# AI Stack GRC Compliance Report — 2 platforms
- Generated: 2026-06-14T10:29:58.071Z
- Source: AIRIN verified findings (gate-verified, verbatim-cited, SHA-256-anchored)
> Automated assessment against a published rubric — not legal advice.
## Stack summary
| Platform | Headline risk | Verified findings | Dealbreakers |
|---|---|---|---|
| Claude (Anthropic) | HIGH | 202 | none detected |
| DeepSeek Chat | HIGH | 287 | none detected |
---
# GRC Risk Assessment — Claude (Anthropic)
- Platform: **Claude (Anthropic)** (anthropic-claude)
- Headline risk rating: **HIGH**
- Website: https://claude.ai
- Generated: 2026-06-14T10:29:58.071Z
- Findings (verified, published): **202**
> Every assertion is anchored to a verbatim quote with a SHA-256 snapshot hash and a Wayback archive URL for independent verification. Informational only; not legal advice.
## Control crosswalk (NIST AI RMF 1.0 + ISO/IEC 42001)
| Surface | Risk | Confidence | NIST AI RMF | ISO/IEC 42001 |
|---|---|---|---|---|
| training use | high | high | MAP-2.3 / MEASURE-2.6 (data provenance & training use) | ISO 42001 A.7.4 (data for AI systems) |
| training use | medium | medium | MAP-2.3 / MEASURE-2.6 (data provenance & training use) | ISO 42001 A.7.4 (data for AI systems) |
| training use | medium | low | MAP-2.3 / MEASURE-2.6 (data provenance & training use) | ISO 42001 A.7.4 (data for AI systems) |
| training use | medium | medium | MAP-2.3 / MEASURE-2.6 (data provenance & training use) | ISO 42001 A.7.4 (data for AI systems) |
| training use | medium | medium | MAP-2.3 / MEASURE-2.6 (data provenance & training use) | ISO 42001 A.7.4 (data for AI systems) |
| training use | unknown | high | MAP-2.3 / MEASURE-2.6 (data provenance & training use) | ISO 42001 A.7.4 (data for AI systems) |
| training use | unknown | high | MAP-2.3 / MEASURE-2.6 (data provenance & training use) | ISO 42001 A.7.4 (data for AI systems) |
| training use | unknown | high | MAP-2.3 / MEASURE-2.6 (data provenance & training use) | ISO 42001 A.7.4 (data for AI systems) |
| training use | unknown | high | MAP-2.3 / MEASURE-2.6 (data provenance & training use) | ISO 42001 A.7.4 (data for AI systems) |
| training use | unknown | high | MAP-2.3 / MEASURE-2.6 (data provenance & training use) | ISO 42001 A.7.4 (data for AI systems) |
| training use | unknown | high | MAP-2.3 / MEASURE-2.6 (data provenance & training use) | ISO 42001 A.7.4 (data for AI systems) |
| training use | unknown | high | MAP-2.3 / MEASURE-2.6 (data provenance & training use) | ISO 42001 A.7.4 (data for AI systems) |
| training use | unknown | high | MAP-2.3 / MEASURE-2.6 (data provenance & training use) | ISO 42001 A.7.4 (data for AI systems) |
| training use | unknown | high | MAP-2.3 / MEASURE-2.6 (data provenance & training use) | ISO 42001 A.7.4 (data for AI systems) |
| training use | unknown | high | MAP-2.3 / MEASURE-2.6 (data provenance & training use) | ISO 42001 A.7.4 (data for AI systems) |
| training use | unknown | high | MAP-2.3 / MEASURE-2.6 (data provenance & training use) | ISO 42001 A.7.4 (data for AI systems) |
| prompt ownership | unknown | high | MAP-2.3 (input data rights) | ISO 42001 A.7.2 (data acquisition) |
| prompt ownership | unknown | high | MAP-2.3 (input data rights) | ISO 42001 A.7.2 (data acquisition) |
| output ownership | unknown | high | MAP-1.1 (IP & output rights) | ISO 42001 A.5.2 (AI policy / IP) |
| commercial use | high | low | MANAGE-1.3 (use limitations) | ISO 42001 A.9.2 (intended use) |
| commercial use | medium | high | MANAGE-1.3 (use limitations) | ISO 42001 A.9.2 (intended use) |
| commercial use | ambiguous | low | MANAGE-1.3 (use limitations) | ISO 42001 A.9.2 (intended use) |
| privacy data use | medium | medium | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | medium | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | medium | medium | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | medium | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | medium | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | medium | medium | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | low | low | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | low | medium | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | low | medium | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | medium | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| data retention | medium | high | MANAGE-2.2 (data lifecycle) | ISO 42001 A.7.6 (data lifecycle) |
| data retention | medium | high | MANAGE-2.2 (data lifecycle) | ISO 42001 A.7.6 (data lifecycle) |
| data retention | unknown | high | MANAGE-2.2 (data lifecycle) | ISO 42001 A.7.6 (data lifecycle) |
| data retention | unknown | medium | MANAGE-2.2 (data lifecycle) | ISO 42001 A.7.6 (data lifecycle) |
| data retention | unknown | high | MANAGE-2.2 (data lifecycle) | ISO 42001 A.7.6 (data lifecycle) |
| data retention | ambiguous | medium | MANAGE-2.2 (data lifecycle) | ISO 42001 A.7.6 (data lifecycle) |
| data retention | unknown | high | MANAGE-2.2 (data lifecycle) | ISO 42001 A.7.6 (data lifecycle) |
| data retention | unknown | high | MANAGE-2.2 (data lifecycle) | ISO 42001 A.7.6 (data lifecycle) |
| data retention | unknown | high | MANAGE-2.2 (data lifecycle) | ISO 42001 A.7.6 (data lifecycle) |
| subprocessors data sharing | medium | high | MAP-4.1 (third-party/supply-chain) | ISO 42001 A.10.2 (third parties) |
| subprocessors data sharing | medium | medium | MAP-4.1 (third-party/supply-chain) | ISO 42001 A.10.2 (third parties) |
| subprocessors data sharing | medium | high | MAP-4.1 (third-party/supply-chain) | ISO 42001 A.10.2 (third parties) |
| subprocessors data sharing | medium | high | MAP-4.1 (third-party/supply-chain) | ISO 42001 A.10.2 (third parties) |
| subprocessors data sharing | medium | high | MAP-4.1 (third-party/supply-chain) | ISO 42001 A.10.2 (third parties) |
| subprocessors data sharing | low | high | MAP-4.1 (third-party/supply-chain) | ISO 42001 A.10.2 (third parties) |
| subprocessors data sharing | low | high | MAP-4.1 (third-party/supply-chain) | ISO 42001 A.10.2 (third parties) |
| subprocessors data sharing | unknown | high | MAP-4.1 (third-party/supply-chain) | ISO 42001 A.10.2 (third parties) |
| subprocessors data sharing | unknown | high | MAP-4.1 (third-party/supply-chain) | ISO 42001 A.10.2 (third parties) |
| subprocessors data sharing | unknown | high | MAP-4.1 (third-party/supply-chain) | ISO 42001 A.10.2 (third parties) |
| subprocessors data sharing | unknown | high | MAP-4.1 (third-party/supply-chain) | ISO 42001 A.10.2 (third parties) |
| subprocessors data sharing | unknown | high | MAP-4.1 (third-party/supply-chain) | ISO 42001 A.10.2 (third parties) |
| subprocessors data sharing | unknown | high | MAP-4.1 (third-party/supply-chain) | ISO 42001 A.10.2 (third parties) |
| subprocessors data sharing | unknown | high | MAP-4.1 (third-party/supply-chain) | ISO 42001 A.10.2 (third parties) |
| subprocessors data sharing | unknown | high | MAP-4.1 (third-party/supply-chain) | ISO 42001 A.10.2 (third parties) |
| subprocessors data sharing | unknown | high | MAP-4.1 (third-party/supply-chain) | ISO 42001 A.10.2 (third parties) |
| subprocessors data sharing | unknown | high | MAP-4.1 (third-party/supply-chain) | ISO 42001 A.10.2 (third parties) |
| audit rights dpa residency | medium | high | GOVERN-2.1 (accountability, audit) | ISO 42001 A.6.2 (internal audit) |
| audit rights dpa residency | low | medium | GOVERN-2.1 (accountability, audit) | ISO 42001 A.6.2 (internal audit) |
| audit rights dpa residency | unknown | high | GOVERN-2.1 (accountability, audit) | ISO 42001 A.6.2 (internal audit) |
| audit rights dpa residency | unknown | high | GOVERN-2.1 (accountability, audit) | ISO 42001 A.6.2 (internal audit) |
| audit rights dpa residency | ambiguous | low | GOVERN-2.1 (accountability, audit) | ISO 42001 A.6.2 (internal audit) |
| audit rights dpa residency | unknown | high | GOVERN-2.1 (accountability, audit) | ISO 42001 A.6.2 (internal audit) |
| audit rights dpa residency | unknown | high | GOVERN-2.1 (accountability, audit) | ISO 42001 A.6.2 (internal audit) |
| audit rights dpa residency | unknown | high | GOVERN-2.1 (accountability, audit) | ISO 42001 A.6.2 (internal audit) |
| audit rights dpa residency | unknown | high | GOVERN-2.1 (accountability, audit) | ISO 42001 A.6.2 (internal audit) |
| audit rights dpa residency | unknown | high | GOVERN-2.1 (accountability, audit) | ISO 42001 A.6.2 (internal audit) |
| audit rights dpa residency | unknown | high | GOVERN-2.1 (accountability, audit) | ISO 42001 A.6.2 (internal audit) |
| audit rights dpa residency | unknown | high | GOVERN-2.1 (accountability, audit) | ISO 42001 A.6.2 (internal audit) |
| audit rights dpa residency | unknown | high | GOVERN-2.1 (accountability, audit) | ISO 42001 A.6.2 (internal audit) |
| indemnity liability | high | high | GOVERN-6.1 (liability allocation) | ISO 42001 A.9.4 (responsibilities) |
| indemnity liability | unknown | high | GOVERN-6.1 (liability allocation) | ISO 42001 A.9.4 (responsibilities) |
| indemnity liability | unknown | high | GOVERN-6.1 (liability allocation) | ISO 42001 A.9.4 (responsibilities) |
| indemnity liability | unknown | high | GOVERN-6.1 (liability allocation) | ISO 42001 A.9.4 (responsibilities) |
| indemnity liability | unknown | high | GOVERN-6.1 (liability allocation) | ISO 42001 A.9.4 (responsibilities) |
| governing law disputes | medium | high | GOVERN-1.1 (legal/regulatory) | ISO 42001 A.5.2 (legal context) |
| governing law disputes | unknown | high | GOVERN-1.1 (legal/regulatory) | ISO 42001 A.5.2 (legal context) |
| governing law disputes | unknown | high | GOVERN-1.1 (legal/regulatory) | ISO 42001 A.5.2 (legal context) |
| moderation enforcement | high | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | high | medium | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | high | medium | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | medium | medium | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | medium | medium | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | medium | medium | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | medium | medium | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | medium | medium | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | low | low | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | low | low | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| tier differences | medium | medium | MAP-3.4 (context of use by tier) | ISO 42001 A.9.2 (intended use) |
| tier differences | unknown | high | MAP-3.4 (context of use by tier) | ISO 42001 A.9.2 (intended use) |
| tier differences | unknown | high | MAP-3.4 (context of use by tier) | ISO 42001 A.9.2 (intended use) |
| tier differences | unknown | high | MAP-3.4 (context of use by tier) | ISO 42001 A.9.2 (intended use) |
| tier differences | unknown | high | MAP-3.4 (context of use by tier) | ISO 42001 A.9.2 (intended use) |
| tier differences | unknown | high | MAP-3.4 (context of use by tier) | ISO 42001 A.9.2 (intended use) |
| tier differences | unknown | high | MAP-3.4 (context of use by tier) | ISO 42001 A.9.2 (intended use) |
| tier differences | unknown | high | MAP-3.4 (context of use by tier) | ISO 42001 A.9.2 (intended use) |
| tier differences | unknown | high | MAP-3.4 (context of use by tier) | ISO 42001 A.9.2 (intended use) |
## Evidence (verbatim, with provenance)
### training use — risk high
> We may use your Inputs and Outputs to train our models and improve our Services, unless you opt out through your account settings. Even if you opt-out, we will use Inputs and Outputs for model improvement when: (1) your conversations are flagged for safety review to improve our ability to detect harmful content, enforce our policies, or advance AI safety research, or (2) you've explicitly reported the materials to us (for example via our feedback mechanisms).
- Interpretation (disclaimed): The clause grants Anthropic a broad default right to use inputs and outputs for model training, with an opt-out mechanism that is materially limited by two exceptions. The safety-review carve-out in particular is broad and discretionary, meaning a user's opt-out election may be overridden by Anthropic's internal content moderation decisions.
- Tier: All
- Location: § 2
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=We%20may%20use%20your,via%20our%20feedback%20mechanisms).
### training use — risk medium
> To improve the Services and conduct research (including model training). See our Non-User Privacy Policy for more details on the data used to train our models. Feedback
Inputs and Outputs
Data provided through the Development Partner Program
Consent (when users submit Feedback)
Legitimate interests
It is in our legitimate interests and in the interest of Anthropic users to evaluate the use of the Services and adoption of new features to inform the development of future features and improve direction and development of the Services.
- Interpretation (disclaimed): Using legitimate interests as a legal basis for model training is contested under EU/UK GDPR. Users have an objection right, but the policy does not proactively highlight this for the training purpose. The dual legal basis (consent + LI) creates ambiguity about when each applies.
- Tier: All
- Location: Privacy Policy › “Legitimate interests”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=To%20improve%20the%20Services,development%20of%20the%20Services.
### training use — risk medium
> Utilization of inputs and outputs to train an AI model (e.g., “model scraping” or “model distillation”) without prior authorization from Anthropic
- Interpretation (disclaimed): The restriction is framed as a prohibited user behavior under the AUP, not as a bilateral obligation. The document is silent on Anthropic's own training-use rights over user-submitted content, which is a significant gap for risk assessment. Users who wish to fine-tune competing models using Claude outputs are expressly prohibited without authorization.
- Tier: All
- Location: Usage Policy › “Do Not Abuse our Platform”
- Source: https://www.anthropic.com/legal/aup
- Snapshot SHA-256: `14803ef6189dc1d0cd965845b0b6af7e3d3b54622129352f2d302d91dd7d29f0`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/aup#:~:text=Utilization%20of%20inputs%20and,prior%20authorization%20from%20Anthropic
### training use — risk medium
> Data that our users or crowd workers provide, including Inputs and Outputs from our Services (unless users opt out)
- Interpretation (disclaimed): This clause establishes that user-submitted inputs and outputs are a listed data source for model training by default, placing the onus on users to affirmatively opt out rather than opting in.
- Tier: All
- Location: Privacy Policy › “Publicly available information via the Internet”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=Data%20that%20our%20users,(unless%20users%20opt%20out)
### training use — risk medium
> We may process personal data in an aggregated or de-identified form to analyze the effectiveness of our Services, conduct research, study user behavior, and train our AI models as permitted under applicable laws. For instance:
When you submit Feedback, we disassociate Inputs and Outputs from your user ID to use them for training and improving our models.
If our systems flag Inputs or Outputs for potentially violating our Usage Policy , we disassociate the content from your user ID to train our trust and safety internal classification and generative models. However, we may re-identify the Inputs or Outputs to enforce our Usage Policy with the responsible user if necessary.
- Interpretation (disclaimed): Under GDPR and similar laws, truly anonymous data falls outside data protection scope, but the explicit re-identification capability suggests the data may not qualify as fully anonymous, raising Art. 4(1) personal data concerns. The training use is based on legitimate interests, which users may object to.
- Tier: All
- Location: Privacy Policy › “Aggregated or De-Identified Information”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=We%20may%20process%20personal,responsible%20user%20if%20necessary.
### training use — risk unknown
> When you access our website or Services, your personal data may be transferred to our servers in the US, or to other countries outside the European Economic Area ( “EEA” ) and the UK. This may be a direct provision of your personal data to us, or a transfer that we or a third party make.
Where information is transferred outside the EEA or the UK, we ensure it benefits from an adequate level of data protection by relying on:
Adequacy decisions. These are decisions from the European Commission under Article 45 GDPR (or equivalent decisions under other laws) where they recognise that a country outside of the EEA offers an adequate level of data protection. We transfer your information as described in “Collection of Personal Data” to some countries with adequacy decisions, such as the countries listed here ; or
Standard contractual clauses. The European Commission has approved contractual clauses under Article 46 GDPR that allows companies in the EEA to transfer data outside the EEA. These (and their approved equivalent for the UK and Switzerland) are called standard contractual clauses. We rely on standard contractual clauses to transfer information as described in “Collection of Personal Data” to certain affiliates and third parties in countries without an adequacy decision.
In certain situations, we rely on derogations provided for under applicable data protection law to transfer information to a third country.
- Interpretation (disclaimed): This segment permits Anthropic to process personal data in aggregated or de-identified form for research, analytics, and AI model training, and describes specific de-identification procedures for feedback and safety-flagged content, while noting the possibility of re-identification, establishing a qualified permission for de-identified training data use.
- Tier: All
- Location: § 5 (Data Transfers)
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20When%20you%20access,to%20a%20third%20country.
### training use — risk unknown
> When you use our Services, you acknowledge and agree:
Outputs may not always be accurate and may contain material inaccuracies even if they appear accurate because of their level of detail or specificity.
Actions may not be error free or operate as you intended.
You should not rely on any Outputs or Actions without independently confirming their accuracy.
The Services and any Outputs may not reflect correct, current, or complete information.
Outputs may contain content that is inconsistent with Anthropic’s views.
Our use of Materials. We may use Materials to provide, maintain, and improve the Services and to develop other products and services, including training our models, unless you opt out of training through your account settings. Even if you opt out, we will use Materials for model training when: (1) you provide Feedback to us regarding any Materials, or (2) your Materials are flagged for safety review to improve our ability to detect harmful content, enforce our policies, or advance our safety research.
- Interpretation (disclaimed): This segment disclaims accuracy of Outputs and Actions, warns users not to rely on them without independent verification, and grants Anthropic permission to use Materials to provide, maintain, and improve Services, which encompasses potential training use of user-submitted content.
- Tier: All
- Location: § 4
- Source: https://www.anthropic.com/legal/consumer-terms
- Snapshot SHA-256: `302af768945b9867a7fa2a9480b1fdc80d85c227ffaf671e19ee2025428d0705`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/consumer-terms#:~:text=When%20you%20use%20our,advance%20our%20safety%20research.
### training use — risk unknown
> Datasets that we obtain through commercial agreements with third party businesses
Data that our users or crowd workers provide, including Inputs and Outputs from our Services (unless users opt out)
- Interpretation (disclaimed): Discloses that user inputs and outputs are used for model training unless users opt out, and that commercially licensed third-party datasets are also used, establishing both the training use permission and the opt-out right as a restriction on default use.
- Tier: All
- Location: Privacy Policy › “Publicly available information via the Internet”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20Datasets%20that%20we,(unless%20users%20opt%20out)
### training use — risk unknown
> Datasets that we obtain through commercial agreements with third party businesses
Data that our users or crowd workers provide, including Inputs and Outputs from our Services (unless users opt out)
- Interpretation (disclaimed): This segment discloses that training data includes commercially licensed third-party datasets and user/crowd worker Inputs and Outputs, with a conditional exception allowing users to opt out, creating a default obligation to use user data for training unless opt-out is exercised.
- Tier: All
- Location: Privacy Policy › “Publicly available information via the Internet”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20Datasets%20that%20we,(unless%20users%20opt%20out)
### training use — risk unknown
> It is in our legitimate interests and in the interest of Anthropic users to evaluate the use of the Services and adoption of new features to inform the development of future features and improve direction and development of the Services. Our research also benefits the AI industry and society: it investigates the safety, inner workings, and societal impact of AI models so that artificial intelligence has a positive impact on society as it becomes increasingly advanced and capable.
To improve the Services and conduct research (including model training). See our Non-User Privacy Policy for more details on the data used to train our models. Feedback
- Interpretation (disclaimed): Explains Anthropic's legitimate interest justification for processing data to improve services and conduct research that includes model training, referencing the Non-User Privacy Policy and articulating the public-benefit rationale for AI safety research, thereby granting permission to use data for model training purposes.
- Tier: All
- Location: Privacy Policy › “Legitimate interests”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20It%20is%20in,train%20our%20models.%20Feedback
### training use — risk unknown
> For more information about how we collect and use personal data to develop our language models that power our Services, the steps we take to minimize the privacy impact on individuals through the training process, and your choices with respect to that information, please see our separate Non-User Privacy Policy .
- Interpretation (disclaimed): Incorporates by reference the separate Non-User Privacy Policy for detailed information on how personal data is used to develop language models, steps taken to minimize privacy impact, and user choices regarding training data, making that document operative for training-related rights and obligations.
- Tier: All
- Location: Privacy Policy › “Data that we generate internally”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20For%20more%20information,Non-User%20Privacy%20Policy%20.
### training use — risk unknown
> Anthropic obtains personal data from third party sources in order to train our models. Specifically, we train our models using data from the following sources:
- Interpretation (disclaimed): States that Anthropic obtains personal data from third-party sources specifically for the purpose of training AI models, establishing the legal basis and scope of this data acquisition obligation.
- Tier: All
- Location: Privacy Policy › “Personal data we collect or receive to train our models”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20Anthropic%20obtains%20personal,from%20the%20following%20sources%3A
### training use — risk unknown
> For more information about how we collect and use personal data to develop our language models that power our Services, the steps we take to minimize the privacy impact on individuals through the training process, and your choices with respect to that information, please see our separate Non-User Privacy Policy .
- Interpretation (disclaimed): This segment incorporates by reference the Non-User Privacy Policy for further detail on personal data used in language model development, the steps taken to minimize privacy impact, and user choices, making that separate document legally operative for training-related rights and obligations.
- Tier: All
- Location: Privacy Policy › “Data that we generate internally”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20For%20more%20information,Non-User%20Privacy%20Policy%20.
### training use — risk unknown
> Anthropic obtains personal data from third party sources in order to train our models. Specifically, we train our models using data from the following sources:
- Interpretation (disclaimed): This segment discloses that Anthropic obtains personal data from third-party sources for model training and introduces the enumeration of those sources, creating a transparency obligation regarding training data provenance.
- Tier: All
- Location: Privacy Policy › “Personal data we collect or receive to train our models”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20Anthropic%20obtains%20personal,from%20the%20following%20sources%3A
### training use — risk unknown
> It is in our legitimate interests and in the interest of Anthropic users to evaluate the use of the Services and adoption of new features to inform the development of future features and improve direction and development of the Services. Our research also benefits the AI industry and society: it investigates the safety, inner workings, and societal impact of AI models so that artificial intelligence has a positive impact on society as it becomes increasingly advanced and capable.
