Chinese AI API Trust Index
Chinese models are cheap — that part is well documented. What nobody had pinned down: which legal entity you actually contract with, where your data lives, and whether they can train on it. We read the official international policies of DeepSeek, Z.ai (GLM), Moonshot (Kimi), Alibaba (Qwen) and MiniMax. Every claim below is quoted verbatim, linked, and dated; where a policy is silent we say not stated instead of guessing.
Verified 2026-06-12 · policy versions span 2025-09 to 2026-05 · prices for these models live on the Chinese LLM API pricing comparison
| Provider | Contracting entity | Data residency | Trains on your data? | Status page |
|---|---|---|---|---|
| Alibaba / Qwen | Alibaba Cloud (Singapore) Pte. Ltd. | Your choice: SG / US / DE / CN | Never (explicit commitment) | ✓ |
| Z.ai / GLM | Singapore (Jingsheng Hengxing Pte.) | Singapore | No storage; improvement is opt-in | — |
| DeepSeek | Mainland China (Hangzhou entity) | China (explicit) | By default, opt-out available | ✓ |
| MiniMax | Singapore (Nanonoble Pte.) | United States | Not addressed for model training | ✓ |
| Moonshot / Kimi | Singapore (Moonshot AI Pte.) | Not stated in ToS | By default; opt-out = enterprise deal | — |
Ordered by training-policy strength. Full quotes and sources in the provider sections below.
The collective gap enterprise buyers should know
None of the five publish AI-platform-specific SOC 2 or ISO 27001 attestations for these international API services — a measurable contrast with OpenAI and Anthropic. The one partial exception: Alibaba Cloud holds platform-level ISO 27001 and SOC 1/2/3 for its cloud (whether Model Studio falls within each certificate’s scope is not separately documented). Two of the five (Z.ai and Moonshot) don’t even publish a status page. If your procurement checklist requires AI-service audit reports, today the realistic answer is an enterprise agreement, not the self-serve API.
DeepSeek
DeepSeek V4 Flash / V4 Pro · platform.deepseek.com · policy dated 2026-02-10
- Legal entity verified
- Hangzhou DeepSeek Artificial Intelligence Co., Ltd. — a mainland-China entity. DeepSeek is the only provider here with no offshore contracting entity: international users contract directly with the Chinese company.source ↗
- Data residency verified
- Mainland China — stated explicitly in the privacy policy.
“we directly collect, process and store your Personal Data in People's Republic of China.”
source ↗ - Training on your data verified
- Used for training by default (“to train and improve our technology”), with an explicit right to opt out of model training.
“the right to opt-out of using your Personal Data for training our models or optimizing our technologies”
source ↗ - Compliance posture verified
- GDPR supplementary terms for EEA/Switzerland/UK; Prighter Group appointed as EU/UK privacy representative. No SOC 2 or ISO 27001 statement found.
- International payments verified
- PayPal, bank card, Alipay or WeChat Pay, per the official FAQ. Community reports suggest PayPal is the reliable route for international users; direct international-card success is not officially documented.
“You can top up online via PayPal, bank card, Alipay, or WeChat Pay on the 「Top Up」 page.”
source ↗ - Status page third-party
- Yes — status.deepseek.com. Third-party tracker StatusGator counts ~55 incidents since Aug 2024 (~2.9/month, avg. recovery ~112 min).source ↗
- Track record: security (as of 2026-06) third-party
- Jan 2025: Wiz researchers found a publicly accessible, unauthenticated ClickHouse database with 1M+ log lines including plaintext chat history and API keys — fixed after responsible disclosure.source ↗
- Track record: regulatory (as of 2026-06) third-party
- Jan 2025: Italy's data-protection authority (Garante) ordered the app removed from Italian app stores pending a GDPR inquiry; Ireland's DPC also sought information.source ↗
Zhipu / Z.ai
GLM-5 / GLM-5.1 · z.ai · docs.z.ai · policy dated 2025-09-29
- Legal entity verified
- JINGSHENG HENGXING TECHNOLOGY PTE. LTD., 10 Anson Road, Singapore. Note: the entity name has no literal connection to the Zhipu/GLM brand — it is Z.ai's affiliated operating entity.source ↗
- Data residency verified
- Singapore.
