facilitate later access; however, the images generated by the IA continue to be shown in the Image tab, while the Library is designed only for the files you manually add. More official details are described in the OpenAI help center: File storage and Library in ChatGPT.
If you want to use a file from the Library within a conversation, the flow is simple: in the chat composer you open the attached menu (the add / clip button), choose the option to add from the library and select the file you need. This process allows for the insertion of documents without re-uploading them every time, which makes workflows and frequent consultations.
It is important to understand how OpenAI manages the conservation and removal of those files. The items saved in Library remain associated to your account until you manually delete them; removing a chat does not amount to deleting the stored file. To remove a file you must select it in the Library tab and run the removal action (e.g. the "Delete" button or the bin icon). After that action, OpenAI indicates that it will remove files from its servers within 30 days. Although the company does not publicly specify all technical reasons, this period is often due to replication processes, backup and compliance with data retention and disposal regulations. You can check OpenAI's privacy policy to better understand how information is treated: OpenAI Privacy Policy and the legal obligations in Europe in the text of the General Data Protection Regulation: GDPR (EU Regulation 2016 / 679).
From a privacy and security perspective, the existence of Library has practical implications that should be assessed. The fact that files are available for future conversations facilitates the work, but also means that anyone who has access to your account could see that material. If you manage sensitive documents, regularly review the Library and use strong passwords, two-step authentication and appropriate access policies in equipment or company accounts. For organizations, the function may be very useful, but it requires coordination with compliance and security officials to decide what type of content is appropriate to store in the third party cloud.
In short, Library promises to become a comfortable tool to centralize used files with ChatGPT, but its partial deployment and the rules on conservation and disposal underline the need to be aware of what you upload and how you manage those files. If you want to see the official note and the instructions for use, check the OpenAI guide on file storage and Library in ChatGPT: see aid article, and if you are interested in knowing what plans include functionality, see the platform price page: OpenAI Pricing.
My practical recommendation: Turn around the Library when it appears to you, check which documents you have saved by default, remove what you do not want to keep and adjust the use habits to avoid uploading sensitive material without proper protection.
18-year-old Ukrainian youth leads a network of infostealers that violated 28,000 accounts and left $250,000 in losses
The Ukrainian authorities, in coordination with US agents. They have focused on an operation of infostealer which, according to the Ukrainian Cyber Police, was allegedly adminis...
RAMPART and Clarity redefine the safety of IA agents with reproducible testing and governance from the start
Microsoft has presented two open source tools, RAMPART and Clarity, aimed at changing the way the safety of IA agents is tested: one that automates and standardizes technical te...
The digital signature is in check: Microsoft dismands a service that turned malware into apparently legitimate software
Microsoft announced the disarticulation of a "malware-signing-as-a-service" operation that exploited its device signature system to convert malicious code into seemingly legitim...
A single GitHub workflow token opened the door to the software supply chain
A single GitHub workflow token failed in the rotation and opened the door. This is the central conclusion of the incident in Grafana Labs following the recent wave of malicious ...
WebWorm 2025: the malware that is hidden in Discord and Microsoft Graphh to evade detection
The latest observations by cyber security researchers point to a change in worrying tactics of an actor linked to China known as WebWorm: in 2025 it has incorporated back doors ...
Identity is no longer enough: continuous verification of the device for real-time security
Identity remains the backbone of many security architectures, but today that column is cracking under new pressures: advanced phishing, real-time proxyan authentication kits and...
The dark matter of identity is changing the rules of corporate security
The Identity Gap: Snapshot 2026 report published by Orchid Security puts numbers to a dangerous trend: the "dark matter" of identity - accounts and credentials that are neither ...