To improve the Services and conduct research (including model training). See our Non-User Privacy Policy for more details on the data used to train our models. Feedback
- Interpretation (disclaimed): Articulates the legitimate interest rationale for service improvement and research excluding model training, then transitions to a separate processing purpose that explicitly includes model training, referencing the Non-User Privacy Policy for further detail, thereby granting permission for AI model training using Inputs and Outputs.
- Tier: All
- Location: Privacy Policy › “Legitimate interests”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20It%20is%20in,train%20our%20models.%20Feedback
### training use — risk unknown
> We may process personal data in an aggregated or de-identified form to analyze the effectiveness of our Services, conduct research, study user behavior, and train our AI models as permitted under applicable laws. For instance:
When you submit Feedback, we disassociate Inputs and Outputs from your user ID to use them for training and improving our models.
If our systems flag Inputs or Outputs for potentially violating our Usage Policy , we disassociate the content from your user ID to train our trust and safety internal classification and generative models. However, we may re-identify the Inputs or Outputs to enforce our Usage Policy with the responsible user if necessary.
To improve user experience, we may analyze and aggregate general user behavior and usage data. This information does not identify individual users.
- Interpretation (disclaimed): Permits processing of personal data in aggregated or de-identified form for analytics, research, and AI model training, and describes the procedure of disassociating inputs/outputs from user IDs for training and safety purposes, while noting the possibility of re-identification under specific circumstances.
- Tier: All
- Location: Privacy Policy › “Aggregated or De-Identified Information”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20We%20may%20process,not%20identify%20individual%20users.
### prompt ownership — risk unknown
> Generally. You may be allowed to interact with our Services in a variety of formats (we call these “ Inputs ”). Our Services may generate responses (we call these “ Outputs ”), or enable the Services to take actions on your behalf, such as software manipulation, data processing, and system interactions (we call these "Actions" ), based on your Inputs. Inputs and Outputs collectively are “ Materials .”
Rights and Responsibilities. You are responsible for all Inputs you submit to our Services and all Actions. By submitting Inputs to our Services, you represent and warrant that you have all rights, licenses, and permissions that are necessary for us to process the Inputs under our Terms and to provide the Services to you, including for example, to integrate with third-party services, to share Materials with others at your direction, and to take Actions. You also represent and warrant that your submitting Inputs to us or directing Claude to take Actions will not violate our Terms, our Acceptable Use Policy , or any laws or regulations applicable to those Inputs or Actions. As between you and Anthropic, and to the extent permitted by applicable law, you retain any right, title, and interest that you have in the Inputs you submit. Subject to your compliance with our Terms, we assign to you all of our right, title, and interest—if any—in Outputs.
Reliance on Outputs and Actions. Artificial intelligence and large language models are frontier technologies that are still improving in accuracy, reliability and safety.
- Interpretation (disclaimed): This segment defines key terms—Inputs, Outputs, Actions, and Materials—and establishes that users are responsible for all Inputs and Actions and represent they have all rights necessary to submit Inputs, creating foundational definitions and ownership-related representations that govern user content rights.
- Tier: All
- Location: § 4
- Source: https://www.anthropic.com/legal/consumer-terms
- Snapshot SHA-256: `302af768945b9867a7fa2a9480b1fdc80d85c227ffaf671e19ee2025428d0705`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/consumer-terms#:~:text=%20Generally.%20You%20may,reliability%20and%20safety.%20
### prompt ownership — risk unknown
> The Services are owned, operated, and provided by us and our affiliates, licensors, distributors, and service providers (collectively “ Providers ”). We and our Providers retain all of our respective rights, title, and interest, including intellectual property rights, in and to the Services. Other than the rights of access and use expressly granted in our Terms, our Terms do not grant you any right, title, or interest in or to our Services.
- Interpretation (disclaimed): This segment establishes that Anthropic and its Providers retain all intellectual property rights in and to the Services, and restricts users from claiming any right, title, or interest beyond the express access rights granted, limiting user ownership claims over the Services.
- Tier: All
- Location: § 10 (Ownership of the Services)
- Source: https://www.anthropic.com/legal/consumer-terms
- Snapshot SHA-256: `302af768945b9867a7fa2a9480b1fdc80d85c227ffaf671e19ee2025428d0705`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/consumer-terms#:~:text=%20The%20Services%20are,or%20to%20our%20Services.
### output ownership — risk unknown
> We appreciate feedback, including ideas and suggestions for improvement or rating an Output in response to an Input (“ Feedback ”). If you rate an Output in response to an Input—for example, by using the thumbs up/thumbs down icon—we will store the related conversation as part of your Feedback. You have no obligation to give us Feedback, but if you do, you agree that we may use the Feedback however we choose without any obligation or other payment to you.
- Interpretation (disclaimed): This segment defines Feedback, establishes that Anthropic will store rated conversations as Feedback, and grants Anthropic an unrestricted, royalty-free permission to use Feedback however it chooses with no obligation or payment to the user, effectively conveying broad rights over user-provided feedback content.
- Tier: All
- Location: § 5 (Feedback)
- Source: https://www.anthropic.com/legal/consumer-terms
- Snapshot SHA-256: `302af768945b9867a7fa2a9480b1fdc80d85c227ffaf671e19ee2025428d0705`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/consumer-terms#:~:text=%20We%20appreciate%20feedback%2C,other%20payment%20to%20you.
### commercial use — risk high
> Human-in-the-loop: When using our products or services to provide advice, recommendations, or in subjective decision-making directly affecting individuals or consumers , a qualified professional in that field must review the content or decision prior to dissemination or finalization. You or your organization are responsible for the accuracy and appropriateness of that information.
- Interpretation (disclaimed): This clause contractually assigns responsibility for output accuracy to the operator ('You or your organization are responsible'), which could be used against the operator in negligence or product liability claims by affected individuals. The human-in-the-loop requirement also increases operational overhead and may make certain automated workflows non-compliant.
- Tier: All
- Location: Usage Policy › “High-Risk Use Case Requirements”
- Source: https://www.anthropic.com/legal/aup
- Snapshot SHA-256: `14803ef6189dc1d0cd965845b0b6af7e3d3b54622129352f2d302d91dd7d29f0`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/aup#:~:text=Human-in-the-loop%3A%20When%20using%20our,appropriateness%20of%20that%20information.
### commercial use — risk medium
> Disclosure: If model outputs are presented directly to individuals or consumers , you must disclose to them that you are using AI to help produce your advice, decisions, or recommendations. This disclosure must be provided at a minimum at the beginning of each session.
- Interpretation (disclaimed): This contractual disclosure requirement mirrors and reinforces emerging regulatory obligations. Non-compliance risks breach of contract with Anthropic and potential regulatory liability under consumer protection or AI-specific disclosure laws. Operators must implement session-level disclosure mechanisms.
- Tier: All
- Location: Usage Policy › “High-Risk Use Case Requirements”
- Source: https://www.anthropic.com/legal/aup
- Snapshot SHA-256: `14803ef6189dc1d0cd965845b0b6af7e3d3b54622129352f2d302d91dd7d29f0`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/aup#:~:text=Disclosure%3A%20If%20model%20outputs,beginning%20of%20each%20session.
### commercial use — risk ambiguous
> Anthropic may enter into contracts with certain governmental customers that tailor use restrictions to that customer’s public mission and legal authorities if, in Anthropic’s judgment, the contractual use restrictions and applicable safeguards are adequate to mitigate the potential harms addressed by this Usage Policy.
- Interpretation (disclaimed): This clause gives Anthropic unilateral discretion ('in Anthropic's judgment') to waive or modify AUP restrictions for government customers via contract. Non-governmental commercial users have no equivalent mechanism disclosed here, creating a two-tiered enforcement regime with potential fairness and competitive concerns.
- Tier: Enterprise
- Location: Usage Policy › “Usage Policy \ Anthropic”
- Source: https://www.anthropic.com/legal/aup
- Snapshot SHA-256: `14803ef6189dc1d0cd965845b0b6af7e3d3b54622129352f2d302d91dd7d29f0`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/aup#:~:text=Anthropic%20may%20enter%20into,by%20this%20Usage%20Policy.
### privacy data use — risk medium
> Inputs and Outputs: You are able to interact with our Services in a variety of formats, including but not limited to chat, coding, and agentic sessions ( “Prompts” or "Inputs" ), which generate responses and actions ( “Outputs” ) based on your Inputs. This includes third-party applications you choose to integrate with our Services. If you include personal data or reference external content in your Inputs, we will collect that information and this information may be reproduced in your Outputs.
- Interpretation (disclaimed): The clause confirms that any personal data embedded in user inputs is collected by Anthropic and may reappear in outputs, raising risks of inadvertent disclosure of third-party personal data and complicating deletion or access requests.
- Tier: All
- Location: Privacy Policy › “Personal data you provide to us directly”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=Inputs%20and%20Outputs%3A%20You,reproduced%20in%20your%20Outputs.
### privacy data use — risk medium
> Feedback on your use of our Services: We appreciate feedback, including ideas and suggestions for improvement or rating an Output in response to an Input (" Feedback "). If you rate an Output in response to an Input—for example, by using the thumbs up/thumbs down icon—we will store the entire related conversation as part of your Feedback.
- Interpretation (disclaimed): The clause broadens the data collection consequence of a minimal user action (rating), resulting in full conversation retention. This expands the data footprint beyond what users would typically expect from a feedback mechanism.
- Tier: All
- Location: Privacy Policy › “Personal data you provide to us directly”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=Feedback%20on%20your%20use,part%20of%20your%20Feedback.
### privacy data use — risk medium
> Cookies & Similar Technologies. We and our service providers use cookies, scripts, or similar technologies (“ Cookies ”) to manage the Services and to collect information about you and your use of the Services. These technologies help us to recognize you, customize or personalize your experience, market additional products or services to you, and analyze the use of our Services to make them safer and more useful to you.
- Interpretation (disclaimed): The clause confirms use of cookies and similar technologies for behavioral targeting and marketing by Anthropic and its service providers, extending data collection beyond core service delivery.
- Tier: All
- Location: Privacy Policy › “Personal data we receive automatically from your use of the Services”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=Cookies%20%26%20Similar%20Technologies.,more%20useful%20to%20you.
### privacy data use — risk medium
> To improve the Services and conduct research, including training our models; and
- Interpretation (disclaimed): This purpose statement in the lawful-use section anchors Anthropic's legal basis for using personal data in model training and research, reinforcing the training_use clauses.
- Tier: All
- Location: § 2
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=To%20improve%20the%20Services,training%20our%20models%3B%20and
### privacy data use — risk medium
> We will only collect, use and disclose your personal data with your consent, unless otherwise permitted or required by law. Your consent may be given expressly or implied, depending on the circumstances and the sensitivity of the information involved. You may withdraw consent at any time, subject to legal or contractual restrictions and reasonable notice.
- Interpretation (disclaimed): Allowing implied consent lowers the bar for obtaining user agreement to data processing. The caveat that withdrawal is subject to 'contractual restrictions' means ongoing contractual obligations may override a user's desire to stop data use.
- Tier: All
- Location: Privacy Policy › “Supplemental Disclosures for Residents of Canada”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=We%20will%20only%20collect%2C,restrictions%20and%20reasonable%20notice.
### privacy data use — risk medium
> in certain cases we may continue to process and retain data regardless of your request for deletion, objection, blocking or anonymisation, in order to comply with legal, contractual and regulatory obligations, safeguard and exercise rights, including in judicial, administrative and arbitration proceedings and in other cases provided for by law.
- Interpretation (disclaimed): This override provision means user rights (deletion, objection, blocking) are not absolute; Anthropic retains broad discretion to continue processing. While legally standard, the breadth of exceptions ('other cases provided for by law') reduces practical enforceability of user rights.
- Tier: All
- Location: Privacy Policy › “Supplemental Disclosures for Residents of Brazil”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=in%20certain%20cases%20we,provided%20for%20by%20law.
### privacy data use — risk low
> Violate privacy rights as defined by applicable privacy laws, such as sharing personal information without consent or accessing private data unlawfully
Misuse, collect, solicit, or gain access without permission to private information such as non-public contact details, health data, biometric or neural data (including facial recognition), or confidential or proprietary data
- Interpretation (disclaimed): The clause imposes obligations on users not to misuse personal data through the platform but is silent on how Anthropic collects, stores, or shares user data. For a complete privacy risk assessment, a separate privacy policy would need to be reviewed.
- Tier: All
- Location: Usage Policy › “Do Not Compromise Privacy or Identity Rights”
- Source: https://www.anthropic.com/legal/aup
- Snapshot SHA-256: `14803ef6189dc1d0cd965845b0b6af7e3d3b54622129352f2d302d91dd7d29f0`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/aup#:~:text=Violate%20privacy%20rights%20as,confidential%20or%20proprietary%20data
### privacy data use — risk low
> Automated decision-making : Anthropic does not engage in decision making based solely on automated processing or profiling in a manner which produces a legal effect (i.e., impacts your legal rights) or significantly affects you in a similar way (e.g., significantly affects your financial circumstances or ability to access essential goods or services).
- Interpretation (disclaimed): The carve-out mirrors GDPR Art. 22 language (legal/similarly significant effects) but does not exclude all automated profiling. Automated moderation flagging of Inputs/Outputs is referenced elsewhere in the document and is not covered by this statement.
- Tier: All
- Location: § 4 (Rights and Choices)
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=Automated%20decision-making%20%3A%20Anthropic,essential%20goods%20or%20services).
### privacy data use — risk low
> Sale & targeted Anthropic marketing of its products and services . Anthropic does not “sell” your personal data as that term is defined by applicable laws and regulations. You can opt-out of sharing your personal data for targeted advertising to promote our products and services, and we will honor global privacy controls.
- Interpretation (disclaimed): Under CCPA/CPRA, 'sharing' for cross-context behavioral advertising is distinct from 'selling' and triggers separate opt-out rights. Anthropic's denial of 'selling' does not preclude 'sharing' as defined under California law, which may still apply.
- Tier: All
- Location: § 4 (Rights and Choices)
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=Sale%20%26%20targeted%20Anthropic,honor%20global%20privacy%20controls.
### privacy data use — risk unknown
> We use your personal data for the following purposes:
To provide, maintain and facilitate any products and services offered to you with respect to your Anthropic account, which are governed by our Terms of Service;
To provide, maintain and facilitate optional services and features that enhance platform functionality and user experience;
To communicate with you, including to send you information about our Services and events;
To create and administer your Anthropic account;
To facilitate payments for products and services provided by Anthropic;
To prevent and investigate fraud, abuse, and violations of our Usage Policy , unlawful or criminal activity, unauthorized access to or use of personal data or Anthropic systems and networks, to protect our rights and the rights of others, and to meet legal, governmental and institutional policy obligations;
To investigate and resolve disputes;
To investigate and resolve security issues;
To debug and to identify and repair errors that impair existing functionality
To improve the Services and conduct research, including training our models; and
To enforce our Terms of Service and similar terms and agreements, including our Usage Policy .
We may use your Inputs and Outputs to train our models and improve our Services, unless you opt out through your account settings. Even if you opt-out, we will use Inputs and Outputs for model improvement when: (1) your conversations are flagged for safety review to improve our ability to detect harmful content, enforce our policies, or advance AI safety research, or (2) you've explicitly reported the materials to us (for example via our feedback mechanisms).
Please see Section 10 below for details of our legal bases for processing your personal data.
- Interpretation (disclaimed): Continues the enumeration of permitted uses of personal data including service improvement, legal compliance, and safety purposes, further defining the lawful bases for Anthropic's data processing activities.
- Tier: All
- Location: § 2
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20We%20use%20your,processing%20your%20personal%20data.
### privacy data use — risk unknown
> We implement appropriate technical and organizational security measures designed to protect personal data from loss, misuse, and unauthorized access, disclosure, alteration, or destruction.
- Interpretation (disclaimed): This segment establishes Anthropic's procedure for updating the Privacy Policy, including obligation to notify users of material changes, update the effective date, and maintain a changelog in the Privacy Center, creating procedural obligations for policy amendment transparency.
- Tier: All
- Location: Privacy Policy › “Security Controls Relating to our Processing of Personal Data”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20We%20implement%20appropriate,disclosure%2C%20alteration%2C%20or%20destruction.
### privacy data use — risk unknown
> Consent (for example for precise device location or for health app integrations)
- Interpretation (disclaimed): This segment defines Consent as a legal basis for processing personal data for optional services, providing examples such as precise device location and health app integrations that clarify the scope of consent-based processing.
- Tier: All
- Location: Privacy Policy › “Technical Information”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20Consent%20(for%20example,for%20health%20app%20integrations)
### privacy data use — risk unknown
> It is in our legitimate interests to promote our Services and to send direct marketing.
To create and administer your Anthropic account Identity and Contact Data
- Interpretation (disclaimed): This segment identifies the purpose of creating and administering user accounts, specifying Identity and Contact Data as a processed category and establishing Contract as the legal basis, creating an obligation to process data for account management.
- Tier: All
- Location: Privacy Policy › “Legitimate Interests”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20It%20is%20in,Identity%20and%20Contact%20Data
### privacy data use — risk unknown
> Entrusted Data Name, ID, phone number, email, address, and other information that you may provide to the domestic representative
- Interpretation (disclaimed): Defines the categories of personal data (name, ID, phone number, email, address, and other provided information) that are entrusted to the domestic representative, establishing the scope of data subject to the transfer obligation.
- Tier: All
- Location: Privacy Policy › “Trustees and Contacts Bae, Kim & Lee LLC (02-3404-0001)”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20Entrusted%20Data%20Name%2C,the%20domestic%20representative%20
### privacy data use — risk unknown
> This includes using our products or services to:
Violate privacy rights as defined by applicable privacy laws, such as sharing personal information without consent or accessing private data unlawfully
Misuse, collect, solicit, or gain access without permission to private information such as non-public contact details, health data, biometric or neural data (including facial recognition), or confidential or proprietary data
Impersonate a human by presenting results as human-generated, or using results in a manner intended to convince a natural person that they are communicating with a natural person when they are not
- Interpretation (disclaimed): This segment specifies prohibited privacy-related activities including violating privacy laws, misusing private information such as health data or biometric data, and impersonating a human to deceive natural persons about the nature of AI-generated communications.
- Tier: All
- Location: Usage Policy › “Do Not Compromise Privacy or Identity Rights”
- Source: https://www.anthropic.com/legal/aup
- Snapshot SHA-256: `14803ef6189dc1d0cd965845b0b6af7e3d3b54622129352f2d302d91dd7d29f0`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/aup#:~:text=%20This%20includes%20using,when%20they%20are%20not
### privacy data use — risk unknown
> This includes using our products or services to:
Violate privacy rights as defined by applicable privacy laws, such as sharing personal information without consent or accessing private data unlawfully
Misuse, collect, solicit, or gain access without permission to private information such as non-public contact details, health data, biometric or neural data (including facial recognition), or confidential or proprietary data
Impersonate a human by presenting results as human-generated, or using results in a manner intended to convince a natural person that they are communicating with a natural person when they are not
- Interpretation (disclaimed): This segment enumerates specific prohibited privacy-related activities, including violating applicable privacy laws, misusing or collecting private information (health, biometric, neural data) without permission, and impersonating humans by presenting AI-generated results as human-generated, establishing specific data-use and identity restrictions.
- Tier: All
- Location: Usage Policy › “Do Not Compromise Privacy or Identity Rights”
- Source: https://www.anthropic.com/legal/aup
- Snapshot SHA-256: `14803ef6189dc1d0cd965845b0b6af7e3d3b54622129352f2d302d91dd7d29f0`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/aup#:~:text=%20This%20includes%20using,when%20they%20are%20not
### privacy data use — risk unknown
> Please read our Privacy Policy , which describes how we collect and use personal information.
- Interpretation (disclaimed): This segment incorporates the Privacy Policy by reference, directing users to a separate document that governs how personal information is collected and used, creating a legally binding cross-reference to data handling obligations.
- Tier: All
- Location: Terms of Service › “Consumer Terms of Service \ Anthropic”
- Source: https://www.anthropic.com/legal/consumer-terms
- Snapshot SHA-256: `302af768945b9867a7fa2a9480b1fdc80d85c227ffaf671e19ee2025428d0705`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/consumer-terms#:~:text=%20Please%20read%20our,and%20use%20personal%20information.
### privacy data use — risk unknown
> Anthropic is an AI safety and research company working to build reliable, interpretable, and steerable AI systems.
This Privacy Policy explains how we collect, use, disclose, and process your personal data when you use our website and other places where Anthropic acts as a data controller —for example, when you interact with Claude.ai or other products as a consumer for personal use (" Services ") or when Anthropic operates and provides our commercial customers and their end users with access to our commercial products, such as the Claude Team plan (“ Commercial Services ”).
This Privacy Policy does not apply where Anthropic acts as a data processor and processes personal data on behalf of commercial customers using Anthropic’s Commercial Services – for example, your employer has provisioned you a Claude for Work account, or you're using an app that is powered on the back-end with Claude. In those cases, the commercial customer is the controller, and you can review their policies for more information about how they handle your personal data.
Please see our Non-User Privacy Policy for information on how our large language models are ‘trained’ and how personal data obtained from third party sources, including where others may submit personal data when using our services, may be used when developing or delivering our products and services.
This Privacy Policy also describes your privacy rights. More information about your rights, and how to exercise them, is set out in Section 4 (“Rights and Choices”).
- Interpretation (disclaimed): This segment defines the scope of the Privacy Policy, identifying Anthropic as data controller and defining the categories of covered services (consumer Services and Commercial Services), establishing foundational definitions that govern all subsequent data processing obligations.
- Tier: All
- Location: Privacy Policy › “Privacy Policy \ Anthropic”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20Anthropic%20is%20an,(%E2%80%9CRights%20and%20Choices%E2%80%9D).%20
### privacy data use — risk unknown
> Identity and Contact Data: Anthropic collects identifiers, including your name, email address, and phone number when you sign up for an Anthropic account, or to receive information on our Services. We may also collect or generate indirect identifiers (e.g., “USER12345”).
Payment Information: We shall collect your payment information if you choose to purchase access to Anthropic’s products and services.
Inputs and Outputs: You are able to interact with our Services in a variety of formats, including but not limited to chat, coding, and agentic sessions ( “Prompts” or "Inputs" ), which generate responses and actions ( “Outputs” ) based on your Inputs. This includes third-party applications you choose to integrate with our Services. If you include personal data or reference external content in your Inputs, we will collect that information and this information may be reproduced in your Outputs.
Feedback on your use of our Services: We appreciate feedback, including ideas and suggestions for improvement or rating an Output in response to an Input (" Feedback "). If you rate an Output in response to an Input—for example, by using the thumbs up/thumbs down icon—we will store the entire related conversation as part of your Feedback. You can learn more about how we use Feedback here .