“Company generally provide the Services from Singapore... typically located in Singapore.”
source ↗ - Training on your data verified
- Policy states customer content is not stored, and use for service improvement requires explicit consent (opt-in).
“The Company do not store any of the content the Customer or its End Users provide or generate while using our Services.”
source ↗ - Compliance posture not stated
- No SOC 2 / ISO 27001 / GDPR certification statement found.
- International payments verified
- Bank card and PayPal, per the official FAQ (subscription charges fall back from Credits → cash balance → linked payment method). Subscriptions are non-refundable. Payment processor not disclosed.source ↗
- Status page not stated
- No public status page found.
- Track record: export controls (as of 2026-06) verified
- Jan 2025: parent Zhipu Huazhang and several subsidiaries were added to the US BIS Entity List. This is export-control friction, not a data-security event — relevant mainly if your supply chain touches US technology compliance.source ↗
Trying GLM for coding? The GLM Coding Plan starts at $18/month with Claude Code and 20+ coding tools supported. (Referral link — we may earn a commission, at no cost to you.)
Moonshot / Kimi
Kimi K2.6 · platform.kimi.ai (formerly platform.moonshot.ai) · policy dated 2026-05-27
- Legal entity verified
- Moonshot AI PTE. LTD. — Singapore law governs the international terms (registered address not shown in the ToS).source ↗
- Data residency not stated
- Not stated in the ToS. (Third-party guides claim Singapore servers, unofficial.)
- Training on your data verified
- The weakest default of the five: content may be used to improve the services by default, and there is no self-service opt-out — restrictions require a negotiated enterprise agreement.
“Customer who requires restrictions on the use of Customer Content for training or improving Moonshot AI models may contact Moonshot AI to discuss available enterprise arrangements or separate written agreements.”
source ↗ - Compliance posture not stated
- No SOC 2 / ISO 27001 / GDPR certification statement found in the ToS.
- International payments verified
- Credit or debit card, per the ToS; currency not specified.source ↗
- Status page not stated
- No public status page found.
Case study: the Cursor × Kimi K2.5 disclosure saga (2026)
Developers inspecting API traffic found that Cursor's Composer 2 model was built on Kimi K2.5 (model ID kimi-k2p5-rl-0317-s515-fast) without disclosure in the launch blog. Cursor's co-founder later admitted “It was a miss to not mention the Kimi base in our blog from the start”; Moonshot confirmed an authorized commercial partnership. To be precise about fault: the disclosure lapse was Cursor's — Moonshot was the licensed upstream. The episode is best read as a supply-chain transparency lesson: you may already be using Chinese models without knowing it.
Alibaba / Qwen
Qwen3.7 Max / Qwen3.5 series · Alibaba Cloud Model Studio (international) · policy dated FAQ, undated (fetched 2026-06-12)
- Legal entity verified
- Alibaba Cloud (Singapore) Private Limited — the default contracting entity of the international site's Terms of Use (some jurisdictions contract with regional entities, e.g. Alibaba Cloud (Europe) Limited).source ↗
- Data residency third-party
- The only provider offering a choice of regions: Singapore, US (Virginia), Germany (Frankfurt), China (Beijing / Hong Kong) — static data stays in your selected region.source ↗
- Training on your data verified
- The strongest commitment of the five.
“Alibaba Cloud strictly protects your data privacy and will never use your data for model training.”
source ↗ - Compliance posture verified
- Strongest of the five at platform level: Alibaba Cloud's compliance center lists ISO/IEC 27001 plus SOC 1/2/3 reports (also ISO 27017/27018, CSA STAR). Honest caveat: whether Model Studio specifically falls within each certificate's scope was not separately verified — treat these as cloud-platform attestations.source ↗
- International payments verified
- The most standard international billing of the five: settled in USD by default (EUR/SGD/HKD selectable in some regions); accepts internationally-enabled Visa / Mastercard / AMEX / JCB. No prepaid, virtual, gift or UnionPay-only cards; a $1.00 pre-authorization verifies the card.source ↗
- Status page verified
- Yes — status.alibabacloud.com (HTTP 200 verified).source ↗
- Track record (as of 2026-06) third-party
- No major security or privacy incident found for the Qwen API platform. (A vendor-research report showed Qwen2.5-VL was susceptible to prompt-injection jailbreaks — model-safety research, not a platform breach.)