Communication Information: If you communicate with us, including via our chatbot on our Help site, we collect your name, contact information, and the contents of any messages you send.
- Interpretation (disclaimed): This segment defines specific categories of personal data collected directly from users, including identity/contact data, payment information, and Inputs/Outputs (Prompts), establishing the legal definition of 'Prompts' and 'Inputs' as terms used throughout the policy and governing what data Anthropic collects and may process.
- Tier: All
- Location: Privacy Policy › “Personal data you provide to us directly”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20Identity%20and%20Contact,any%20messages%20you%20send.
### privacy data use — risk unknown
> When you use the Services, we also receive certain technical data automatically (described below, collectively “ Technical Information ”). This includes:
Device and Connection Information. Consistent with your device or browser permissions, your device or browser automatically sends us information about when and how you install, access, or use our Services. This includes information such as your device type, operating system information, browser information and web page referers, mobile network, connection information, mobile operator or internet service provider (ISP), time zone setting, IP address (including information about the location of the device derived from your IP address), identifiers (including device or advertising identifiers, probabilistic identifiers, and other unique personal or online identifiers), and device location.
Usage Information. We collect information about your use of the Services, such as the dates and times of access, browsing history, search, information about the links you click, pages you view, and other information about how you use the Services, and technology on the devices you use to access the Services.
Log and Troubleshooting Information. We collect information about how our Services are performing when you use them. This information includes log files. If you or your device experiences an error, we may collect information about the error, the time the error occurred, the feature being used, the state of the application when the error occurred, and any communications or content provided at the time the error occurred.
- Interpretation (disclaimed): This segment defines 'Technical Information' and enumerates the categories of device and connection data automatically collected from users, establishing the legal scope of automatically collected personal data subject to processing obligations.
- Tier: All
- Location: Privacy Policy › “Personal data we receive automatically from your use of the Services”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20When%20you%20use,the%20error%20occurred.%20
### privacy data use — risk unknown
> We collect the following categories of personal data:
- Interpretation (disclaimed): This segment introduces the enumeration of personal data categories collected by Anthropic, framing the definitional scope of what constitutes collected personal data under the policy.
- Tier: All
- Location: § 1 (Collection of Personal Data)
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20We%20collect%20the,categories%20of%20personal%20data%3A
### privacy data use — risk unknown
> To facilitate payments for products and services provided by Anthropic Identity and Contact Data
- Interpretation (disclaimed): This segment specifies that Identity and Contact Data is processed under the contract legal basis for the purpose of facilitating payments, establishing an obligation to process this data category in connection with payment transactions for Anthropic products and services.
- Tier: All
- Location: Privacy Policy › “Contract”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20To%20facilitate%20payments,Identity%20and%20Contact%20Data
### privacy data use — risk unknown
> Depending on where you live and the laws that apply in your country of residence, you may enjoy certain rights regarding your personal data, as described further below. However, please be aware that these rights are limited, and that the process by which we may need to action your requests regarding our training dataset are complex. We may also decline a request if we have a lawful reason for doing so. That said, we strive to prioritize the protection of personal data, and comply with all applicable privacy laws.
To exercise your rights, you or an authorized agent may submit a request by emailing us at privacy@anthropic.com . After we receive your request, we may verify it by requesting information sufficient to confirm your identity. You may also have the right to appeal requests that we deny by emailing privacy@anthropic.com . Anthropic will not discriminate based on the exercising of privacy rights you may have. Set out below is a summary of the rights which you may enjoy, depending on the laws that apply in your country of residence.
Right to know: the right to know what personal data Anthropic processes about you, including the categories of personal data, the categories of sources from which it is collected, the business or commercial purposes for collection, and the categories of third parties to whom we disclose it.
Access & data portability: the right to request a copy of the personal data Anthropic processes about you, subject to certain exceptions and conditions.
- Interpretation (disclaimed): Establishes that users have legally recognized rights regarding their personal data subject to applicable law, while noting limitations on those rights particularly with respect to training datasets, and provides a procedure for submitting rights requests via email.
- Tier: All
- Location: § 4 (Rights and Choices)
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20Depending%20on%20where,exceptions%20and%20conditions.%20
### privacy data use — risk unknown
> When you use the Services, we also receive certain technical data automatically (described below, collectively “ Technical Information ”). This includes:
Device and Connection Information. Consistent with your device or browser permissions, your device or browser automatically sends us information about when and how you install, access, or use our Services. This includes information such as your device type, operating system information, browser information and web page referers, mobile network, connection information, mobile operator or internet service provider (ISP), time zone setting, IP address (including information about the location of the device derived from your IP address), identifiers (including device or advertising identifiers, probabilistic identifiers, and other unique personal or online identifiers), and device location.
Usage Information. We collect information about your use of the Services, such as the dates and times of access, browsing history, search, information about the links you click, pages you view, and other information about how you use the Services, and technology on the devices you use to access the Services.
Log and Troubleshooting Information. We collect information about how our Services are performing when you use them. This information includes log files. If you or your device experiences an error, we may collect information about the error, the time the error occurred, the feature being used, the state of the application when the error occurred, and any communications or content provided at the time the error occurred.
- Interpretation (disclaimed): Describes automatic collection of device and connection information from users, constituting an obligation to disclose and a procedural description of data collection practices for device, browser, IP, and usage data.
- Tier: All
- Location: Privacy Policy › “Personal data we receive automatically from your use of the Services”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20When%20you%20use,the%20error%20occurred.%20
### privacy data use — risk unknown
> If you live in the European Economic Area (EEA), UK or Switzerland (the “European Region”), the data controller responsible for your personal data is Anthropic Ireland, Limited. If you live outside the European Region, the data controller responsible for your personal data is Anthropic PBC.
If you have any questions about this Privacy Policy, or have any questions, complaints or requests regarding your personal data, you can contact us as described below:
Anthropic PBC with a registered address at 548 Market St, PMB 90375, San Francisco, CA 94104 (United States).
Anthropic Ireland, Limited with a registered address at 6th Floor, South Bank House, Barrow Street. Dublin 4, D04 TR29 (Ireland).
You can email us at privacy@anthropic.com and contact our Data Protection Officer at dpo@anthropic.com .
Please note that under many countries' laws, you have the right to lodge a complaint with the supervisory authority in the place in which you live or work. A full list of EU supervisory authorities’ contact details is available here . If you live or work in the UK, you have the right to lodge a complaint with the UK Information Commissioner’s Office . If you live in Brazil, you have the right to lodge a complaint with the Brazilian Data Protection Authority (ANPD) .If you live in Australia, you have the right to lodge a complaint with the Office of the Australian Information Commissioner .
- Interpretation (disclaimed): This segment defines the data controllers responsible for personal data depending on the user's geographic region, establishing the legal entities with obligations under applicable privacy law and providing contact information for privacy-related inquiries.
- Tier: All
- Location: § 9 (Contact Information)
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20If%20you%20live,Australian%20Information%20Commissioner%20.
### privacy data use — risk unknown
> To facilitate payments for products and services provided by Anthropic Identity and Contact Data
- Interpretation (disclaimed): This segment identifies payment facilitation as a processing purpose, specifying Identity and Contact Data as a processed category and establishing Contract as the legal basis, creating an obligation to process such data for payment transactions.
- Tier: All
- Location: Privacy Policy › “Contract”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20To%20facilitate%20payments,Identity%20and%20Contact%20Data
### privacy data use — risk unknown
> It is in our legitimate interests to maintain continuous functioning of our services and rapid correction of problems to ensure a positive user experience that encourages engagement.
To improve the Services and conduct research (excluding model training) Identity and Contact Data
- Interpretation (disclaimed): Grants Anthropic permission to process Identity, Contact, Technical, and Feedback data to improve services and conduct research (excluding model training), justified by legitimate interests in service evaluation and AI safety research benefiting users and society.
- Tier: All
- Location: Privacy Policy › “Legitimate interests”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20It%20is%20in,Identity%20and%20Contact%20Data
### privacy data use — risk unknown
> To provide, maintain and facilitate any products and services offered to you with respect to your Anthropic account, which are governed by our Terms of Service Identity and Contact Data
- Interpretation (disclaimed): This segment identifies the purpose of processing personal data (providing and maintaining services governed by Terms of Service) and the associated data categories, establishing the legal basis for processing as contract performance.
- Tier: All
- Location: Privacy Policy › “Purpose Type of Data Legal Basis”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20To%20provide%2C%20maintain,Identity%20and%20Contact%20Data
### privacy data use — risk unknown
> Anthropic will disclose personal data to the following categories of third parties for the purposes explained in this Policy:
Affiliates & corporate partners. Anthropic discloses the categories of personal data described above between and among its affiliates and related entities.
Service providers & business partners. Anthropic may disclose the categories of personal data described above with service providers and business partners for a variety of business purposes, including website and data hosting, ensuring compliance with industry standards, research, auditing, data processing, and providing you with the services.
Anthropic may also disclose personal data in the following circumstances:
As part of a significant corporate event. If Anthropic is involved in a merger, corporate transaction, bankruptcy, or other situation involving the transfer of business assets, Anthropic will disclose your personal data as part of these corporate transactions.
Third-Party Websites and Services: Our Services may involve integrations with, or may direct you to, websites, apps, and services managed by third parties. By interacting with these third parties, you are providing information directly to the third party and not Anthropic and subject to the third party’s privacy policy.If you access third-party services, such as social media sites or other sites linked through the Services (e.g., if you follow a link to our Twitter account), these third-party services will be able to collect personal data about you, including information about your activity on the Services.
- Interpretation (disclaimed): This segment introduces the section on individual rights and choices regarding personal data, acknowledging that rights are limited and subject to applicable law, and describing the process for submitting data subject requests, establishing the procedural framework for exercising data subject rights.
- Tier: All
- Location: § 3 (How We Disclose Personal Data)
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20Anthropic%20will%20disclose,on%20the%20Services.%20
### privacy data use — risk unknown
> We implement appropriate technical and organizational security measures designed to protect personal data from loss, misuse, and unauthorized access, disclosure, alteration, or destruction.
- Interpretation (disclaimed): Establishes Anthropic's obligation to implement appropriate technical and organizational security measures to protect personal data from loss, misuse, unauthorized access, disclosure, alteration, or destruction.
- Tier: All
- Location: Privacy Policy › “Security Controls Relating to our Processing of Personal Data”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20We%20implement%20appropriate,disclosure%2C%20alteration%2C%20or%20destruction.
### privacy data use — risk unknown
> It is in our legitimate interests to fully understand and make reasonable efforts to resolve customer complaints in order to improve user satisfaction. We also have a legal obligation in some cases.
- Interpretation (disclaimed): This segment articulates the legitimate interest rationale for processing personal data to investigate and resolve customer complaints, as well as the legal obligation basis in certain cases, justifying the dual legal bases for dispute-related processing.
- Tier: All
- Location: Privacy Policy › “Legal obligation”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20It%20is%20in,in%20some%20cases.%20
### privacy data use — risk unknown
> It is in our and our users' legitimate interests to expand our product features and deliver additional services that enhance platform functionality and user experience.
To communicate with you and to promote our Services Identity and Contact Data
- Interpretation (disclaimed): This segment articulates the legitimate interest rationale for processing personal data to expand product features and deliver additional services, justifying the lawful basis and establishing the processing purpose for optional features.
- Tier: All
- Location: Privacy Policy › “Legitimate interests”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20It%20is%20in,Identity%20and%20Contact%20Data
### privacy data use — risk unknown
> It is in our legitimate interests to promote our Services and to send direct marketing.
To create and administer your Anthropic account Identity and Contact Data
- Interpretation (disclaimed): This segment identifies Identity and Contact Data as processed under the contract legal basis for creating and administering user accounts, establishing an obligation to process this data category in connection with account management under the Terms of Service.
- Tier: All
- Location: Privacy Policy › “Legitimate Interests”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20It%20is%20in,Identity%20and%20Contact%20Data
### privacy data use — risk unknown
> It is in our legitimate interests to maintain continuous functioning of our services and rapid correction of problems to ensure a positive user experience that encourages engagement.
To improve the Services and conduct research (excluding model training) Identity and Contact Data
- Interpretation (disclaimed): Permits Anthropic to process Identity, Contact, and Technical data to improve Services and conduct research (excluding model training), grounded in legitimate interests, and identifies the categories of data used for this purpose.
- Tier: All
- Location: Privacy Policy › “Legitimate interests”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20It%20is%20in,Identity%20and%20Contact%20Data
### privacy data use — risk unknown
> To provide, maintain and facilitate optional services and features that enhance platform functionality and user experience Identity and Contact Data
- Interpretation (disclaimed): This segment identifies the purpose of processing personal data for optional services and features, specifying Identity and Contact Data as a processed category and establishing the applicable legal bases including consent and legitimate interests.
- Tier: All
- Location: Privacy Policy › “Contract”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20To%20provide%2C%20maintain,Identity%20and%20Contact%20Data
### privacy data use — risk unknown
> Anthropic is an AI safety and research company working to build reliable, interpretable, and steerable AI systems.
This Privacy Policy explains how we collect, use, disclose, and process your personal data when you use our website and other places where Anthropic acts as a data controller —for example, when you interact with Claude.ai or other products as a consumer for personal use (" Services ") or when Anthropic operates and provides our commercial customers and their end users with access to our commercial products, such as the Claude Team plan (“ Commercial Services ”).
This Privacy Policy does not apply where Anthropic acts as a data processor and processes personal data on behalf of commercial customers using Anthropic’s Commercial Services – for example, your employer has provisioned you a Claude for Work account, or you're using an app that is powered on the back-end with Claude. In those cases, the commercial customer is the controller, and you can review their policies for more information about how they handle your personal data.
Please see our Non-User Privacy Policy for information on how our large language models are ‘trained’ and how personal data obtained from third party sources, including where others may submit personal data when using our services, may be used when developing or delivering our products and services.
This Privacy Policy also describes your privacy rights. More information about your rights, and how to exercise them, is set out in Section 4 (“Rights and Choices”).
- Interpretation (disclaimed): Defines the scope and purpose of the Privacy Policy, identifying Anthropic as data controller and defining the categories of covered services (Services and Commercial Services), establishing foundational definitional terms that govern subsequent obligations and rights throughout the document.
- Tier: All
- Location: Privacy Policy › “Privacy Policy \ Anthropic”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20Anthropic%20is%20an,(%E2%80%9CRights%20and%20Choices%E2%80%9D).%20
### privacy data use — risk unknown
> Identity and Contact Data: Anthropic collects identifiers, including your name, email address, and phone number when you sign up for an Anthropic account, or to receive information on our Services. We may also collect or generate indirect identifiers (e.g., “USER12345”).
Payment Information: We shall collect your payment information if you choose to purchase access to Anthropic’s products and services.
Inputs and Outputs: You are able to interact with our Services in a variety of formats, including but not limited to chat, coding, and agentic sessions ( “Prompts” or "Inputs" ), which generate responses and actions ( “Outputs” ) based on your Inputs. This includes third-party applications you choose to integrate with our Services. If you include personal data or reference external content in your Inputs, we will collect that information and this information may be reproduced in your Outputs.
Feedback on your use of our Services: We appreciate feedback, including ideas and suggestions for improvement or rating an Output in response to an Input (" Feedback "). If you rate an Output in response to an Input—for example, by using the thumbs up/thumbs down icon—we will store the entire related conversation as part of your Feedback. You can learn more about how we use Feedback here .
Communication Information: If you communicate with us, including via our chatbot on our Help site, we collect your name, contact information, and the contents of any messages you send.
- Interpretation (disclaimed): Describes Anthropic's data collection obligation and practice regarding identity, contact, payment information, and user prompts/inputs/outputs, defining the categories of personal data collected and establishing the legal basis for processing such data.
- Tier: All
- Location: Privacy Policy › “Personal data you provide to us directly”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20Identity%20and%20Contact,any%20messages%20you%20send.
### privacy data use — risk unknown
> To provide, maintain and facilitate any products and services offered to you with respect to your Anthropic account, which are governed by our Terms of Service Identity and Contact Data
- Interpretation (disclaimed): This segment specifies the purpose of processing Identity and Contact Data — to provide, maintain and facilitate products and services governed by the Terms of Service — establishing a legal basis (contract) and an obligation to process such data in connection with service delivery.
- Tier: All
- Location: Privacy Policy › “Purpose Type of Data Legal Basis”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20To%20provide%2C%20maintain,Identity%20and%20Contact%20Data
### privacy data use — risk unknown
> Where necessary to perform a contract with you, such as processing your contact information to send you a technical announcement about the Services.
Your consent when we ask for it to process your personal data for a specific purpose that we communicate to you, such as processing your contact information to send you certain forms of marketing communications.
- Interpretation (disclaimed): This segment specifies two legal bases—contract performance and consent—for processing personal data for communication and marketing purposes, establishing conditions under which such processing is lawful.
- Tier: All
- Location: Privacy Policy › “Technical Information”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20Where%20necessary%20to,forms%20of%20marketing%20communications.
### privacy data use — risk unknown
> We may process personal data in an aggregated or de-identified form to analyze the effectiveness of our Services, conduct research, study user behavior, and train our AI models as permitted under applicable laws. For instance:
When you submit Feedback, we disassociate Inputs and Outputs from your user ID to use them for training and improving our models.
If our systems flag Inputs or Outputs for potentially violating our Usage Policy , we disassociate the content from your user ID to train our trust and safety internal classification and generative models. However, we may re-identify the Inputs or Outputs to enforce our Usage Policy with the responsible user if necessary.
To improve user experience, we may analyze and aggregate general user behavior and usage data. This information does not identify individual users.
- Interpretation (disclaimed): This segment restricts Anthropic's Services from being directed at children under 18, prohibits knowing collection of their data, and establishes a remedy procedure for reporting and deleting children's data, creating legally operative restrictions and procedural obligations under child privacy law.
- Tier: All
- Location: Privacy Policy › “Aggregated or De-Identified Information”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20We%20may%20process,not%20identify%20individual%20users.
### privacy data use — risk unknown
> Our Services are not directed towards, and we do not knowingly collect, use, disclose, sell, or share any information from children under the age of 18. If you become aware that a child under the age of 18 has provided any personal data to us while using our Services, please email us at privacy@anthropic.com and we will investigate the matter and, if appropriate, delete the personal data.
- Interpretation (disclaimed): Restricts Anthropic's Services from being directed at children under 18 and prohibits knowing collection, use, or disclosure of their personal data, while establishing a procedure for reporting and deleting children's data if inadvertently collected.
- Tier: All
- Location: § 7 (Children)
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20Our%20Services%20are,delete%20the%20personal%20data.
### privacy data use — risk unknown
> It is in our legitimate interests to protect user data and our systems from intrusion or compromise through monitoring and swift response. We also have a legal obligation to provide adequate security safeguards.
To debug and to identify and repair errors that impair existing functionality Identity and Contact Data
- Interpretation (disclaimed): States that Anthropic has a legal obligation to provide adequate security safeguards and a legitimate interest in protecting user data and systems through monitoring; also introduces a new processing purpose (debugging and error repair) with associated data categories, establishing both an obligation and permission to process data for those purposes.
- Tier: All
- Location: Privacy Policy › “Legitimate interests”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20It%20is%20in,Identity%20and%20Contact%20Data
### privacy data use — risk unknown
> These supplemental disclosures contain additional information relevant to residents of Canada. This content should be read in conjunction with the rest of our Privacy Policy. In case of conflict between our Privacy Policy and these supplemental disclosures, the supplemental disclosures shall prevail in relation to residents of Canada.
Consent. By expressly consenting to this Privacy Policy, you confirm you have read, understand, and consent to the collection, use, processing, and disclosure of your personal data in accordance with this Privacy Policy and understand that, in jurisdictions where it is available, Anthropic also relies on other lawful bases for the foregoing as more fully set out in this policy. We will only collect, use and disclose your personal data with your consent, unless otherwise permitted or required by law. Your consent may be given expressly or implied, depending on the circumstances and the sensitivity of the information involved. You may withdraw consent at any time, subject to legal or contractual restrictions and reasonable notice.
Cross-jurisdictional Transfers. By providing us with personal data, you acknowledge and agree that your personal data may be transferred or disclosed to other jurisdictions for processing and storage outside of Canada, including to the United States and the countries listed on our Subprocessor List , where laws regarding the protection of personal data may be less stringent than the laws in your jurisdiction.
- Interpretation (disclaimed): Requires Canadian residents to read supplemental disclosures in conjunction with the main Privacy Policy, establishes that supplemental disclosures prevail in case of conflict, and records express consent to the collection, use, processing, and disclosure of personal data in accordance with the policy.
- Tier: All
- Location: Privacy Policy › “Supplemental Disclosures for Residents of Canada”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20These%20supplemental%20disclosures,in%20your%20jurisdiction.%20
### privacy data use — risk unknown
> Where necessary to perform a contract with you, such as processing your contact information to send you a technical announcement about the Services.
Your consent when we ask for it to process your personal data for a specific purpose that we communicate to you, such as processing your contact information to send you certain forms of marketing communications.
- Interpretation (disclaimed): This segment defines two legal bases — contractual necessity (e.g., technical announcements) and consent (e.g., marketing communications) — applicable to processing contact information for communication purposes, distinguishing the conditions under which each basis applies.
- Tier: All
- Location: Privacy Policy › “Technical Information”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20Where%20necessary%20to,forms%20of%20marketing%20communications.
### privacy data use — risk unknown
> It is in our and our users' legitimate interests to expand our product features and deliver additional services that enhance platform functionality and user experience.
To communicate with you and to promote our Services Identity and Contact Data
- Interpretation (disclaimed): This segment articulates the legitimate interests rationale for expanding product features and delivering additional services, establishing the legal justification for processing Identity and Contact Data to communicate with users and promote services, and specifying this as an operative basis for processing.
- Tier: All
- Location: Privacy Policy › “Legitimate interests”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20It%20is%20in,Identity%20and%20Contact%20Data
### privacy data use — risk unknown
> These supplemental disclosures contain additional information relevant to residents of Brazil. This content should be read in conjunction with the rest of our Privacy Policy. In case of conflict between our Privacy Policy and these supplemental disclosures, the supplemental disclosures shall prevail in relation to residents of Brazil.
Legal Bases. Depending on the specific purpose of the processing, we may rely on different grounds than those listed under section 2, where permitted by and in accordance with the Brazilian General Data Protection Law (LGPD). For example, we may rely on the "exercise of legal rights" basis to process personal data associated with customer complaints and to enforce our Terms of Service and similar terms and agreements, including our Usage Policy.
Data Subject's Rights. LGPD grants certain rights regarding your personal data, which differ from the ones listed under section 4. We will respond to your requests to exercise your rights below in accordance with applicable law:
Confirmation of whether your data is being processed. You have the right to receive a confirmation on whether Anthropic processes your data.Access to your data. You have the right to know what personal data Anthropic processes about you.
Correction of incomplete, inaccurate or outdated data. You have the right to request the correction of your data that is incomplete, inaccurate, or outdated.
Anonymization, blocking or erasure of data.
- Interpretation (disclaimed): Requires Brazilian residents to read supplemental disclosures in conjunction with the main Privacy Policy, establishes conflict-of-laws priority for supplemental disclosures, and specifies that lawful bases for processing may differ under Brazil's LGPD.
- Tier: All
- Location: Privacy Policy › “Supplemental Disclosures for Residents of Brazil”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20These%20supplemental%20disclosures,erasure%20of%20data.%20
### privacy data use — risk unknown
> Anthropic may update this Privacy Policy from time to time. We will notify you of any material changes to this Privacy Policy, as appropriate, and update the Effective Date at the top of https://www.anthropic.com/legal/privacy . You can view a summary of privacy policy changes and previous versions in our Privacy Center .
- Interpretation (disclaimed): Establishes Anthropic's obligation to notify users of material changes to the Privacy Policy and to update the effective date, while providing a procedure for users to access previous versions, constituting a notification and transparency obligation.
- Tier: All
- Location: § 8 (Changes to Our Privacy Policy)
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20Anthropic%20may%20update,our%20Privacy%20Center%20.
### privacy data use — risk unknown
> Cookies & Similar Technologies. We and our service providers use cookies, scripts, or similar technologies (“ Cookies ”) to manage the Services and to collect information about you and your use of the Services. These technologies help us to recognize you, customize or personalize your experience, market additional products or services to you, and analyze the use of our Services to make them safer and more useful to you. For more details about how we use these technologies, and your opt-out controls and other options, please visit our Cookie Policy .
- Interpretation (disclaimed): This segment discloses Anthropic's use of cookies and similar technologies by itself and service providers for purposes including personalization, marketing, and analytics, and references opt-out controls in the Cookie Policy, constituting a procedural and disclosure obligation under applicable privacy law.
- Tier: All
- Location: Privacy Policy › “Personal data we receive automatically from your use of the Services”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20Cookies%20%26%20Similar,our%20Cookie%20Policy%20.
### privacy data use — risk unknown
> We collect the following categories of personal data:
- Interpretation (disclaimed): Introduces the enumeration of personal data categories collected by Anthropic, serving as a definitional framing clause for the data collection practices described in subsequent segments.
- Tier: All
- Location: § 1 (Collection of Personal Data)
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20We%20collect%20the,categories%20of%20personal%20data%3A
### privacy data use — risk unknown
> Anthropic retains your personal data for as long as reasonably necessary for the purposes and criteria outlined in this Privacy Policy and explained further in our privacy center .
When the personal data collected is no longer required by us, we and our service providers will perform the necessary procedures for destroying, deleting, erasing, or converting it into an anonymous form as permitted or required under applicable laws.
- Interpretation (disclaimed): This segment imposes an obligation on Anthropic to implement appropriate technical and organizational security measures to protect personal data from loss, misuse, unauthorized access, disclosure, alteration, or destruction.
- Tier: All
- Location: § 6 (Data Retention, Data Lifecycle, and Security Controls)
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20Anthropic%20retains%20your,required%20under%20applicable%20laws.
### privacy data use — risk unknown
> Cookies & Similar Technologies. We and our service providers use cookies, scripts, or similar technologies (“ Cookies ”) to manage the Services and to collect information about you and your use of the Services. These technologies help us to recognize you, customize or personalize your experience, market additional products or services to you, and analyze the use of our Services to make them safer and more useful to you. For more details about how we use these technologies, and your opt-out controls and other options, please visit our Cookie Policy .
- Interpretation (disclaimed): Discloses Anthropic's and its service providers' use of cookies and similar tracking technologies to collect user data, manage services, personalize experience, and analyze usage, constituting a processing obligation disclosure with a reference to opt-out controls.
- Tier: All
- Location: Privacy Policy › “Personal data we receive automatically from your use of the Services”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20Cookies%20%26%20Similar,our%20Cookie%20Policy%20.
### privacy data use — risk unknown
> Entrusted Data Name, ID, phone number, email, address, and other information that you may provide to the domestic representative
- Interpretation (disclaimed): Defines the categories of personal data (name, ID, phone number, email, address) entrusted to the domestic representative, establishing the scope of data subject to the transfer arrangement.
- Tier: All
- Location: Privacy Policy › “Trustees and Contacts Bae, Kim & Lee LLC (02-3404-0001)”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20Entrusted%20Data%20Name%2C,the%20domestic%20representative%20
### privacy data use — risk unknown
> Consent (for example for precise device location or for health app integrations)
- Interpretation (disclaimed): This segment defines 'Consent' as a legal basis for optional services and features, providing examples such as precise device location or health app integrations, which establishes the definitional scope of consent-based processing for these specific data categories.
- Tier: All
- Location: Privacy Policy › “Technical Information”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20Consent%20(for%20example,for%20health%20app%20integrations)
### privacy data use — risk unknown
> It is in our legitimate interests to fully understand and make reasonable efforts to resolve customer complaints in order to improve user satisfaction. We also have a legal obligation in some cases.
- Interpretation (disclaimed): This segment articulates the legitimate interests rationale for dispute processing, stating that it is in Anthropic's legitimate interests to understand and resolve customer complaints to improve user satisfaction, and acknowledging a legal obligation in some cases, thereby providing the operative justification for this processing activity.
- Tier: All
- Location: Privacy Policy › “Legal obligation”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20It%20is%20in,in%20some%20cases.%20
### privacy data use — risk unknown
> Restriction: the right to restrict our processing of your personal data in certain circumstances.
Withdrawal of consent. Where Anthropic’s processing of your personal data is based on consent, you have the right to withdraw your consent. The withdrawal of consent will not affect the lawfulness of processing based on consent before its withdrawal.
Automated decision-making : Anthropic does not engage in decision making based solely on automated processing or profiling in a manner which produces a legal effect (i.e., impacts your legal rights) or significantly affects you in a similar way (e.g., significantly affects your financial circumstances or ability to access essential goods or services).
Sale & targeted Anthropic marketing of its products and services . Anthropic does not “sell” your personal data as that term is defined by applicable laws and regulations. You can opt-out of sharing your personal data for targeted advertising to promote our products and services, and we will honor global privacy controls. To learn more, click here .
Anthropic gives you access to a variety of tools to help you manage your data. You can access these in your Privacy Settings .
- Interpretation (disclaimed): Establishes user rights to restrict processing, withdraw consent (with a limitation that withdrawal does not affect prior lawful processing), and declares that Anthropic does not engage in solely automated decision-making with legal or significant effects, constituting both rights and a restriction disclaimer.
- Tier: All
- Location: § 4 (Rights and Choices)
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20Restriction%3A%20the%20right,your%20Privacy%20Settings%20.
### privacy data use — risk unknown
> To provide, maintain and facilitate optional services and features that enhance platform functionality and user experience Identity and Contact Data
- Interpretation (disclaimed): This segment specifies the purpose of processing Identity and Contact Data for optional services and features that enhance platform functionality and user experience, establishing a permission to process this data under consent and legitimate interests legal bases.
- Tier: All
- Location: Privacy Policy › “Contract”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20To%20provide%2C%20maintain,Identity%20and%20Contact%20Data
### privacy data use — risk unknown
> It is in our legitimate interests to protect user data and our systems from intrusion or compromise through monitoring and swift response. We also have a legal obligation to provide adequate security safeguards.
To debug and to identify and repair errors that impair existing functionality Identity and Contact Data
- Interpretation (disclaimed): Articulates the legitimate interest rationale for security monitoring and swift response, confirming both a legal obligation for security safeguards and a legitimate interest basis for processing personal data to debug and repair errors impairing functionality.
- Tier: All
- Location: Privacy Policy › “Legitimate interests”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20It%20is%20in,Identity%20and%20Contact%20Data
### data retention — risk medium
> You also are able to delete individual conversations , which will be removed immediately from your conversation history and automatically deleted from our back-end within 30 days.
- Interpretation (disclaimed): The 30-day back-end deletion window means personal data persists in Anthropic's systems for up to a month after user-initiated deletion. This window interacts with the training-use carve-outs, potentially allowing flagged content to be used for training before deletion is processed.
- Tier: All
- Location: § 4 (Rights and Choices)
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=You%20also%20are%20able,back-end%20within%2030%20days.
### data retention — risk medium
> Anthropic retains your personal data for as long as reasonably necessary for the purposes and criteria outlined in this Privacy Policy and explained further in our privacy center .
When the personal data collected is no longer required by us, we and our service providers will perform the necessary procedures for destroying, deleting, erasing, or converting it into an anonymous form as permitted or required under applicable laws.
- Interpretation (disclaimed): GDPR Art. 5(1)(e) requires storage limitation with specific periods. 'Reasonably necessary' without defined timeframes is a compliance risk marker and limits user ability to predict how long their data is held.
- Tier: All
- Location: § 6 (Data Retention, Data Lifecycle, and Security Controls)
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=Anthropic%20retains%20your%20personal,required%20under%20applicable%20laws.
### data retention — risk unknown
> If we terminate your Account due to inactivity, we will provide you with notice before doing so.
Upon termination of these Terms, a Subscription, or your access to the Services, we may at our option delete any Materials or other data associated with your Account. Sections 6 (with respect to fees outstanding as of such expiration or termination) and 9 – 12 will survive any expiration or termination of our Terms or a Subscription.
Severability. If a particular Term or portion of these Terms is not valid or enforceable, this will have no effect on any other Terms.
No waiver. Any delay or failure on our part to enforce a provision of these Terms is not a waiver of our right to enforce them later.
No assignment. These Terms may not be transferred or assigned by you without our prior written consent, but may be assigned by us without restriction.
Use of our brand. You may not, without our prior written permission, use our name, logos, or other trademarks in connection with products or services other than the Services, or in any other way that implies our affiliation, endorsement, or sponsorship. To seek permission, please email us at marketing@anthropic.com.
Export Controls. You may not export or provide access to the Services into any U.S. embargoed countries or to anyone on (i) the U.S. Treasury Department’s list of Specially Designated Nationals, (ii) any other restricted party lists identified by the Office of Foreign Asset Control, (iii) the U.S.
- Interpretation (disclaimed): This segment specifies the procedure for termination due to inactivity (notice required), establishes the platform's discretionary right to delete user Materials and data upon termination, and identifies which contractual sections survive expiration or termination — directly governing data deletion and retention obligations post-termination.
- Tier: All
- Location: § 12 (General terms)
- Source: https://www.anthropic.com/legal/consumer-terms
- Snapshot SHA-256: `302af768945b9867a7fa2a9480b1fdc80d85c227ffaf671e19ee2025428d0705`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/consumer-terms#:~:text=If%20we%20terminate%20your,(iii)%20the%20U.S.%20
### data retention — risk unknown
> In certain cases and subject to applicable law, you have the right to port your information.
Deletion: the right to request that we delete personal data collected from you when you use our Services, subject to certain exceptions. You also are able to delete individual conversations , which will be removed immediately from your conversation history and automatically deleted from our back-end within 30 days. Learn more here .
Correction: the right to request that we correct inaccurate personal data Anthropic retains about you, subject to certain exceptions. Please note that we cannot guarantee the factual accuracy of Outputs. If Outputs contain factually inaccurate personal data relating to you, you can submit a correction request and we will make a reasonable effort to correct this information—but due to the technical complexity of our large language models, it may not always be possible for us to do so.
Objection: the right to object to processing of your personal data, including profiling conducted on grounds of public or legitimate interest. In places where such a right applies, we will no longer process the personal data in case of such objection unless we demonstrate compelling legitimate grounds for the processing which override your interests, rights, and freedoms, or for the establishment, exercise or defense of legal claims. If we use your information for direct marketing, you can object and opt out of future direct marketing messages using the unsubscribe link in such communications.
- Interpretation (disclaimed): This segment is a section heading introducing the data retention, lifecycle, and security controls section, contextualizing the definitions and obligations regarding retention periods and security measures that follow.
- Tier: All
- Location: § 4 (Rights and Choices)
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=In%20certain%20cases%20and,in%20such%20communications.%20
### data retention — risk unknown
> If we link to a site or service via our Services, you should read their data usage policies or other documentation. Our linking to another site or service doesn’t mean we endorse it or speak for that third party.
Pursuant to regulatory or legal requirements, safety, rights of others, and to enforce our rights or our terms. We may disclose personal data to governmental regulatory authorities as required by law, including for legal, tax or accounting purposes, in response to their requests for such information or to assist in investigations. We may also disclose personal data to third parties in connection with claims, disputes or litigation, when otherwise permitted or required by law, or if we determine its disclosure is necessary to protect the health and safety of you or any other person, to protect against fraud or credit risk, to enforce our legal rights or the legal rights of others, to enforce contractual commitments that you have made, or as otherwise permitted or required by applicable law.
With an individual's consent. Anthropic will otherwise disclose personal data when an individual gives us permission or directs us to disclose this information, including as a part of our Services.
You can find information on our Subprocessor List about the third parties Anthropic engages to help us process personal data provided to us where Anthropic acts as a data processor, such as with respect to personal data we receive, process, store, or host when you use Anthropic's commercial services.
- Interpretation (disclaimed): This segment grants data subjects the right to data portability, the right to deletion of personal data (with a specific 30-day back-end deletion timeline for individual conversations), and the right to correction of inaccurate data, subject to exceptions, establishing enforceable individual rights and associated retention/deletion obligations.
- Tier: All
- Location: § 3 (How We Disclose Personal Data)
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=If%20we%20link%20to,use%20Anthropic%26%23x27%3Bs%20commercial%20services.
### data retention — risk ambiguous
> Retention period The period necessary to process your request
- Interpretation (disclaimed): Vague retention language ('period necessary') provides no enforceable upper bound on how long the Korean subprocessor retains personal data, creating uncertainty about deletion timelines.
- Tier: All
- Location: Privacy Policy › “Retention period The period necessary to process your request”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=Retention%20period%20The%20period,to%20process%20your%20request
### data retention — risk unknown
> In certain cases and subject to applicable law, you have the right to port your information.
Deletion: the right to request that we delete personal data collected from you when you use our Services, subject to certain exceptions. You also are able to delete individual conversations , which will be removed immediately from your conversation history and automatically deleted from our back-end within 30 days. Learn more here .
Correction: the right to request that we correct inaccurate personal data Anthropic retains about you, subject to certain exceptions. Please note that we cannot guarantee the factual accuracy of Outputs. If Outputs contain factually inaccurate personal data relating to you, you can submit a correction request and we will make a reasonable effort to correct this information—but due to the technical complexity of our large language models, it may not always be possible for us to do so.
Objection: the right to object to processing of your personal data, including profiling conducted on grounds of public or legitimate interest. In places where such a right applies, we will no longer process the personal data in case of such objection unless we demonstrate compelling legitimate grounds for the processing which override your interests, rights, and freedoms, or for the establishment, exercise or defense of legal claims. If we use your information for direct marketing, you can object and opt out of future direct marketing messages using the unsubscribe link in such communications.
- Interpretation (disclaimed): Establishes user rights to data portability, deletion, and correction of personal data, and specifies a concrete procedure and timeline (removal from conversation history immediately, deletion from back-end within 30 days) for exercising deletion rights, constituting a data retention and deletion procedure.
- Tier: All
- Location: § 4 (Rights and Choices)
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=In%20certain%20cases%20and,in%20such%20communications.%20
### data retention — risk unknown
> Restriction: the right to restrict our processing of your personal data in certain circumstances.
Withdrawal of consent. Where Anthropic’s processing of your personal data is based on consent, you have the right to withdraw your consent. The withdrawal of consent will not affect the lawfulness of processing based on consent before its withdrawal.
Automated decision-making : Anthropic does not engage in decision making based solely on automated processing or profiling in a manner which produces a legal effect (i.e., impacts your legal rights) or significantly affects you in a similar way (e.g., significantly affects your financial circumstances or ability to access essential goods or services).
Sale & targeted Anthropic marketing of its products and services . Anthropic does not “sell” your personal data as that term is defined by applicable laws and regulations. You can opt-out of sharing your personal data for targeted advertising to promote our products and services, and we will honor global privacy controls. To learn more, click here .
Anthropic gives you access to a variety of tools to help you manage your data. You can access these in your Privacy Settings .
- Interpretation (disclaimed): This segment establishes Anthropic's obligation to retain personal data only as long as reasonably necessary for stated purposes and to destroy, delete, erase, or anonymize data when no longer required, imposing enforceable retention and deletion obligations on Anthropic and its service providers.
- Tier: All
- Location: § 4 (Rights and Choices)
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20Restriction%3A%20the%20right,your%20Privacy%20Settings%20.
### data retention — risk unknown
> Anthropic retains your personal data for as long as reasonably necessary for the purposes and criteria outlined in this Privacy Policy and explained further in our privacy center .
When the personal data collected is no longer required by us, we and our service providers will perform the necessary procedures for destroying, deleting, erasing, or converting it into an anonymous form as permitted or required under applicable laws.
- Interpretation (disclaimed): Establishes Anthropic's obligation to retain personal data only as long as reasonably necessary and to destroy, delete, erase, or anonymize data when no longer required, constituting a binding data retention and deletion obligation for both Anthropic and its service providers.
- Tier: All
- Location: § 6 (Data Retention, Data Lifecycle, and Security Controls)
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20Anthropic%20retains%20your,required%20under%20applicable%20laws.
### subprocessors data sharing — risk medium
> By providing us with personal data, you acknowledge and agree that your personal data may be transferred or disclosed to other jurisdictions for processing and storage outside of Canada, including to the United States and the countries listed on our Subprocessor List , where laws regarding the protection of personal data may be less stringent than the laws in your jurisdiction. Furthermore, we may disclose your personal data in these jurisdictions in response to legal processes or where we believe in good faith that disclosure is required or permitted by law.
- Interpretation (disclaimed): This clause creates broad consent to cross-border data transfers to jurisdictions potentially lacking equivalent privacy protections, and permits disclosure to authorities on a subjective 'good faith' standard—reducing user control over their data.
- Tier: All
- Location: Privacy Policy › “Supplemental Disclosures for Residents of Canada”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=By%20providing%20us%20with,or%20permitted%20by%20law.
### subprocessors data sharing — risk medium
> You acknowledge that Anthropic is a company based and headquartered in the United States. Any information we hold about you will be transferred to, used, processed, and stored in the United States and other countries and territories, which may not have data privacy or data protection laws equivalent to those in your country or territory.
- Interpretation (disclaimed): Transferring personal data to jurisdictions with weaker legal protections exposes users to reduced privacy rights and enforcement options. The explicit acknowledgment of this gap is notable from a risk perspective.
- Tier: All
- Location: Privacy Policy › “Supplemental Disclosures for Residents of Brazil”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=You%20acknowledge%20that%20Anthropic,your%20country%20or%20territory.
### subprocessors data sharing — risk medium
> Affiliates & corporate partners. Anthropic discloses the categories of personal data described above between and among its affiliates and related entities.
Service providers & business partners. Anthropic may disclose the categories of personal data described above with service providers and business partners for a variety of business purposes, including website and data hosting, ensuring compliance with industry standards, research, auditing, data processing, and providing you with the services.
- Interpretation (disclaimed): Broad disclosure authority to affiliates and third-party service providers/business partners with a non-exhaustive list of purposes (including 'research') creates uncertainty about who receives personal data and for what purposes.
- Tier: All
- Location: § 3 (How We Disclose Personal Data)
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=Affiliates%20%26%20corporate%20partners.,you%20with%20the%20services.
### subprocessors data sharing — risk medium
> As part of a significant corporate event. If Anthropic is involved in a merger, corporate transaction, bankruptcy, or other situation involving the transfer of business assets, Anthropic will disclose your personal data as part of these corporate transactions.
- Interpretation (disclaimed): Standard M&A data transfer clause; however, combined with the breadth of data collected (inputs, outputs, usage data), the volume and sensitivity of data transferable without user consent is notable.
- Tier: All
- Location: § 3 (How We Disclose Personal Data)
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=As%20part%20of%20a,of%20these%20corporate%20transactions.
### subprocessors data sharing — risk medium
> Standard contractual clauses. The European Commission has approved contractual clauses under Article 46 GDPR that allows companies in the EEA to transfer data outside the EEA. These (and their approved equivalent for the UK and Switzerland) are called standard contractual clauses. We rely on standard contractual clauses to transfer information as described in “Collection of Personal Data” to certain affiliates and third parties in countries without an adequacy decision.
- Interpretation (disclaimed): SCCs are a recognized GDPR Art. 46 transfer mechanism but require a Transfer Impact Assessment post-Schrems II. The policy does not specify which countries or sub-processors receive the data, limiting user ability to assess risk.
- Tier: All
- Location: § 5 (Data Transfers)
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=Standard%20contractual%20clauses.%20The,without%20an%20adequacy%20decision.
### subprocessors data sharing — risk low
> You can find information on our Subprocessor List about the third parties Anthropic engages to help us process personal data provided to us where Anthropic acts as a data processor, such as with respect to personal data we receive, process, store, or host when you use Anthropic's commercial services.
- Interpretation (disclaimed): The policy references an external subprocessor list rather than enumerating subprocessors. While common practice, it limits users' ability to assess data-sharing scope from this document alone.
- Tier: All
- Location: § 3 (How We Disclose Personal Data)
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=You%20can%20find%20information,use%20Anthropic%26%23x27%3Bs%20commercial%20services.
### subprocessors data sharing — risk low
> Trustees and Contacts Bae, Kim & Lee LLC (02-3404-0001)
Entrusted Data Name, ID, phone number, email, address, and other information that you may provide to the domestic representative
Purpose Assisting with the domestic representative duties
Recipient Location South Korea
Retention period The period necessary to process your request
Times and methods of transfer Telephone, text, or email
- Interpretation (disclaimed): Korean law (PIPA) requires disclosure of domestic data processing trustees. The clause is a compliance disclosure rather than a risk-generating provision, and the data shared is limited to contact/representative-related data.
- Tier: All
- Location: Privacy Policy › “Trustees and Contacts Bae, Kim & Lee LLC (02-3404-0001)”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=Trustees%20and%20Contacts%20Bae%2C,Telephone%2C%20text%2C%20or%20email
### subprocessors data sharing — risk unknown
> If you live in the European Economic Area (EEA), UK or Switzerland (the “European Region”), the data controller responsible for your personal data is Anthropic Ireland, Limited. If you live outside the European Region, the data controller responsible for your personal data is Anthropic PBC.
If you have any questions about this Privacy Policy, or have any questions, complaints or requests regarding your personal data, you can contact us as described below:
Anthropic PBC with a registered address at 548 Market St, PMB 90375, San Francisco, CA 94104 (United States).
Anthropic Ireland, Limited with a registered address at 6th Floor, South Bank House, Barrow Street. Dublin 4, D04 TR29 (Ireland).