MiniMax
MiniMax M3 / M2.7 · platform.minimax.io · policy dated 2026-03-30
- Legal entity verified
- Nanonoble Pte. Ltd., 152 Beach Road, Singapore. (Curious footnote: the policy's contact link for api@minimax.io actually mailto-links to legal@moji.com.)source ↗
- Data residency verified
- United States (“stored in the data center located in the United States”). Internal inconsistency worth knowing: the Singapore chapter of the same policy claims data is generally not transferred outside Singapore.source ↗
- Training on your data verified
- Effectively unstated: the policy only rules out using personal data for profiling/targeting — whether content trains foundation models is not addressed, and there is no opt-out mechanism.
“we do not use your input personal data to infer characteristics about an individual, nor use personal data for training to profile or target consumers”
source ↗ - Compliance posture verified
- Self-declared EU-US Data Privacy Framework certification + GDPR addendum + SCCs; no SOC 2 / ISO 27001, no audit report cited.source ↗
- International payments verified
- Card payments via a third-party payment processor; currency not specified.
- Status page verified
- Yes — status.minimax.io (HTTP 200 verified).source ↗
- Track record: litigation (as of 2026-06) third-party
- Disney, Universal and Warner Bros. sued MiniMax over Hailuo AI allegedly training on copyrighted material (filed Sep 2025); the motion to dismiss was denied in May 2026 and the case is ongoing. This concerns training data provenance, not customer data handling.source ↗
Methodology & honesty notes
We fetched each provider’s official international privacy policy / terms on 2026-06-12 and extracted the clauses above verbatim. verified = read directly from the official document; third-party = corroborated but not from the primary source; not stated= the document is silent — we don’t fill gaps with assumptions. Policies change: each provider card shows its policy version date. Spotted something outdated? Check the linked source and tell us — being correctable is the point of linking everything.
Frequently asked questions
Q. Is my DeepSeek API data stored in China?
Yes — DeepSeek's international privacy policy states verbatim that it collects, processes and stores personal data in the People's Republic of China, and you contract directly with the Hangzhou-based Chinese entity (there is no offshore subsidiary). DeepSeek does provide an opt-out right for model training. Whether that residency is acceptable is a per-project compliance decision.
Q. Can Chinese AI providers train on my API data?
It varies more than pricing does. Alibaba Model Studio promises it will never use your data for training. Z.ai states it does not store customer content and requires explicit consent for service improvement. DeepSeek trains by default but offers an opt-out. Moonshot/Kimi may use content by default with no self-service opt-out (enterprise negotiation only). MiniMax's policy doesn't clearly address foundation-model training at all.
Q. Which Chinese AI API looks strongest for enterprise compliance?
On paper: Alibaba Cloud Model Studio — explicit never-train commitment, selectable data residency (Singapore/US/Germany/China), USD billing with international cards, a public status page, and platform-level ISO 27001 + SOC 1/2/3 behind it. The honest caveat: none of the five publish AI-service-specific audit attestations, which remains the clearest gap versus OpenAI/Anthropic.
Q. Do these platforms accept international credit cards?
Mostly yes, with very different ergonomics. Alibaba Cloud is the most standard: USD billing with internationally-enabled Visa/Mastercard/AMEX/JCB (no prepaid or virtual cards). Z.ai takes bank cards and PayPal. DeepSeek officially lists PayPal, bank card, Alipay and WeChat Pay — community reports suggest PayPal is the dependable route for international users. Moonshot's ToS mentions credit/debit cards, and MiniMax bills cards via a third-party processor.
Q. Are Chinese LLM APIs cheaper enough to be worth this diligence?
Often dramatically — output prices frequently undercut Western flagships by an order of magnitude, which is why Chinese models now carry a large share of global developer traffic. See our companion page with every Chinese model's USD price, verified against official pricing pages.
Trust sorted? Now compare what they actually cost.