You can email us at privacy@anthropic.com and contact our Data Protection Officer at dpo@anthropic.com .
Please note that under many countries' laws, you have the right to lodge a complaint with the supervisory authority in the place in which you live or work. A full list of EU supervisory authorities’ contact details is available here . If you live or work in the UK, you have the right to lodge a complaint with the UK Information Commissioner’s Office . If you live in Brazil, you have the right to lodge a complaint with the Brazilian Data Protection Authority (ANPD) .If you live in Australia, you have the right to lodge a complaint with the Office of the Australian Information Commissioner .
- Interpretation (disclaimed): This segment defines the data controllers responsible for processing personal data depending on the user's geographic region (EEA/UK/Switzerland vs. outside), establishing the legal identity of the responsible entity and providing contact details for privacy inquiries, which is a foundational definition for data processing accountability obligations.
- Tier: All
- Location: § 9 (Contact Information)
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20If%20you%20live,Australian%20Information%20Commissioner%20.
### subprocessors data sharing — risk unknown
> Email: [anthropicprivacy@bkl.co.kr]
Data Processors:
- Interpretation (disclaimed): Introduces the category 'Data Processors' for Korean residents, defining the class of third-party entities that process personal data on Anthropic's behalf and initiating required disclosures under Korean data protection law.
- Tier: All
- Location: Privacy Policy › “Telephone: [+82-2-6252-2080]”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20Email%3A%20%5Banthropicprivacy%40bkl.co.kr%5D%0A%20Data%20Processors%3A
### subprocessors data sharing — risk unknown
> If we link to a site or service via our Services, you should read their data usage policies or other documentation. Our linking to another site or service doesn’t mean we endorse it or speak for that third party.
Pursuant to regulatory or legal requirements, safety, rights of others, and to enforce our rights or our terms. We may disclose personal data to governmental regulatory authorities as required by law, including for legal, tax or accounting purposes, in response to their requests for such information or to assist in investigations. We may also disclose personal data to third parties in connection with claims, disputes or litigation, when otherwise permitted or required by law, or if we determine its disclosure is necessary to protect the health and safety of you or any other person, to protect against fraud or credit risk, to enforce our legal rights or the legal rights of others, to enforce contractual commitments that you have made, or as otherwise permitted or required by applicable law.
With an individual's consent. Anthropic will otherwise disclose personal data when an individual gives us permission or directs us to disclose this information, including as a part of our Services.
You can find information on our Subprocessor List about the third parties Anthropic engages to help us process personal data provided to us where Anthropic acts as a data processor, such as with respect to personal data we receive, process, store, or host when you use Anthropic's commercial services.
- Interpretation (disclaimed): Discloses that personal data may be shared with governmental authorities pursuant to legal requirements, safety concerns, or enforcement of rights, establishing legal compulsion and rights-enforcement as legitimate bases for third-party disclosure, including limiting Anthropic's liability for third-party linked sites.
- Tier: All
- Location: § 3 (How We Disclose Personal Data)
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=If%20we%20link%20to,use%20Anthropic%26%23x27%3Bs%20commercial%20services.
### subprocessors data sharing — risk unknown
> Email: [anthropicprivacy@bkl.co.kr]
Data Processors:
- Interpretation (disclaimed): Introduces 'Data Processors' as a section label for Korea-specific disclosure of subprocessors or data processors, beginning the enumeration of entities that process personal data on Anthropic's behalf as required under Korean data protection law.
- Tier: All
- Location: Privacy Policy › “Telephone: [+82-2-6252-2080]”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20Email%3A%20%5Banthropicprivacy%40bkl.co.kr%5D%0A%20Data%20Processors%3A
### subprocessors data sharing — risk unknown
> Furthermore, we may disclose your personal data in these jurisdictions in response to legal processes or where we believe in good faith that disclosure is required or permitted by law.
Contact. If you have any questions or comments about our processing of your personal data, or to exercise your rights as outlined in Section 4. (“Rights and Choices”), please contact us at privacy@anthropic.com.
- Interpretation (disclaimed): Permits Anthropic to disclose Canadian residents' personal data to third jurisdictions in response to legal processes or where disclosure is required or permitted by law, and provides a contact mechanism for exercising privacy rights.
- Tier: All
- Location: Privacy Policy › “Supplemental Disclosures for Residents of Canada”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=Furthermore%2C%20we%20may%20disclose,contact%20us%20at%20privacy%40anthropic.com.
### subprocessors data sharing — risk unknown
> International Data Transfers. You acknowledge that Anthropic is a company based and headquartered in the United States. Any information we hold about you will be transferred to, used, processed, and stored in the United States and other countries and territories, which may not have data privacy or data protection laws equivalent to those in your country or territory. For the proper operation of the Services, Anthropic needs to carry out international transfers of personal data. In the case of Brazil, we will rely on standard contractual clauses (SCCs) for our data transfers where required and in instances where they are not covered by an adequacy decision. These SCCs have been approved by the Brazilian Data Protection Authority (ANPD), which is the "competent supervisory authority" for these transfers, as governed by Brazilian Data Protection Laws. You can view the SCCs adopted by the ANPD here .
- Interpretation (disclaimed): Discloses that personal data of Brazilian residents will be transferred to and stored in the United States and other countries, and obligates Anthropic to rely on Standard Contractual Clauses (SCCs) for international data transfers where required under Brazilian law, establishing a transfer mechanism obligation.
- Tier: All
- Location: Privacy Policy › “Supplemental Disclosures for Residents of Brazil”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20International%20Data%20Transfers.,the%20ANPD%20here%20.
### subprocessors data sharing — risk unknown
> We use your personal data for the following purposes:
To provide, maintain and facilitate any products and services offered to you with respect to your Anthropic account, which are governed by our Terms of Service;
To provide, maintain and facilitate optional services and features that enhance platform functionality and user experience;
To communicate with you, including to send you information about our Services and events;
To create and administer your Anthropic account;
To facilitate payments for products and services provided by Anthropic;
To prevent and investigate fraud, abuse, and violations of our Usage Policy , unlawful or criminal activity, unauthorized access to or use of personal data or Anthropic systems and networks, to protect our rights and the rights of others, and to meet legal, governmental and institutional policy obligations;
To investigate and resolve disputes;
To investigate and resolve security issues;
To debug and to identify and repair errors that impair existing functionality
To improve the Services and conduct research, including training our models; and
To enforce our Terms of Service and similar terms and agreements, including our Usage Policy .
We may use your Inputs and Outputs to train our models and improve our Services, unless you opt out through your account settings. Even if you opt-out, we will use Inputs and Outputs for model improvement when: (1) your conversations are flagged for safety review to improve our ability to detect harmful content, enforce our policies, or advance AI safety research, or (2) you've explicitly reported the materials to us (for example via our feedback mechanisms).
Please see Section 10 below for details of our legal bases for processing your personal data.
- Interpretation (disclaimed): This segment discloses the categories of third parties to whom Anthropic discloses personal data, including affiliates, service providers, and business partners, and the purposes for such disclosures, establishing Anthropic's data sharing framework and obligations regarding third-party disclosures.
- Tier: All
- Location: § 2
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20We%20use%20your,processing%20your%20personal%20data.
### subprocessors data sharing — risk unknown
> Anthropic will disclose personal data to the following categories of third parties for the purposes explained in this Policy:
Affiliates & corporate partners. Anthropic discloses the categories of personal data described above between and among its affiliates and related entities.
Service providers & business partners. Anthropic may disclose the categories of personal data described above with service providers and business partners for a variety of business purposes, including website and data hosting, ensuring compliance with industry standards, research, auditing, data processing, and providing you with the services.
Anthropic may also disclose personal data in the following circumstances:
As part of a significant corporate event. If Anthropic is involved in a merger, corporate transaction, bankruptcy, or other situation involving the transfer of business assets, Anthropic will disclose your personal data as part of these corporate transactions.
Third-Party Websites and Services: Our Services may involve integrations with, or may direct you to, websites, apps, and services managed by third parties. By interacting with these third parties, you are providing information directly to the third party and not Anthropic and subject to the third party’s privacy policy.If you access third-party services, such as social media sites or other sites linked through the Services (e.g., if you follow a link to our Twitter account), these third-party services will be able to collect personal data about you, including information about your activity on the Services.
- Interpretation (disclaimed): Identifies categories of third parties to whom Anthropic discloses personal data, including affiliates and service providers/business partners, and specifies the business purposes for such disclosures, establishing the legal framework for third-party data sharing and subprocessor relationships.
- Tier: All
- Location: § 3 (How We Disclose Personal Data)
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20Anthropic%20will%20disclose,on%20the%20Services.%20
### subprocessors data sharing — risk unknown
> International Data Transfers. You acknowledge that Anthropic is a company based and headquartered in the United States. Any information we hold about you will be transferred to, used, processed, and stored in the United States and other countries and territories, which may not have data privacy or data protection laws equivalent to those in your country or territory. For the proper operation of the Services, Anthropic needs to carry out international transfers of personal data. In the case of Brazil, we will rely on standard contractual clauses (SCCs) for our data transfers where required and in instances where they are not covered by an adequacy decision. These SCCs have been approved by the Brazilian Data Protection Authority (ANPD), which is the "competent supervisory authority" for these transfers, as governed by Brazilian Data Protection Laws. You can view the SCCs adopted by the ANPD here .
- Interpretation (disclaimed): Discloses that personal data of Brazilian residents will be transferred to and processed in the United States and other countries, acknowledges potential lack of equivalent data protection laws, and specifies reliance on standard contractual clauses (SCCs) as the transfer mechanism where required.
- Tier: All
- Location: Privacy Policy › “Supplemental Disclosures for Residents of Brazil”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20International%20Data%20Transfers.,the%20ANPD%20here%20.
### subprocessors data sharing — risk unknown
> Furthermore, we may disclose your personal data in these jurisdictions in response to legal processes or where we believe in good faith that disclosure is required or permitted by law.
Contact. If you have any questions or comments about our processing of your personal data, or to exercise your rights as outlined in Section 4. (“Rights and Choices”), please contact us at privacy@anthropic.com.
- Interpretation (disclaimed): Grants Anthropic permission to disclose personal data of Canadian residents to foreign jurisdictions in response to legal processes or where disclosure is required or permitted by law, and provides a contact mechanism for exercising rights, establishing both a disclosure permission and a procedural right.
- Tier: All
- Location: Privacy Policy › “Supplemental Disclosures for Residents of Canada”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=Furthermore%2C%20we%20may%20disclose,contact%20us%20at%20privacy%40anthropic.com.
### audit rights dpa residency — risk medium
> When you access our website or Services, your personal data may be transferred to our servers in the US, or to other countries outside the European Economic Area ( “EEA” ) and the UK. This may be a direct provision of your personal data to us, or a transfer that we or a third party make.
- Interpretation (disclaimed): EEA/UK users have no stated option to keep data within their jurisdiction. US storage subjects data to US government access laws (e.g., CLOUD Act, FISA 702), which is a risk factor under GDPR adequacy assessments.
- Tier: All
- Location: § 5 (Data Transfers)
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=When%20you%20access%20our,a%20third%20party%20make.
### audit rights dpa residency — risk low
> In the case of Brazil, we will rely on standard contractual clauses (SCCs) for our data transfers where required and in instances where they are not covered by an adequacy decision. These SCCs have been approved by the Brazilian Data Protection Authority (ANPD), which is the "competent supervisory authority" for these transfers, as governed by Brazilian Data Protection Laws.
- Interpretation (disclaimed): Use of SCCs approved by the Brazilian data protection authority (ANPD) is a standard LGPD compliance mechanism for international transfers; this is a positive safeguard for Brazilian residents.
- Tier: All
- Location: Privacy Policy › “Supplemental Disclosures for Residents of Brazil”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=In%20the%20case%20of,Brazilian%20Data%20Protection%20Laws.
### audit rights dpa residency — risk unknown
> Depending on where you live and the laws that apply in your country of residence, you may enjoy certain rights regarding your personal data, as described further below. However, please be aware that these rights are limited, and that the process by which we may need to action your requests regarding our training dataset are complex. We may also decline a request if we have a lawful reason for doing so. That said, we strive to prioritize the protection of personal data, and comply with all applicable privacy laws.
To exercise your rights, you or an authorized agent may submit a request by emailing us at privacy@anthropic.com . After we receive your request, we may verify it by requesting information sufficient to confirm your identity. You may also have the right to appeal requests that we deny by emailing privacy@anthropic.com . Anthropic will not discriminate based on the exercising of privacy rights you may have. Set out below is a summary of the rights which you may enjoy, depending on the laws that apply in your country of residence.
Right to know: the right to know what personal data Anthropic processes about you, including the categories of personal data, the categories of sources from which it is collected, the business or commercial purposes for collection, and the categories of third parties to whom we disclose it.
Access & data portability: the right to request a copy of the personal data Anthropic processes about you, subject to certain exceptions and conditions.
- Interpretation (disclaimed): This segment describes the mechanisms by which Anthropic ensures adequate protection for cross-border personal data transfers outside the EEA and UK, including adequacy decisions under GDPR Article 45, establishing procedural and compliance obligations for international data transfers.
- Tier: All
- Location: § 4 (Rights and Choices)
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20Depending%20on%20where,exceptions%20and%20conditions.%20
### audit rights dpa residency — risk unknown
> You have the right to request the anonymisation, blocking or erasure of data that is unnecessary, excessive or processed in non-compliance with the provisions of the law.
Portability of personal data to a third party. You have the right to request portability of your data to a third-party, as long as this does not infringe on our trade secrets.
Information of public and private entities with which we shared data. You have the right to request information of public and private entities with which we have shared your data.
Information about the possibility to refuse to provide consent and the respective consequences, when applicable.
Withdrawal of your consent. You have the right to withdraw your consent. This procedure will be carried out free of charge.
Request a review of decisions made solely based on automated processing of personal data.
Please keep in mind that these rights are not absolute and may not apply in certain circumstances. For example, in certain cases we may continue to process and retain data regardless of your request for deletion, objection, blocking or anonymisation, in order to comply with legal, contractual and regulatory obligations, safeguard and exercise rights, including in judicial, administrative and arbitration proceedings and in other cases provided for by law.
- Interpretation (disclaimed): Grants Brazilian residents specific LGPD rights including anonymisation, blocking or erasure of unnecessary or excessive data, data portability to third parties (subject to trade secret limits), information about entities with whom data was shared, and information about the right to refuse consent, establishing enforceable data subject rights.
- Tier: All
- Location: Privacy Policy › “Supplemental Disclosures for Residents of Brazil”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=You%20have%20the%20right,provided%20for%20by%20law.
### audit rights dpa residency — risk ambiguous
> You can find information on our Subprocessor List about the third parties Anthropic engages to help us process personal data provided to us where Anthropic acts as a data processor, such as with respect to personal data we receive, process, store, or host when you use Anthropic's commercial services.
- Interpretation (disclaimed): The policy is silent on user or customer audit rights, formal DPA arrangements, and data residency controls. This is a gap relevant especially to enterprise customers and regulated-industry users.
- Tier: All
- Location: § 3 (How We Disclose Personal Data)
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=You%20can%20find%20information,use%20Anthropic%26%23x27%3Bs%20commercial%20services.
### audit rights dpa residency — risk unknown
> These supplemental disclosures contain additional information relevant to residents of Canada. This content should be read in conjunction with the rest of our Privacy Policy. In case of conflict between our Privacy Policy and these supplemental disclosures, the supplemental disclosures shall prevail in relation to residents of Canada.
Consent. By expressly consenting to this Privacy Policy, you confirm you have read, understand, and consent to the collection, use, processing, and disclosure of your personal data in accordance with this Privacy Policy and understand that, in jurisdictions where it is available, Anthropic also relies on other lawful bases for the foregoing as more fully set out in this policy. We will only collect, use and disclose your personal data with your consent, unless otherwise permitted or required by law. Your consent may be given expressly or implied, depending on the circumstances and the sensitivity of the information involved. You may withdraw consent at any time, subject to legal or contractual restrictions and reasonable notice.
Cross-jurisdictional Transfers. By providing us with personal data, you acknowledge and agree that your personal data may be transferred or disclosed to other jurisdictions for processing and storage outside of Canada, including to the United States and the countries listed on our Subprocessor List , where laws regarding the protection of personal data may be less stringent than the laws in your jurisdiction.
- Interpretation (disclaimed): Requires Canadian residents to expressly consent to the collection, use, processing, and disclosure of their personal data in accordance with the Privacy Policy, establishing a consent obligation and noting that the supplemental disclosures prevail over the main policy in case of conflict.
- Tier: All
- Location: Privacy Policy › “Supplemental Disclosures for Residents of Canada”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20These%20supplemental%20disclosures,in%20your%20jurisdiction.%20
### audit rights dpa residency — risk unknown
> When you access our website or Services, your personal data may be transferred to our servers in the US, or to other countries outside the European Economic Area ( “EEA” ) and the UK. This may be a direct provision of your personal data to us, or a transfer that we or a third party make.
Where information is transferred outside the EEA or the UK, we ensure it benefits from an adequate level of data protection by relying on:
Adequacy decisions. These are decisions from the European Commission under Article 45 GDPR (or equivalent decisions under other laws) where they recognise that a country outside of the EEA offers an adequate level of data protection. We transfer your information as described in “Collection of Personal Data” to some countries with adequacy decisions, such as the countries listed here ; or
Standard contractual clauses. The European Commission has approved contractual clauses under Article 46 GDPR that allows companies in the EEA to transfer data outside the EEA. These (and their approved equivalent for the UK and Switzerland) are called standard contractual clauses. We rely on standard contractual clauses to transfer information as described in “Collection of Personal Data” to certain affiliates and third parties in countries without an adequacy decision.
In certain situations, we rely on derogations provided for under applicable data protection law to transfer information to a third country.
- Interpretation (disclaimed): Discloses that personal data may be transferred to the US or countries outside the EEA/UK and identifies the legal mechanisms (adequacy decisions under Article 45 GDPR) relied upon to ensure adequate data protection for international transfers, constituting a compliance obligation under data protection law.
- Tier: All
- Location: § 5 (Data Transfers)
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20When%20you%20access,to%20a%20third%20country.
### audit rights dpa residency — risk unknown
> The domestic representative of Anthropic PBC for data protection and related regulatory purposes under Article 31-2 of the Personal Information Protection Act and Article 32-5 of the Act on Promotion of Information and Communications Network Utilization and Data Protection, Etc. in the Republic of Korea is as follows:
Entity Name and Representative: Anthropic Korea, Limited (Representative Patrick Azubike Ekeruo)
Registered Address: (Yeoksam-dong), 41F, 152 Teheran-ro, Gangnam-gu, Seoul, South Korea
- Interpretation (disclaimed): Identifies Anthropic Korea, Limited as the mandatory domestic representative under Article 31-2 of Korea's Personal Information Protection Act and Article 32-5 of the Network Act, disclosing the entity name, representative, and registered address to satisfy Korean legal compliance obligations.
- Tier: All
- Location: Privacy Policy › “Domestic Representative in the Republic of Korea”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20The%20domestic%20representative,Gangnam-gu%2C%20Seoul%2C%20South%20Korea
### audit rights dpa residency — risk unknown
> These supplemental disclosures contain additional information relevant to residents of Brazil. This content should be read in conjunction with the rest of our Privacy Policy. In case of conflict between our Privacy Policy and these supplemental disclosures, the supplemental disclosures shall prevail in relation to residents of Brazil.
Legal Bases. Depending on the specific purpose of the processing, we may rely on different grounds than those listed under section 2, where permitted by and in accordance with the Brazilian General Data Protection Law (LGPD). For example, we may rely on the "exercise of legal rights" basis to process personal data associated with customer complaints and to enforce our Terms of Service and similar terms and agreements, including our Usage Policy.
Data Subject's Rights. LGPD grants certain rights regarding your personal data, which differ from the ones listed under section 4. We will respond to your requests to exercise your rights below in accordance with applicable law:
Confirmation of whether your data is being processed. You have the right to receive a confirmation on whether Anthropic processes your data.Access to your data. You have the right to know what personal data Anthropic processes about you.
Correction of incomplete, inaccurate or outdated data. You have the right to request the correction of your data that is incomplete, inaccurate, or outdated.
Anonymization, blocking or erasure of data.
- Interpretation (disclaimed): Establishes that processing of Brazilian residents' data will rely on legal bases permitted under the LGPD, which may differ from those stated in the main policy, creating a legal obligation to comply with Brazilian data protection law and prevail over conflicting policy terms.
- Tier: All
- Location: Privacy Policy › “Supplemental Disclosures for Residents of Brazil”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20These%20supplemental%20disclosures,erasure%20of%20data.%20
### audit rights dpa residency — risk unknown
> If you are located in Canada, Brazil, or the Republic of Korea, please read the relevant Regional Supplemental Disclosure which applies to you.
If you are located in Washington or a state with similar consumer health data laws, please read our Consumer Health Data Privacy Policy which applies to you if you integrate third party health applications with Claude.
- Interpretation (disclaimed): This segment incorporates by reference Regional Supplemental Disclosures for Canada, Brazil, and South Korea, as well as a Consumer Health Data Privacy Policy, directing affected users to additional legally operative supplemental documents that impose jurisdiction-specific obligations.
- Tier: All
- Location: Privacy Policy › “Privacy Policy \ Anthropic”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20If%20you%20are,health%20applications%20with%20Claude.
### audit rights dpa residency — risk unknown
> The domestic representative of Anthropic PBC for data protection and related regulatory purposes under Article 31-2 of the Personal Information Protection Act and Article 32-5 of the Act on Promotion of Information and Communications Network Utilization and Data Protection, Etc. in the Republic of Korea is as follows:
Entity Name and Representative: Anthropic Korea, Limited (Representative Patrick Azubike Ekeruo)
Registered Address: (Yeoksam-dong), 41F, 152 Teheran-ro, Gangnam-gu, Seoul, South Korea
- Interpretation (disclaimed): Identifies Anthropic Korea, Limited (representative Patrick Azubike Ekeruo) as the designated domestic representative under Article 31-2 of the Personal Information Protection Act and Article 32-5 of the Act on Promotion of Information and Communications Network Utilization, fulfilling a mandatory legal obligation under Korean data protection law.
- Tier: All
- Location: Privacy Policy › “Domestic Representative in the Republic of Korea”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20The%20domestic%20representative,Gangnam-gu%2C%20Seoul%2C%20South%20Korea
### audit rights dpa residency — risk unknown
> If you are located in Canada, Brazil, or the Republic of Korea, please read the relevant Regional Supplemental Disclosure which applies to you.
If you are located in Washington or a state with similar consumer health data laws, please read our Consumer Health Data Privacy Policy which applies to you if you integrate third party health applications with Claude.
- Interpretation (disclaimed): Incorporates by reference Regional Supplemental Disclosures for Canada, Brazil, and Republic of Korea, and the Consumer Health Data Privacy Policy for Washington-state users, making those external documents operative parts of the privacy framework for applicable individuals.
- Tier: All
- Location: Privacy Policy › “Privacy Policy \ Anthropic”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20If%20you%20are,health%20applications%20with%20Claude.
### audit rights dpa residency — risk unknown
> You have the right to request the anonymisation, blocking or erasure of data that is unnecessary, excessive or processed in non-compliance with the provisions of the law.
Portability of personal data to a third party. You have the right to request portability of your data to a third-party, as long as this does not infringe on our trade secrets.
Information of public and private entities with which we shared data. You have the right to request information of public and private entities with which we have shared your data.
Information about the possibility to refuse to provide consent and the respective consequences, when applicable.
Withdrawal of your consent. You have the right to withdraw your consent. This procedure will be carried out free of charge.
Request a review of decisions made solely based on automated processing of personal data.
Please keep in mind that these rights are not absolute and may not apply in certain circumstances. For example, in certain cases we may continue to process and retain data regardless of your request for deletion, objection, blocking or anonymisation, in order to comply with legal, contractual and regulatory obligations, safeguard and exercise rights, including in judicial, administrative and arbitration proceedings and in other cases provided for by law.
- Interpretation (disclaimed): Grants Brazilian residents the right to request anonymisation, blocking, or erasure of unnecessary or excessive data; portability to third parties subject to trade secret protection; and information about entities with whom their data has been shared, as well as information about consent refusal consequences.
- Tier: All
- Location: Privacy Policy › “Supplemental Disclosures for Residents of Brazil”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=You%20have%20the%20right,provided%20for%20by%20law.
### indemnity liability — risk high
> You agree that (a) no adequate remedy exists at law if you breach Section 3 (Use of Our Services); (b) it would be difficult to determine the damages resulting from such breach, and any such breach would cause irreparable harm; and (c) a grant of injunctive relief provides the best remedy for any such breach. You waive any opposition to such injunctive relief, as well as any demand that we prove actual damage or post a bond or other security in connection with such injunctive relief.
- Interpretation (disclaimed): This clause is a pre-agreed stipulation for injunctive relief. By accepting these Terms, users concede irreparable harm and waive procedural safeguards (proof of actual damage, bond requirement) that courts would otherwise impose before granting an injunction. This materially weakens user defenses in any enforcement action related to acceptable use.
- Tier: All
- Location: § 13 (In case of disputes)
- Source: https://www.anthropic.com/legal/consumer-terms
- Snapshot SHA-256: `302af768945b9867a7fa2a9480b1fdc80d85c227ffaf671e19ee2025428d0705`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/consumer-terms#:~:text=You%20agree%20that%20(a),with%20such%20injunctive%20relief.
### indemnity liability — risk unknown
> Our team works hard to provide great services, and we’re continuously working on improvements. However, there are certain aspects we can’t guarantee. We are using ALL CAPS to explain this, to make sure that you see it.
YOUR USE OF THE SERVICES, MATERIALS, AND ACTIONS IS SOLELY AT YOUR OWN RISK. THE SERVICES, OUTPUTS, AND ACTIONS ARE PROVIDED ON AN “AS IS” AND “AS AVAILABLE” BASIS AND, TO THE FULLEST EXTENT PERMISSIBLE UNDER APPLICABLE LAW, ARE PROVIDED WITHOUT WARRANTIES OF ANY KIND, WHETHER EXPRESS, IMPLIED, OR STATUTORY. WE AND OUR PROVIDERS EXPRESSLY DISCLAIM ANY AND ALL WARRANTIES OF FITNESS FOR A PARTICULAR PURPOSE, TITLE, MERCHANTABILITY, ACCURACY, AVAILABILITY, RELIABILITY, SECURITY, PRIVACY, COMPATIBILITY, NON-INFRINGEMENT, AND ANY WARRANTY IMPLIED BY COURSE OF DEALING, COURSE OF PERFORMANCE, OR TRADE USAGE.
TO THE FULLEST EXTENT PERMISSIBLE UNDER APPLICABLE LAW, IN NO EVENT WILL WE, OUR PROVIDERS, OR OUR OR THEIR RESPECTIVE AFFILIATES, INVESTORS, DIRECTORS, OFFICERS, EMPLOYEES, AGENTS, SUCCESSORS OR ASSIGNS (COLLECTIVELY, THE “ANTHROPIC PARTIES”), BE LIABLE FOR ANY DIRECT, INDIRECT, PUNITIVE, INCIDENTAL, SPECIAL, CONSEQUENTIAL, EXEMPLARY, OR OTHER DAMAGES ARISING OUT OF OR IN ANY WAY RELATED TO THE SERVICES, THE MATERIALS, THE ACTIONS, OR THESE TERMS, WHETHER BASED IN CONTRACT, TORT (INCLUDING NEGLIGENCE), STRICT LIABILITY, OR OTHER THEORY, EVEN IF ANY ANTHROPIC PARTIES HAVE BEEN ADVISED OF THE POSSIBILITY OF DAMAGES, AND EVEN IF THE DAMAGES ARE FORESEEABLE.
- Interpretation (disclaimed): This segment disclaims all warranties—express, implied, and statutory—with respect to the Services, Outputs, and Actions, placing all risk of use on the user and explicitly disclaiming fitness for purpose warranties on behalf of Anthropic and its Providers.
- Tier: All
- Location: § 11 (Disclaimer of warranties, limitations of liability, and indemnity)
- Source: https://www.anthropic.com/legal/consumer-terms
- Snapshot SHA-256: `302af768945b9867a7fa2a9480b1fdc80d85c227ffaf671e19ee2025428d0705`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/consumer-terms#:~:text=%20Our%20team%20works,DAMAGES%20ARE%20FORESEEABLE.%20
### indemnity liability — risk unknown
> TO THE FULLEST EXTENT PERMISSIBLE UNDER APPLICABLE LAW, THE ANTHROPIC PARTIES’ TOTAL AGGREGATE LIABILITY TO YOU FOR ALL DAMAGES, LOSSES AND CAUSES OF ACTION ARISING OUT OF OR IN ANY WAY RELATED TO THE SERVICES, THE MATERIALS, THE ACTIONS, OR THESE TERMS, WHETHER IN CONTRACT, TORT (INCLUDING NEGLIGENCE) OR OTHERWISE, WILL NOT EXCEED THE GREATER OF THE AMOUNT YOU PAID TO US FOR ACCESS TO OR USE OF THE SERVICES (IF ANY) IN THE SIX MONTHS PRECEDING THE DATE SUCH DAMAGES, LOSSES, AND CAUSES OF ACTION FIRST AROSE, AND $100. THE FOREGOING LIMITATIONS ARE ESSENTIAL TO THESE TERMS, AND WE WOULD NOT OFFER THE SERVICES TO YOU UNDER THESE TERMS WITHOUT THESE LIMITATIONS.
YOU AGREE TO INDEMNIFY AND HOLD HARMLESS THE ANTHROPIC PARTIES FROM AND AGAINST ANY AND ALL LIABILITIES, CLAIMS, DAMAGES, EXPENSES (INCLUDING REASONABLE ATTORNEYS’ FEES AND COSTS), AND OTHER LOSSES ARISING OUT OF OR RELATED TO YOUR BREACH OR ALLEGED BREACH OF THESE TERMS; YOUR ACCESS TO, USE OF, OR ALLEGED USE OF THE SERVICES, THE MATERIALS, OR THE ACTIONS; YOUR FEEDBACK; ANY PRODUCTS OR SERVICES THAT YOU DEVELOP, OFFER, OR OTHERWISE MAKE AVAILABLE USING OR OTHERWISE IN CONNECTION WITH THE SERVICES; YOUR VIOLATION OF APPLICABLE LAW OR ANY THIRD-PARTY RIGHT; AND ANY ACTUAL OR ALLEGED FRAUD, INTENTIONAL MISCONDUCT, GROSS NEGLIGENCE, OR CRIMINAL ACTS COMMITTED BY YOU OR YOUR EMPLOYEES OR AGENTS. WE RESERVE THE RIGHT TO ENGAGE SEPARATE COUNSEL AND PARTICIPATE IN OR ASSUME THE EXCLUSIVE DEFENSE AND CONTROL OF ANY MATTER OTHERWISE SUBJECT TO INDEMNIFICATION BY YOU HEREUNDER, IN WHICH CASE YOU AGREE TO COOPERATE WITH US AND SUCH SEPARATE COUNSEL AS WE REASONABLY REQUEST.
- Interpretation (disclaimed): This segment caps Anthropic's aggregate liability to the greater of fees paid in the preceding six months or $100, covering all causes of action related to the Services, Materials, Actions, or Terms, constituting a material limitation of liability essential to the contract.
- Tier: All
- Location: § 11 (Disclaimer of warranties, limitations of liability, and indemnity)
- Source: https://www.anthropic.com/legal/consumer-terms
- Snapshot SHA-256: `302af768945b9867a7fa2a9480b1fdc80d85c227ffaf671e19ee2025428d0705`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/consumer-terms#:~:text=%20TO%20THE%20FULLEST,WE%20REASONABLY%20REQUEST.%20
### indemnity liability — risk unknown
> THE LAWS OF SOME JURISDICTIONS DO NOT ALLOW THE DISCLAIMER OF IMPLIED WARRANTIES OR CERTAIN TYPES OF DAMAGES, SO SOME OR ALL OF THE DISCLAIMERS AND LIMITATIONS OF LIABILITY IN THESE TERMS MAY NOT APPLY TO YOU.
OUR PROVIDERS ARE INTENDED THIRD PARTY BENEFICIARIES OF THE WARRANTY DISCLAIMERS AND LIMITATIONS OF LIABILITY CONTAINED IN THIS SECTION 11.
- Interpretation (disclaimed): This segment creates a jurisdictional exception to the warranty disclaimers and liability limitations where local law prohibits them, and designates Providers as intended third-party beneficiaries of the disclaimer and limitation provisions, qualifying the scope of Section 11's restrictions.
- Tier: All
- Location: § 11 (Disclaimer of warranties, limitations of liability, and indemnity)
- Source: https://www.anthropic.com/legal/consumer-terms
- Snapshot SHA-256: `302af768945b9867a7fa2a9480b1fdc80d85c227ffaf671e19ee2025428d0705`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/consumer-terms#:~:text=%20THE%20LAWS%20OF,IN%20THIS%20SECTION%2011.
### indemnity liability — risk unknown
> Our Services may use or be used in connection with third-party content (" Third-Party Content "), services, or integrations. We do not control or accept responsibility for any loss or damage that may arise from your use of any Third-Party Content, services, and integrations, for which we make no representations or warranties. Your use of any Third-Party Content, services, and integrations is at your own risk and subject to any terms, conditions, or policies (including privacy policies) applicable to such third-party content, services, and integrations.
- Interpretation (disclaimed): This segment disclaims Anthropic's responsibility for third-party content, services, and integrations, places risk of use on the user, and subjects third-party use to external terms and privacy policies, functioning as a liability disclaimer limiting Anthropic's exposure from third-party integrations.
- Tier: All
- Location: § 7 (Third-party services and links)
- Source: https://www.anthropic.com/legal/consumer-terms
- Snapshot SHA-256: `302af768945b9867a7fa2a9480b1fdc80d85c227ffaf671e19ee2025428d0705`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/consumer-terms#:~:text=%20Our%20Services%20may,content%2C%20services%2C%20and%20integrations.
### governing law disputes — risk medium
> Our Terms will be governed by, and construed and interpreted in accordance with, the laws of the State of California without giving effect to conflict of law principles. You and Anthropic agree that any disputes arising out of or relating to these Terms will be resolved exclusively in the state or federal courts located in San Francisco, California, and you and Anthropic submit to the personal and exclusive jurisdiction of those courts. By accessing our Services, you waive any claims that may arise under the laws of other jurisdictions.
- Interpretation (disclaimed): This clause mandates California law and exclusive venue in San Francisco for all disputes, with an express waiver of other jurisdictional claims. Non-US users or users in jurisdictions with mandatory consumer-protection laws may find this clause unenforceable or disadvantageous, as it forces them to litigate far from home and potentially forfeits local law protections.
- Tier: All
- Location: § 13 (In case of disputes)
- Source: https://www.anthropic.com/legal/consumer-terms
- Snapshot SHA-256: `302af768945b9867a7fa2a9480b1fdc80d85c227ffaf671e19ee2025428d0705`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/consumer-terms#:~:text=Our%20Terms%20will%20be,laws%20of%20other%20jurisdictions.
### governing law disputes — risk unknown
> Equitable relief. You agree that (a) no adequate remedy exists at law if you breach Section 3 (Use of Our Services); (b) it would be difficult to determine the damages resulting from such breach, and any such breach would cause irreparable harm; and (c) a grant of injunctive relief provides the best remedy for any such breach. You waive any opposition to such injunctive relief, as well as any demand that we prove actual damage or post a bond or other security in connection with such injunctive relief.
Governing law and exclusive jurisdiction. Our Terms will be governed by, and construed and interpreted in accordance with, the laws of the State of California without giving effect to conflict of law principles. You and Anthropic agree that any disputes arising out of or relating to these Terms will be resolved exclusively in the state or federal courts located in San Francisco, California, and you and Anthropic submit to the personal and exclusive jurisdiction of those courts. By accessing our Services, you waive any claims that may arise under the laws of other jurisdictions.
- Interpretation (disclaimed): This segment establishes the platform's right to seek equitable/injunctive relief for breaches of the use-of-services section without needing to prove actual damages or post a bond, and includes a user waiver of opposition to such relief. It also begins establishing governing law and exclusive jurisdiction for disputes under the Terms.
- Tier: All
- Location: § 13 (In case of disputes)
- Source: https://www.anthropic.com/legal/consumer-terms
- Snapshot SHA-256: `302af768945b9867a7fa2a9480b1fdc80d85c227ffaf671e19ee2025428d0705`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/consumer-terms#:~:text=%20Equitable%20relief.%20You,laws%20of%20other%20jurisdictions.
### governing law disputes — risk unknown
> When using our Services, you agree to comply with any applicable guidelines, rules, or supplemental terms that may be posted on the Services from time to time (“Supplemental Terms”). If these Terms conflict with Supplemental Terms, the Supplemental Terms will govern for the applicable Service.
Entire agreement. These Terms and any other terms expressly incorporated by reference form the entire agreement between you and us regarding the subject matter of our Terms.
Termination. You may stop accessing the Services at any time. We may suspend or terminate your access to the Services (including any Subscriptions) at any time without notice to you if we believe that you have breached these Terms, or if we must do so in order to comply with law. If we terminate your access to the Services due to a violation of these Terms and you have a Subscription, you will not be entitled to any refund. In addition, if you have a Subscription, we may terminate the Subscription at any time for any other reason. If we exercise this right and you purchased the subscription via our website, we will refund you, on a pro rata basis, the fees you paid for the remaining portion of your Subscription after termination. Any refunds for Subscriptions purchased via an App Distributor are subject to the App Distributor’s terms and not these terms.
We may also terminate your Account if you have been inactive for over a year and you do not have a paid Account.
- Interpretation (disclaimed): This segment incorporates Supplemental Terms by reference, establishes that Supplemental Terms govern in cases of conflict, and defines the entire agreement scope. It also grants the platform a right to suspend or terminate user access to Services, which constitutes a procedural and rights-bearing clause affecting the user's continued use.
- Tier: All
- Location: § 12 (General terms)
- Source: https://www.anthropic.com/legal/consumer-terms
- Snapshot SHA-256: `302af768945b9867a7fa2a9480b1fdc80d85c227ffaf671e19ee2025428d0705`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/consumer-terms#:~:text=When%20using%20our%20Services%2C,a%20paid%20Account.%20
### moderation enforcement — risk high
> We may comply with governmental, court, and law enforcement requests or requirements relating to provision or use of the Services, or to information provided to or collected under our Terms. We reserve the right, at our sole discretion, to report information from or about you, including but not limited to Inputs, Outputs, or Actions to law enforcement.
- Interpretation (disclaimed): The clause goes beyond passive compliance with lawful process: Anthropic explicitly reserves the right to voluntarily and proactively disclose user content (Inputs, Outputs, Actions) to law enforcement at its sole discretion. This creates significant privacy and due-process risk for users, as there is no requirement of a court order or other legal compulsion before disclosure.
- Tier: All
- Location: § 12 (General terms)
- Source: https://www.anthropic.com/legal/consumer-terms
- Snapshot SHA-256: `302af768945b9867a7fa2a9480b1fdc80d85c227ffaf671e19ee2025428d0705`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/consumer-terms#:~:text=We%20may%20comply%20with,Actions%20to%20law%20enforcement.
### moderation enforcement — risk high
> he creation of a new account, use of an existing account, or providing access to a person or entity that was previously banned
Access or facilitate account or API access to Claude to persons, entities, or users in violation of our Supported Regions Policy
- Interpretation (disclaimed): This clause imposes affirmative compliance obligations on operators to enforce Anthropic's ban list and supported regions policy. Failure to do so creates breach-of-contract exposure. The geographic access restriction may also implicate export control laws and OFAC sanctions compliance.
- Tier: All
- Location: Usage Policy › “Do Not Abuse our Platform”
- Source: https://www.anthropic.com/legal/aup
- Snapshot SHA-256: `14803ef6189dc1d0cd965845b0b6af7e3d3b54622129352f2d302d91dd7d29f0`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/aup#:~:text=he%20creation%20of%20a,our%20Supported%20Regions%20Policy
### moderation enforcement — risk high
> Do Not Generate Sexually Explicit Content
This includes using our products or services to:
Depict or request sexual intercourse or sex acts
Generate content related to sexual fetishes or fantasies
Facilitate, promote, or depict incest or bestiality
Engage in erotic chats
- Interpretation (disclaimed): This is a categorical, non-waivable content restriction. Any product design that could foreseeably lead to such outputs places the operator in breach. Operators should implement content filters and user-facing terms that explicitly prohibit this use to reduce downstream liability.
- Tier: All
- Location: Usage Policy › “Do Not Generate Sexually Explicit Content”
- Source: https://www.anthropic.com/legal/aup
- Snapshot SHA-256: `14803ef6189dc1d0cd965845b0b6af7e3d3b54622129352f2d302d91dd7d29f0`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/aup#:~:text=Do%20Not%20Generate%20Sexually,Engage%20in%20erotic%20chats
### moderation enforcement — risk medium
> Materials flagged for safety, security, or policy review
- Interpretation (disclaimed): Flagged content is both a basis for enforcement action and a training data source, meaning moderation triggers permanent training use regardless of user opt-out preferences.
- Tier: All
- Location: Privacy Policy › “Materials flagged for safety, security, or policy review”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=Materials%20flagged%20for%20safety%2C%20security%2C%20or%20policy%20review
### moderation enforcement — risk medium
> All consumer-facing chatbots, including any external-facing or interactive AI agent, must disclose to users that they are interacting with AI rather than a human. This disclosure must be provided at a minimum at the beginning of each chat session.
- Interpretation (disclaimed): This is an absolute, non-negotiable disclosure obligation for any external-facing deployment. Non-compliance constitutes a breach of the usage policy and may also violate consumer protection laws prohibiting deceptive practices (e.g., FTC Act Section 5, EU consumer law). Operators must build this into their UX flows.
- Tier: All
- Location: Usage Policy › “Additional Use Case Guidelines”
- Source: https://www.anthropic.com/legal/aup
- Snapshot SHA-256: `14803ef6189dc1d0cd965845b0b6af7e3d3b54622129352f2d302d91dd7d29f0`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/aup#:~:text=All%20consumer-facing%20chatbots%2C%20including,of%20each%20chat%20session.
### moderation enforcement — risk medium
> Coordinate malicious activity across multiple accounts to avoid detection or circumvent product guardrails or generating identical or similar inputs that otherwise violate our Usage Policy
Utilize automation in account creation or to engage in spammy behavior
Circumvent a ban through the use of a different account, such as the creation of a new account, use of an existing account, or providing access to a person or entity that was previously banned
Access or facilitate account or API access to Claude to persons, entities, or users in violation of our Supported Regions Policy
- Interpretation (disclaimed): The clause extends enforcement reach beyond the banned account to any facilitating account, creating vicarious liability risk for organizations. The phrase 'providing access to a person or entity that was previously banned' is particularly broad and could inadvertently ensnare third parties.
- Tier: All
- Location: Usage Policy › “Do Not Abuse our Platform”
- Source: https://www.anthropic.com/legal/aup
- Snapshot SHA-256: `14803ef6189dc1d0cd965845b0b6af7e3d3b54622129352f2d302d91dd7d29f0`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/aup#:~:text=Coordinate%20malicious%20activity%20across,our%20Supported%20Regions%20Policy
### moderation enforcement — risk medium
> Agentic use cases must still comply with the Usage Policy. We provide examples of Usage Policy prohibitions in the context of agentic use in this Help Center article .
- Interpretation (disclaimed): This clause closes a potential loophole where operators might argue that agentic use cases fall outside normal policy scope. By explicitly incorporating the full Usage Policy for agentic use, Anthropic retains enforcement authority over automated, multi-step AI workflows. Operators must review the referenced Help Center article to understand specific agentic prohibitions.
- Tier: All
- Location: Usage Policy › “Additional Use Case Guidelines”
- Source: https://www.anthropic.com/legal/aup
- Snapshot SHA-256: `14803ef6189dc1d0cd965845b0b6af7e3d3b54622129352f2d302d91dd7d29f0`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/aup#:~:text=Agentic%20use%20cases%20must,Help%20Center%20article%20.
### moderation enforcement — risk medium
> Intentionally bypass capabilities, restrictions, or guardrails established within our products for the purposes of instructing the model to produce harmful outputs (e.g., jailbreaking or prompt injection) without prior authorization from Anthropic
- Interpretation (disclaimed): This clause exposes users to suspension/termination risk for prompt engineering that Anthropic unilaterally deems as 'bypassing guardrails.' The lack of a defined authorization process creates legal uncertainty for security researchers and developers conducting legitimate adversarial testing.
- Tier: All
- Location: Usage Policy › “Do Not Abuse our Platform”
- Source: https://www.anthropic.com/legal/aup
- Snapshot SHA-256: `14803ef6189dc1d0cd965845b0b6af7e3d3b54622129352f2d302d91dd7d29f0`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/aup#:~:text=Intentionally%20bypass%20capabilities%2C%20restrictions%2C,prior%20authorization%20from%20Anthropic
### moderation enforcement — risk low
> To prevent and investigate fraud, abuse, and violations of our Usage Policy , unlawful or criminal activity, unauthorized access to or use of personal data or Anthropic systems and networks, to protect our rights and the rights of others, and to meet legal, governmental and institutional policy obligations;
- Interpretation (disclaimed): Anthropic reserves the right to use personal data for enforcement and investigation purposes. This is a standard clause but signals that user data may be reviewed in connection with policy enforcement without specific notice.
- Tier: All
- Location: § 2
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=To%20prevent%20and%20investigate,and%20institutional%20policy%20obligations%3B
### moderation enforcement — risk low
> Model Context Protocol (MCP) servers listed in our Connector Directory must comply with our Directory Policy .
- Interpretation (disclaimed): This clause incorporates by reference a separate Directory Policy for MCP server operators. Non-compliance could result in removal from the directory or broader policy enforcement actions. Operators should review the Directory Policy independently before listing.
- Tier: API
- Location: Usage Policy › “Additional Use Case Guidelines”
- Source: https://www.anthropic.com/legal/aup
- Snapshot SHA-256: `14803ef6189dc1d0cd965845b0b6af7e3d3b54622129352f2d302d91dd7d29f0`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/aup#:~:text=Model%20Context%20Protocol%20(MCP),our%20Directory%20Policy%20.
### moderation enforcement — risk unknown
> Our Usage Policy (also referred to as our “Acceptable Use Policy” or “AUP”) applies to anyone who can submit inputs to Anthropic’s products and/or services, including via any authorized resellers or passthrough access, all of whom we refer to as “users.” The Usage Policy is intended to help our users stay safe and promote the responsible use of our products and services.
The Usage Policy is categorized according to who can use our products and for what purposes. We will update our policy as our technology and the associated risks evolve or as we learn about unanticipated risks.
Universal Usage Standards: Our Universal Usage Standards apply to all users and use cases.
High-Risk Use Case Requirements: Our High-Risk Use Case Requirements apply to specific consumer-facing use cases that pose an elevated risk of harm.
Additional Use Case Guidelines: Our Additional Use Case Guidelines apply to certain other use cases, including consumer-facing chatbots, products serving minors, agentic use, and Model Context Protocol servers.
Anthropic’s Safeguards Team will implement detection and monitoring to enforce our Usage Policy, so please review this policy carefully before using our products or services. If we learn that you have violated our Usage Policy, we may throttle, suspend, or terminate your access to our products and services. We may also block or modify model outputs when inputs violate our Usage Policy.
If you believe that our model outputs are potentially inaccurate, biased or harmful, please notify us at usersafety@anthropic.com, or report it directly in our product through the “report issues” thumbs down button or similar feedback features (where available).
- Interpretation (disclaimed): This segment defines the scope of the Usage Policy, identifies who qualifies as a 'user,' states the policy's purpose of promoting safe and responsible use, and signals that the policy will be updated as risks evolve — establishing the foundational definitional and scope provisions that govern enforcement of platform rules.
- Tier: All
- Location: Usage Policy › “Usage Policy \ Anthropic”
- Source: https://www.anthropic.com/legal/aup
- Snapshot SHA-256: `14803ef6189dc1d0cd965845b0b6af7e3d3b54622129352f2d302d91dd7d29f0`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/aup#:~:text=%20Our%20Usage%20Policy,features%20(where%20available).%20
### moderation enforcement — risk unknown
> You can read more about our Safeguards practices and recommendations in our Safeguards Support Center .
This Usage Policy is calibrated to strike an optimal balance between enabling beneficial uses and mitigating potential harms. Anthropic may enter into contracts with certain governmental customers that tailor use restrictions to that customer’s public mission and legal authorities if, in Anthropic’s judgment, the contractual use restrictions and applicable safeguards are adequate to mitigate the potential harms addressed by this Usage Policy.
- Interpretation (disclaimed): This segment carves out an exception to the standard Usage Policy by permitting Anthropic to enter tailored contracts with governmental customers that modify use restrictions, subject to Anthropic's judgment that safeguards are adequate — creating a conditional exception to universal enforcement standards.
- Tier: All
- Location: Usage Policy › “Usage Policy \ Anthropic”
- Source: https://www.anthropic.com/legal/aup
- Snapshot SHA-256: `14803ef6189dc1d0cd965845b0b6af7e3d3b54622129352f2d302d91dd7d29f0`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/aup#:~:text=You%20can%20read%20more,this%20Usage%20Policy.%20
### moderation enforcement — risk unknown
> Infringe, misappropriate, or violate the intellectual property rights of a third party
- Interpretation (disclaimed): This segment restricts users from infringing, misappropriating, or violating third-party intellectual property rights through use of the platform, imposing an IP-related compliance obligation on users.
- Tier: All
- Location: Usage Policy › “Engage in or facilitate human trafficking or prostitution”
- Source: https://www.anthropic.com/legal/aup
- Snapshot SHA-256: `14803ef6189dc1d0cd965845b0b6af7e3d3b54622129352f2d302d91dd7d29f0`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/aup#:~:text=%20Infringe%2C%20misappropriate%2C%20or,of%20a%20third%20party
### moderation enforcement — risk unknown
> Synthesize, or otherwise develop, high-yield explosives or biological, chemical, radiological, or nuclear weapons or their precursors, including modifications to evade detection or medical countermeasures
- Interpretation (disclaimed): This segment restricts users from synthesizing or developing high-yield explosives or biological, chemical, radiological, or nuclear weapons or their precursors, including modifications to evade detection or countermeasures.
- Tier: All
- Location: Usage Policy › “Circumvent regulatory controls to acquire weapons or their precursors”
- Source: https://www.anthropic.com/legal/aup
- Snapshot SHA-256: `14803ef6189dc1d0cd965845b0b6af7e3d3b54622129352f2d302d91dd7d29f0`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/aup#:~:text=%20Synthesize%2C%20or%20otherwise,detection%20or%20medical%20countermeasures
### moderation enforcement — risk unknown
> This includes using our products or services to:
Incite, facilitate, or promote violent extremism, terrorism, or hateful behavior
Provide material support for organizations or individuals associated with violent extremism, terrorism, or hateful behavior
Facilitate or promote any act of violence or intimidation targeting individuals, groups, animals, or property
Promote discriminatory practices or behaviors against individuals or groups on the basis of one or more protected attributes such as race, ethnicity, religion, national origin, gender, sexual orientation, or any other identifying trait
- Interpretation (disclaimed): This segment enumerates specific prohibited activities including facilitating violent extremism, terrorism, hateful behavior, material support for such organizations, acts of violence or intimidation, and discriminatory practices based on protected attributes.
- Tier: All
- Location: Usage Policy › “Do Not Incite Violence or Hateful Behavior”
- Source: https://www.anthropic.com/legal/aup
- Snapshot SHA-256: `14803ef6189dc1d0cd965845b0b6af7e3d3b54622129352f2d302d91dd7d29f0`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/aup#:~:text=%20This%20includes%20using,any%20other%20identifying%20trait
### moderation enforcement — risk unknown
> Promote, trivialize, or depict graphic violence or gratuitous gore, including sexual violence
Develop a new product or service, or support an existing product or service that employs or facilitates deceptive techniques with the intent of causing emotional harm
- Interpretation (disclaimed): This segment restricts users from promoting or depicting graphic violence, gratuitous gore, or sexual violence, and from developing products or services that employ deceptive techniques intended to cause emotional harm.
- Tier: All
- Location: Usage Policy › “Generate content depicting animal cruelty or abuse”
- Source: https://www.anthropic.com/legal/aup
- Snapshot SHA-256: `14803ef6189dc1d0cd965845b0b6af7e3d3b54622129352f2d302d91dd7d29f0`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/aup#:~:text=%20Promote%2C%20trivialize%2C%20or,of%20causing%20emotional%20harm
### moderation enforcement — risk unknown
> This includes using our products or services to:
Create or disseminate deceptive or misleading information about, or with the intention of targeting, a group, entity or person
Create or disseminate deceptive or misleading information about laws, regulations, procedures, practices, standards established by an institution, entity or governing body
Create or disseminate conspiratorial narratives meant to target a specific group, individual or entity
Impersonate real entities or create fake personas to falsely attribute content or mislead others about its origin without consent or legal right
Provide false or misleading information related to medical, health or science issues
- Interpretation (disclaimed): This segment enumerates specific misinformation-related prohibitions including creating deceptive information about groups or entities, misleading information about laws or institutions, conspiratorial narratives, impersonation of real entities, and fake personas for false attribution.
- Tier: All
- Location: Usage Policy › “Do Not Create or Spread Misinformation”
- Source: https://www.anthropic.com/legal/aup
- Snapshot SHA-256: `14803ef6189dc1d0cd965845b0b6af7e3d3b54622129352f2d302d91dd7d29f0`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/aup#:~:text=%20This%20includes%20using,health%20or%20science%20issues
### moderation enforcement — risk unknown
> Do Not Undermine Democratic Processes or Engage in Targeted Campaign Activities
This includes using our products or services to:
Engage in personalized vote or campaign targeting based on individual profiles or data
Create artificial or deceptive political movements in which the source, scale or nature of the campaign or activities is misrepresented
Generate automated communications to public officials or voters at scale that conceal their artificial origin, or engage in systematic vote solicitation that could undermine election integrity
Create political content designed to deceive or mislead voters, including synthetic media of political figures
Generate or disseminate false or misleading information in political and electoral contexts, including about candidates, parties, policies, voting procedures, or election security
Engage in political lobbying or grassroots advocacy using false or fabricated information, or create lobbying or advocacy materials containing demonstrably false claims about facts, data, or events
Incite, glorify or facilitate the disruption of electoral or civic processes, including interference with voting systems, vote counting, or certification processes
Create content designed to suppress voter turnout or discourage legitimate political participation through deception or intimidation
- Interpretation (disclaimed): This segment establishes a categorical restriction prohibiting users from undermining democratic processes or engaging in targeted campaign activities, and enumerates specific prohibited activities including personalized vote targeting, artificial political movements, automated deceptive communications to officials or voters, and creation of politically deceptive content.
- Tier: All
- Location: Usage Policy › “Do Not Create or Spread Misinformation”
- Source: https://www.anthropic.com/legal/aup
- Snapshot SHA-256: `14803ef6189dc1d0cd965845b0b6af7e3d3b54622129352f2d302d91dd7d29f0`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/aup#:~:text=%20Do%20Not%20Undermine,through%20deception%20or%20intimidation
### moderation enforcement — risk unknown
> This includes using our products or services to:
Coordinate malicious activity across multiple accounts to avoid detection or circumvent product guardrails or generating identical or similar inputs that otherwise violate our Usage Policy
Utilize automation in account creation or to engage in spammy behavior
Circumvent a ban through the use of a different account, such as the creation of a new account, use of an existing account, or providing access to a person or entity that was previously banned
Access or facilitate account or API access to Claude to persons, entities, or users in violation of our Supported Regions Policy
Intentionally bypass capabilities, restrictions, or guardrails established within our products for the purposes of instructing the model to produce harmful outputs (e.g., jailbreaking or prompt injection) without prior authorization from Anthropic
Utilization of inputs and outputs to train an AI model (e.g., “model scraping” or “model distillation”) without prior authorization from Anthropic
- Interpretation (disclaimed): This clause restricts users from coordinating malicious multi-account activity, using automation to create accounts or spam, circumventing bans via new or alternate accounts, and facilitating API access to banned persons or entities — all of which are prohibited uses enforceable under the platform's moderation and enforcement framework.
- Tier: All
- Location: Usage Policy › “Do Not Abuse our Platform”
- Source: https://www.anthropic.com/legal/aup
- Snapshot SHA-256: `14803ef6189dc1d0cd965845b0b6af7e3d3b54622129352f2d302d91dd7d29f0`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/aup#:~:text=%20This%20includes%20using,prior%20authorization%20from%20Anthropic
### moderation enforcement — risk unknown
> This includes using our products or services to:
- Interpretation (disclaimed): This introductory clause signals that the following enumerated items constitute specific prohibited uses falling under the sexually explicit content restriction, serving as an incorporation clause for the subsequent list of prohibited behaviors.
- Tier: All
- Location: Usage Policy › “Do Not Generate Sexually Explicit Content”
- Source: https://www.anthropic.com/legal/aup
- Snapshot SHA-256: `14803ef6189dc1d0cd965845b0b6af7e3d3b54622129352f2d302d91dd7d29f0`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/aup#:~:text=%20This%20includes%20using,products%20or%20services%20to%3A
### moderation enforcement — risk unknown
> Some use cases pose an elevated risk of harm because they influence domains that are vital to public welfare and social equity. For these use cases, given potential risks to individuals and consumers, we believe that relevant human expertise should be integrated and that end-users should be aware when AI has been involved in producing outputs.
As such, for the “High-Risk Use Cases” described below, we require that you implement these additional safety measures:
Human-in-the-loop: When using our products or services to provide advice, recommendations, or in subjective decision-making directly affecting individuals or consumers , a qualified professional in that field must review the content or decision prior to dissemination or finalization. You or your organization are responsible for the accuracy and appropriateness of that information.
Disclosure: If model outputs are presented directly to individuals or consumers , you must disclose to them that you are using AI to help produce your advice, decisions, or recommendations. This disclosure must be provided at a minimum at the beginning of each session.
“High-Risk Use Cases” include:
Legal: Use cases related to legal interpretation, legal guidance, or decisions with legal implications
Healthcare: Use cases related to healthcare decisions, medical diagnosis, patient care, therapy, mental health, or other medical guidance. Wellness advice (e.g., advice on sleep, stress, nutrition, exercise, etc.) does not fall under this category
Insurance: Use cases related to health, life, property, disability, or other types of insurance underwriting, claims processing, or coverage decisions
Finance: Use cases related to financial decisions, including investment advice, loan approvals, and determining financial eligibility or
- Interpretation (disclaimed): This clause imposes affirmative obligations on operators deploying high-risk use cases, specifically requiring integration of human expertise ('human-in-the-loop') and disclosure to end-users of AI involvement, establishing mandatory safety measures for domains affecting public welfare and social equity.
- Tier: All
- Location: Usage Policy › “High-Risk Use Case Requirements”
- Source: https://www.anthropic.com/legal/aup
- Snapshot SHA-256: `14803ef6189dc1d0cd965845b0b6af7e3d3b54622129352f2d302d91dd7d29f0`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/aup#:~:text=%20Some%20use%20cases,determining%20financial%20eligibility%20or
### moderation enforcement — risk unknown
> This includes using our products or services to:
Facilitate the destruction or disruption of critical infrastructure such as power grids, water treatment facilities, medical devices, telecommunication networks, or air traffic control systems
Obtain unauthorized access to critical systems such as voting machines, healthcare databases, and financial markets
Interfere with the operation of military bases and related infrastructure
- Interpretation (disclaimed): This segment enumerates specific prohibited activities under the critical infrastructure restriction, including facilitating destruction of power grids and water facilities, gaining unauthorized access to voting machines and healthcare databases, and interfering with military infrastructure operations.
- Tier: All
- Location: Usage Policy › “Do Not Compromise Critical Infrastructure”
- Source: https://www.anthropic.com/legal/aup
- Snapshot SHA-256: `14803ef6189dc1d0cd965845b0b6af7e3d3b54622129352f2d302d91dd7d29f0`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/aup#:~:text=%20This%20includes%20using,bases%20and%20related%20infrastructure
### moderation enforcement — risk unknown
> This includes using our products or services to:
Facilitate, promote, or glamorize any form of suicide or self-harm, including disordered eating and unhealthy or compulsive exercise
Engage in behaviors that promote unhealthy or unattainable body image or beauty standards, such as using the model to critique anyone’s body shape or size
Shame, humiliate, intimidate, bully, harass, or celebrate the suffering of individuals
- Interpretation (disclaimed): This segment enumerates specific prohibited psychologically harmful activities, including facilitating suicide or self-harm, promoting unhealthy body image, and shaming, humiliating, bullying, or harassing individuals.
- Tier: All
- Location: Usage Policy › “Do Not Create Psychologically or Emotionally Harmful Content”
- Source: https://www.anthropic.com/legal/aup
- Snapshot SHA-256: `14803ef6189dc1d0cd965845b0b6af7e3d3b54622129352f2d302d91dd7d29f0`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/aup#:~:text=%20This%20includes%20using,the%20suffering%20of%20individuals
### moderation enforcement — risk unknown
> It is in our legitimate interests and in the interest of Anthropic users to evaluate the use of the Services and adoption of new features to inform the development of future features and improve direction and development of the Services. Our research also benefits the AI industry and society: it investigates the safety, inner workings, and societal impact of AI models so that artificial intelligence has a positive impact on society as it becomes increasingly advanced and capable.
To enforce our Terms of Service and similar terms and agreements, including our Usage Policy . Identity and Contact Data
- Interpretation (disclaimed): Grants Anthropic permission to process Identity, Contact, and related data to enforce its Terms of Service, Usage Policy, and similar agreements, relying on contract and legitimate interests as legal bases, and explains the rationale of maintaining platform safety and intended functionality.
- Tier: All
- Location: Privacy Policy › “Legitimate interests”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20It%20is%20in,Identity%20and%20Contact%20Data
### moderation enforcement — risk unknown
> In certain circumstances outside of the performance of our contract with you, we may rely on legitimate interests. It is in our legitimate interests to enforce the rules and policies governing use of our services, to maintain intended functionality and value for users. We aim to provide a safe, useful platform.
- Interpretation (disclaimed): Clarifies that outside of contract performance Anthropic may rely on legitimate interests to enforce platform rules and policies, granting a permission to process data for enforcement purposes and articulating the rationale of maintaining a safe, functional platform.
- Tier: All
- Location: Privacy Policy › “Legitimate interests”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20In%20certain%20circumstances,safe%2C%20useful%20platform.%20
### moderation enforcement — risk unknown
> You may access and use our Services only in compliance with our Terms, including our Acceptable Use Policy , the policy governing the countries and regions Anthropic currently supports ("Supported Regions Policy"), and any guidelines or supplemental terms we may post on the Services (the “ Permitted Use ”). You are responsible for all activity under the account through which you access the Services.
You may not access or use, or help another person to access or use, our Services in the following ways:
In any manner that violates any applicable law or regulation—including, without limitation, any laws about exporting data or software to and from the United States or other countries.
To develop any products or services that compete with our Services, including to develop or train any artificial intelligence or machine learning algorithms or models or resell the Services.
To decompile, reverse engineer, disassemble, or otherwise reduce our Services to human-readable form, except when these restrictions are prohibited by applicable law.
To crawl, scrape, or otherwise harvest data or information from our Services other than as permitted under these Terms.
To use our Services, the Materials, or the Actions to obtain unauthorized access to any system or information, or to deceive any person.
To infringe, misappropriate, or violate intellectual property or other legal rights (including the rights of publicity or privacy).
- Interpretation (disclaimed): This segment restricts how users may access and use the Services, requiring compliance with the Acceptable Use Policy, Supported Regions Policy, and other guidelines, and holds users responsible for all account activity, imposing binding usage restrictions enforceable against the user.
- Tier: All
- Location: § 3
- Source: https://www.anthropic.com/legal/consumer-terms
- Snapshot SHA-256: `302af768945b9867a7fa2a9480b1fdc80d85c227ffaf671e19ee2025428d0705`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/consumer-terms#:~:text=%20You%20may%20access,publicity%20or%20privacy).%20
### moderation enforcement — risk unknown
> creditworthiness
Employment and housing: Use cases related to decisions about the employability of individuals, resume screening, hiring tools, or other employment determinations or decisions regarding eligibility for housing, including leases and home loans
Academic testing, accreditation and admissions: Use cases related to standardized testing companies that administer school admissions (including evaluating, scoring or ranking prospective students), language proficiency, or professional certification exams; agencies that evaluate and certify educational institutions
Media or professional journalistic content: Use cases related to using our products or services to automatically generate content and publish it for external consumption
- Interpretation (disclaimed): This segment defines specific categories of 'High-Risk Use Cases,' including creditworthiness, employment and housing decisions, academic testing and admissions, and media or professional contexts, thereby establishing the scope of applications subject to heightened compliance obligations.
- Tier: All
- Location: Usage Policy › “High-Risk Use Case Requirements”
- Source: https://www.anthropic.com/legal/aup
- Snapshot SHA-256: `14803ef6189dc1d0cd965845b0b6af7e3d3b54622129352f2d302d91dd7d29f0`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/aup#:~:text=%20creditworthiness%20Employment%20and,it%20for%20external%20consumption
### moderation enforcement — risk unknown
> This includes using our products or services to:
Produce, modify, design, or illegally acquire weapons, explosives, dangerous materials or other systems designed to cause harm to or loss of human life
Design or develop weaponization and delivery processes for the deployment of weapons
- Interpretation (disclaimed): This segment enumerates specific prohibited activities under the weapons restriction, including producing, modifying, designing, or illegally acquiring weapons or dangerous materials, and designing weaponization and deployment processes.
- Tier: All
- Location: Usage Policy › “Do Not Develop or Design Weapons”
- Source: https://www.anthropic.com/legal/aup
- Snapshot SHA-256: `14803ef6189dc1d0cd965845b0b6af7e3d3b54622129352f2d302d91dd7d29f0`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/aup#:~:text=%20This%20includes%20using,the%20deployment%20of%20weapons
### moderation enforcement — risk unknown
> This includes using our products or services to:
Coordinate malicious activity across multiple accounts to avoid detection or circumvent product guardrails or generating identical or similar inputs that otherwise violate our Usage Policy
Utilize automation in account creation or to engage in spammy behavior
Circumvent a ban through the use of a different account, such as the creation of a new account, use of an existing account, or providing access to a person or entity that was previously banned
Access or facilitate account or API access to Claude to persons, entities, or users in violation of our Supported Regions Policy
Intentionally bypass capabilities, restrictions, or guardrails established within our products for the purposes of instructing the model to produce harmful outputs (e.g., jailbreaking or prompt injection) without prior authorization from Anthropic
Utilization of inputs and outputs to train an AI model (e.g., “model scraping” or “model distillation”) without prior authorization from Anthropic
- Interpretation (disclaimed): This clause restricts users from coordinating malicious multi-account activity, using automation for spammy behavior, circumventing bans via new or alternate accounts, and facilitating API access to banned persons or entities, thereby imposing enforceable prohibitions on platform misuse.
- Tier: All
- Location: Usage Policy › “Do Not Abuse our Platform”
- Source: https://www.anthropic.com/legal/aup
- Snapshot SHA-256: `14803ef6189dc1d0cd965845b0b6af7e3d3b54622129352f2d302d91dd7d29f0`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/aup#:~:text=%20This%20includes%20using,prior%20authorization%20from%20Anthropic
### moderation enforcement — risk unknown
> This includes using our products or services to:
Create or disseminate deceptive or misleading information about, or with the intention of targeting, a group, entity or person
Create or disseminate deceptive or misleading information about laws, regulations, procedures, practices, standards established by an institution, entity or governing body
Create or disseminate conspiratorial narratives meant to target a specific group, individual or entity
Impersonate real entities or create fake personas to falsely attribute content or mislead others about its origin without consent or legal right
Provide false or misleading information related to medical, health or science issues
- Interpretation (disclaimed): This segment enumerates specific prohibited misinformation-related activities, including creating or disseminating deceptive information targeting groups or persons, spreading false information about laws and institutions, creating conspiratorial narratives, and impersonating real entities or creating fake personas to mislead about content origin.
- Tier: All
- Location: Usage Policy › “Do Not Create or Spread Misinformation”
- Source: https://www.anthropic.com/legal/aup
- Snapshot SHA-256: `14803ef6189dc1d0cd965845b0b6af7e3d3b54622129352f2d302d91dd7d29f0`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/aup#:~:text=%20This%20includes%20using,health%20or%20science%20issues
### moderation enforcement — risk unknown
> This includes using our products or services to:
Facilitate the destruction or disruption of critical infrastructure such as power grids, water treatment facilities, medical devices, telecommunication networks, or air traffic control systems
Obtain unauthorized access to critical systems such as voting machines, healthcare databases, and financial markets
Interfere with the operation of military bases and related infrastructure
- Interpretation (disclaimed): This segment enumerates specific prohibited activities under the critical infrastructure restriction, including disruption of power grids, water facilities, medical devices, voting machines, financial markets, and military infrastructure.
- Tier: All
- Location: Usage Policy › “Do Not Compromise Critical Infrastructure”
- Source: https://www.anthropic.com/legal/aup
- Snapshot SHA-256: `14803ef6189dc1d0cd965845b0b6af7e3d3b54622129352f2d302d91dd7d29f0`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/aup#:~:text=%20This%20includes%20using,bases%20and%20related%20infrastructure
### moderation enforcement — risk unknown
> This includes using our products or services to:
Facilitate the production, acquisition, or distribution of counterfeit or illicitly acquired goods
- Interpretation (disclaimed): This segment restricts users from facilitating the production, acquisition, or distribution of counterfeit or illicitly acquired goods, constituting a specific enumerated prohibition under the fraud/abuse restriction.
- Tier: All
- Location: Usage Policy › “Do Not Engage in Fraudulent, Abusive, or Predatory Practices”
- Source: https://www.anthropic.com/legal/aup
- Snapshot SHA-256: `14803ef6189dc1d0cd965845b0b6af7e3d3b54622129352f2d302d91dd7d29f0`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/aup#:~:text=%20This%20includes%20using,or%20illicitly%20acquired%20goods
### moderation enforcement — risk unknown
> Our Usage Policy (also referred to as our “Acceptable Use Policy” or “AUP”) applies to anyone who can submit inputs to Anthropic’s products and/or services, including via any authorized resellers or passthrough access, all of whom we refer to as “users.” The Usage Policy is intended to help our users stay safe and promote the responsible use of our products and services.
The Usage Policy is categorized according to who can use our products and for what purposes. We will update our policy as our technology and the associated risks evolve or as we learn about unanticipated risks.
Universal Usage Standards: Our Universal Usage Standards apply to all users and use cases.
High-Risk Use Case Requirements: Our High-Risk Use Case Requirements apply to specific consumer-facing use cases that pose an elevated risk of harm.
Additional Use Case Guidelines: Our Additional Use Case Guidelines apply to certain other use cases, including consumer-facing chatbots, products serving minors, agentic use, and Model Context Protocol servers.
Anthropic’s Safeguards Team will implement detection and monitoring to enforce our Usage Policy, so please review this policy carefully before using our products or services. If we learn that you have violated our Usage Policy, we may throttle, suspend, or terminate your access to our products and services. We may also block or modify model outputs when inputs violate our Usage Policy.
If you believe that our model outputs are potentially inaccurate, biased or harmful, please notify us at usersafety@anthropic.com, or report it directly in our product through the “report issues” thumbs down button or similar feedback features (where available).
- Interpretation (disclaimed): This segment defines who qualifies as a 'user' subject to the AUP (anyone submitting inputs, including via resellers or passthrough access), states the policy's purpose of promoting safety and responsible use, and signals that the policy will be updated as risks evolve, establishing the scope and applicability of enforcement obligations.
- Tier: All
- Location: Usage Policy › “Usage Policy \ Anthropic”
- Source: https://www.anthropic.com/legal/aup
- Snapshot SHA-256: `14803ef6189dc1d0cd965845b0b6af7e3d3b54622129352f2d302d91dd7d29f0`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/aup#:~:text=%20Our%20Usage%20Policy,features%20(where%20available).%20
### moderation enforcement — risk unknown
> Some use cases pose an elevated risk of harm because they influence domains that are vital to public welfare and social equity. For these use cases, given potential risks to individuals and consumers, we believe that relevant human expertise should be integrated and that end-users should be aware when AI has been involved in producing outputs.
As such, for the “High-Risk Use Cases” described below, we require that you implement these additional safety measures:
Human-in-the-loop: When using our products or services to provide advice, recommendations, or in subjective decision-making directly affecting individuals or consumers , a qualified professional in that field must review the content or decision prior to dissemination or finalization. You or your organization are responsible for the accuracy and appropriateness of that information.
Disclosure: If model outputs are presented directly to individuals or consumers , you must disclose to them that you are using AI to help produce your advice, decisions, or recommendations. This disclosure must be provided at a minimum at the beginning of each session.
“High-Risk Use Cases” include:
Legal: Use cases related to legal interpretation, legal guidance, or decisions with legal implications
Healthcare: Use cases related to healthcare decisions, medical diagnosis, patient care, therapy, mental health, or other medical guidance. Wellness advice (e.g., advice on sleep, stress, nutrition, exercise, etc.) does not fall under this category
Insurance: Use cases related to health, life, property, disability, or other types of insurance underwriting, claims processing, or coverage decisions
Finance: Use cases related to financial decisions, including investment advice, loan approvals, and determining financial eligibility or
- Interpretation (disclaimed): This clause imposes affirmative obligations on operators using high-risk use cases to implement human-in-the-loop safeguards and to disclose AI involvement to end-users, requiring specific procedural and transparency measures to mitigate elevated harm risk.
- Tier: All
- Location: Usage Policy › “High-Risk Use Case Requirements”
- Source: https://www.anthropic.com/legal/aup
- Snapshot SHA-256: `14803ef6189dc1d0cd965845b0b6af7e3d3b54622129352f2d302d91dd7d29f0`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/aup#:~:text=%20Some%20use%20cases,determining%20financial%20eligibility%20or
### moderation enforcement — risk unknown
> Generate content for fraudulent activities, schemes, scams, phishing, or malware that can result in direct financial or psychological harm
Create falsified documents including fake IDs, licenses, currency, or other government documents
Develop, promote, or otherwise facilitate the sale or distribution of fraudulent or deceptive products
Generate deceptive or misleading digital content such as fake reviews, comments, or media
Engage in or facilitate multi-level marketing, pyramid schemes, or other deceptive business models that use high-pressure sales tactics or exploit participants
Promote or facilitate payday loans, title loans, or other high-interest, short-term lending practices that exploit vulnerable individuals
Engage in deceptive or abusive practices that exploit individuals based on age, disability or a specific social or economic situation
Promote or facilitate the use of abusive or harassing debt collection practices
Develop a product or support an existing service that deploys subliminal, manipulative, or deceptive techniques to distort behavior by impairing decision-making
Engage in actions or behaviors that circumvent the guardrails or terms of other platforms or services
Plagiarize or submit AI-assisted work without proper permission or attribution
- Interpretation (disclaimed): This segment enumerates additional fraudulent and predatory practice prohibitions including generating content for scams or phishing, creating falsified documents, developing fraudulent products, generating fake reviews, facilitating pyramid schemes, and other deceptive business practices.
- Tier: All
- Location: Usage Policy › “Promote or facilitate the generation or distribution of spam”
- Source: https://www.anthropic.com/legal/aup
- Snapshot SHA-256: `14803ef6189dc1d0cd965845b0b6af7e3d3b54622129352f2d302d91dd7d29f0`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/aup#:~:text=%20Generate%20content%20for,proper%20permission%20or%20attribution
### moderation enforcement — risk unknown
> This includes using our products or services to:
Create, distribute, or promote child sexual abuse material (“CSAM”), including AI-generated CSAM
Facilitate the trafficking, sextortion, or any other form of exploitation of a minor
Facilitate minor grooming, including generating content designed to impersonate a minor
Facilitate child abuse of any form, including instructions for how to conceal abuse
Promote or facilitate pedophilic relationships, including via roleplay with the model
Fetishize or sexualize minors, including in fictional settings or via roleplay with the model
Note: We define a minor or child to be any individual under the age of 18 years old, regardless of jurisdiction. When we detect CSAM (including AI-generated CSAM), or coercion or enticement of a minor to engage in sexual activities, we will report to relevant authorities.
- Interpretation (disclaimed): This segment enumerates specific prohibited activities related to child safety, including creating or distributing CSAM (including AI-generated), facilitating child trafficking or exploitation, grooming, abuse, pedophilic relationships, and sexualizing minors, and begins a definition of minor-related terms.
- Tier: All
- Location: Usage Policy › “Do Not Compromise Children’s Safety”
- Source: https://www.anthropic.com/legal/aup
- Snapshot SHA-256: `14803ef6189dc1d0cd965845b0b6af7e3d3b54622129352f2d302d91dd7d29f0`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/aup#:~:text=%20This%20includes%20using,to%20relevant%20authorities.%20
### moderation enforcement — risk unknown
> This includes using our products or services to:
Incite, facilitate, or promote violent extremism, terrorism, or hateful behavior
Provide material support for organizations or individuals associated with violent extremism, terrorism, or hateful behavior
Facilitate or promote any act of violence or intimidation targeting individuals, groups, animals, or property
Promote discriminatory practices or behaviors against individuals or groups on the basis of one or more protected attributes such as race, ethnicity, religion, national origin, gender, sexual orientation, or any other identifying trait
- Interpretation (disclaimed): This segment enumerates specific prohibited activities under the violence/hate restriction, including inciting violent extremism or terrorism, providing material support for extremist groups, facilitating violence or intimidation, and promoting discriminatory practices against protected groups.
- Tier: All
- Location: Usage Policy › “Do Not Incite Violence or Hateful Behavior”
- Source: https://www.anthropic.com/legal/aup
- Snapshot SHA-256: `14803ef6189dc1d0cd965845b0b6af7e3d3b54622129352f2d302d91dd7d29f0`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/aup#:~:text=%20This%20includes%20using,any%20other%20identifying%20trait
### moderation enforcement — risk unknown
> This includes using our products or services to:
Discover or exploit vulnerabilities in systems, networks, or applications without authorization of the system owner
Gain unauthorized access to systems, networks, applications, or devices through technical attacks or social engineering
Create or distribute malware, ransomware, or other types of malicious code
- Interpretation (disclaimed): This segment specifies prohibited activities under the computer/network systems restriction, including unauthorized vulnerability exploitation, unauthorized access, and creation or distribution of malware or ransomware.
- Tier: All
- Location: Usage Policy › “Do Not Compromise Computer or Network Systems”
- Source: https://www.anthropic.com/legal/aup
- Snapshot SHA-256: `14803ef6189dc1d0cd965845b0b6af7e3d3b54622129352f2d302d91dd7d29f0`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/aup#:~:text=%20This%20includes%20using,types%20of%20malicious%20code
### moderation enforcement — risk unknown
> Do Not Undermine Democratic Processes or Engage in Targeted Campaign Activities
This includes using our products or services to:
Engage in personalized vote or campaign targeting based on individual profiles or data
Create artificial or deceptive political movements in which the source, scale or nature of the campaign or activities is misrepresented
Generate automated communications to public officials or voters at scale that conceal their artificial origin, or engage in systematic vote solicitation that could undermine election integrity
Create political content designed to deceive or mislead voters, including synthetic media of political figures
Generate or disseminate false or misleading information in political and electoral contexts, including about candidates, parties, policies, voting procedures, or election security
Engage in political lobbying or grassroots advocacy using false or fabricated information, or create lobbying or advocacy materials containing demonstrably false claims about facts, data, or events
Incite, glorify or facilitate the disruption of electoral or civic processes, including interference with voting systems, vote counting, or certification processes
Create content designed to suppress voter turnout or discourage legitimate political participation through deception or intimidation
- Interpretation (disclaimed): This segment establishes a categorical prohibition against using Anthropic's products or services to undermine democratic processes or engage in targeted campaign activities, and enumerates specific prohibited activities including personalized vote targeting, artificial political movements, automated communications concealing artificial origin, and political content designed to deceive voters.
- Tier: All
- Location: Usage Policy › “Do Not Create or Spread Misinformation”
- Source: https://www.anthropic.com/legal/aup
- Snapshot SHA-256: `14803ef6189dc1d0cd965845b0b6af7e3d3b54622129352f2d302d91dd7d29f0`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/aup#:~:text=%20Do%20Not%20Undermine,through%20deception%20or%20intimidation
### moderation enforcement — risk unknown
> This includes using our products or services to:
Create, distribute, or promote child sexual abuse material (“CSAM”), including AI-generated CSAM
Facilitate the trafficking, sextortion, or any other form of exploitation of a minor
Facilitate minor grooming, including generating content designed to impersonate a minor
Facilitate child abuse of any form, including instructions for how to conceal abuse
Promote or facilitate pedophilic relationships, including via roleplay with the model
Fetishize or sexualize minors, including in fictional settings or via roleplay with the model
Note: We define a minor or child to be any individual under the age of 18 years old, regardless of jurisdiction. When we detect CSAM (including AI-generated CSAM), or coercion or enticement of a minor to engage in sexual activities, we will report to relevant authorities.
- Interpretation (disclaimed): This segment enumerates specific prohibitions protecting children, including creating CSAM, facilitating trafficking or exploitation of minors, grooming, child abuse facilitation, pedophilic relationships, and sexualization of minors including in fictional contexts.
- Tier: All
- Location: Usage Policy › “Do Not Compromise Children’s Safety”
- Source: https://www.anthropic.com/legal/aup
- Snapshot SHA-256: `14803ef6189dc1d0cd965845b0b6af7e3d3b54622129352f2d302d91dd7d29f0`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/aup#:~:text=%20This%20includes%20using,to%20relevant%20authorities.%20
### moderation enforcement — risk unknown
> Synthesize, or otherwise develop, high-yield explosives or biological, chemical, radiological, or nuclear weapons or their precursors, including modifications to evade detection or medical countermeasures
- Interpretation (disclaimed): This segment restricts users from synthesizing or developing high-yield explosives or CBRN weapons or their precursors, including modifications to evade detection or medical countermeasures, constituting a specific enumerated prohibition under the weapons restriction.
- Tier: All
- Location: Usage Policy › “Circumvent regulatory controls to acquire weapons or their precursors”
- Source: https://www.anthropic.com/legal/aup
- Snapshot SHA-256: `14803ef6189dc1d0cd965845b0b6af7e3d3b54622129352f2d302d91dd7d29f0`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/aup#:~:text=%20Synthesize%2C%20or%20otherwise,detection%20or%20medical%20countermeasures
### moderation enforcement — risk unknown
> This includes using our products or services to:
- Interpretation (disclaimed): This segment introduces and incorporates the list of specific prohibited activities that fall under the preceding restriction heading, serving as a cross-reference connector for the enumerated prohibitions.
- Tier: All
- Location: Usage Policy › “Do Not Violate Applicable Laws or Engage in Illegal Activity”
- Source: https://www.anthropic.com/legal/aup
- Snapshot SHA-256: `14803ef6189dc1d0cd965845b0b6af7e3d3b54622129352f2d302d91dd7d29f0`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/aup#:~:text=%20This%20includes%20using,products%20or%20services%20to%3A
### moderation enforcement — risk unknown
> Infringe, misappropriate, or violate the intellectual property rights of a third party
- Interpretation (disclaimed): This segment restricts users from using Anthropic's products or services to infringe, misappropriate, or violate third-party intellectual property rights, imposing a specific IP-related usage prohibition.
- Tier: All
- Location: Usage Policy › “Engage in or facilitate human trafficking or prostitution”
- Source: https://www.anthropic.com/legal/aup
- Snapshot SHA-256: `14803ef6189dc1d0cd965845b0b6af7e3d3b54622129352f2d302d91dd7d29f0`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/aup#:~:text=%20Infringe%2C%20misappropriate%2C%20or,of%20a%20third%20party
### moderation enforcement — risk unknown
> Do Not Use for Criminal Justice, Censorship, Surveillance, or Prohibited Law Enforcement Purposes
This includes using our products or services to:
Make determinations on criminal justice applications, including making decisions about or determining eligibility for parole or sentencing
Target or track a person’s physical location, emotional state, or communication without their consent, including using our products for facial recognition, battlefield management applications or predictive policing
Utilize models to assign scores or ratings to individuals based on an assessment of their trustworthiness or social behavior without notification or their consent
Build or support emotional recognition systems or techniques that are used to infer emotions of a natural person, except for medical or safety reasons
Analyze or identify specific content to censor on behalf of a government organization
Utilize models as part of any biometric categorization system for categorizing people based on their biometric data to infer their race, political opinions, trade union membership, religious or philosophical beliefs, sex life or sexual orientation
Utilize models as part of any law enforcement application that violates or impairs the liberty, civil liberties, or human rights of natural persons
- Interpretation (disclaimed): This segment prohibits use of the platform for certain criminal justice applications, surveillance, censorship, or prohibited law enforcement purposes, including parole/sentencing determinations, unauthorized tracking of individuals, and social scoring systems.
- Tier: All
- Location: Usage Policy › “Do Not Create or Spread Misinformation”
- Source: https://www.anthropic.com/legal/aup
- Snapshot SHA-256: `14803ef6189dc1d0cd965845b0b6af7e3d3b54622129352f2d302d91dd7d29f0`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/aup#:~:text=%20Do%20Not%20Use,rights%20of%20natural%20persons
### moderation enforcement — risk unknown
> This includes using our products or services to:
Discover or exploit vulnerabilities in systems, networks, or applications without authorization of the system owner
Gain unauthorized access to systems, networks, applications, or devices through technical attacks or social engineering
Create or distribute malware, ransomware, or other types of malicious code
- Interpretation (disclaimed): This segment enumerates specific prohibited activities under the computer/network systems restriction, including unauthorized vulnerability exploitation, unauthorized system access via technical or social engineering attacks, and creating or distributing malware or ransomware.
- Tier: All
- Location: Usage Policy › “Do Not Compromise Computer or Network Systems”
- Source: https://www.anthropic.com/legal/aup
- Snapshot SHA-256: `14803ef6189dc1d0cd965845b0b6af7e3d3b54622129352f2d302d91dd7d29f0`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/aup#:~:text=%20This%20includes%20using,types%20of%20malicious%20code
### moderation enforcement — risk unknown
> Create tools designed to intercept communications or monitor devices without authorization of the system owner
Develop persistent access tools designed to operate below normal system security levels, including firmware modifications or hardware implants
Create automated tools designed to compromise multiple systems at scale for malicious purposes
Bypass security controls such as authenticated systems, endpoint protection, or monitoring tools
- Interpretation (disclaimed): This segment enumerates additional prohibited cybersecurity activities including unauthorized communication interception tools, persistent access tools, firmware or hardware implants, large-scale automated compromise tools, and security control bypass, all restricted on the platform.
- Tier: All
- Location: Usage Policy › “Develop tools for denial-of-service attacks or managing botnets”
- Source: https://www.anthropic.com/legal/aup
- Snapshot SHA-256: `14803ef6189dc1d0cd965845b0b6af7e3d3b54622129352f2d302d91dd7d29f0`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/aup#:~:text=%20Create%20tools%20designed,protection%2C%20or%20monitoring%20tools
### moderation enforcement — risk unknown
> This includes using our products or services to:
Facilitate the production, acquisition, or distribution of counterfeit or illicitly acquired goods
- Interpretation (disclaimed): This segment restricts users from facilitating production, acquisition, or distribution of counterfeit or illicitly acquired goods via the platform.
- Tier: All
- Location: Usage Policy › “Do Not Engage in Fraudulent, Abusive, or Predatory Practices”
- Source: https://www.anthropic.com/legal/aup
- Snapshot SHA-256: `14803ef6189dc1d0cd965845b0b6af7e3d3b54622129352f2d302d91dd7d29f0`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/aup#:~:text=%20This%20includes%20using,or%20illicitly%20acquired%20goods
### moderation enforcement — risk unknown
> Promote, trivialize, or depict graphic violence or gratuitous gore, including sexual violence
Develop a new product or service, or support an existing product or service that employs or facilitates deceptive techniques with the intent of causing emotional harm
- Interpretation (disclaimed): This segment restricts users from promoting or depicting graphic violence or gratuitous gore (including sexual violence) and from developing products or services that employ deceptive techniques intended to cause emotional harm, constituting specific enumerated prohibitions under the harmful content restriction.
- Tier: All
- Location: Usage Policy › “Generate content depicting animal cruelty or abuse”
- Source: https://www.anthropic.com/legal/aup
- Snapshot SHA-256: `14803ef6189dc1d0cd965845b0b6af7e3d3b54622129352f2d302d91dd7d29f0`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/aup#:~:text=%20Promote%2C%20trivialize%2C%20or,of%20causing%20emotional%20harm
### moderation enforcement — risk unknown
> creditworthiness
Employment and housing: Use cases related to decisions about the employability of individuals, resume screening, hiring tools, or other employment determinations or decisions regarding eligibility for housing, including leases and home loans
Academic testing, accreditation and admissions: Use cases related to standardized testing companies that administer school admissions (including evaluating, scoring or ranking prospective students), language proficiency, or professional certification exams; agencies that evaluate and certify educational institutions
Media or professional journalistic content: Use cases related to using our products or services to automatically generate content and publish it for external consumption
- Interpretation (disclaimed): This segment defines specific categories of 'High-Risk Use Cases'—including creditworthiness, employment, housing, academic testing, and media/professional contexts—establishing the scope of use cases subject to the elevated safety requirements described in the preceding clause.
- Tier: All
- Location: Usage Policy › “High-Risk Use Case Requirements”
- Source: https://www.anthropic.com/legal/aup
- Snapshot SHA-256: `14803ef6189dc1d0cd965845b0b6af7e3d3b54622129352f2d302d91dd7d29f0`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/aup#:~:text=%20creditworthiness%20Employment%20and,it%20for%20external%20consumption
### moderation enforcement — risk unknown
> Do Not Use for Criminal Justice, Censorship, Surveillance, or Prohibited Law Enforcement Purposes
This includes using our products or services to:
Make determinations on criminal justice applications, including making decisions about or determining eligibility for parole or sentencing
Target or track a person’s physical location, emotional state, or communication without their consent, including using our products for facial recognition, battlefield management applications or predictive policing
Utilize models to assign scores or ratings to individuals based on an assessment of their trustworthiness or social behavior without notification or their consent
Build or support emotional recognition systems or techniques that are used to infer emotions of a natural person, except for medical or safety reasons
Analyze or identify specific content to censor on behalf of a government organization
Utilize models as part of any biometric categorization system for categorizing people based on their biometric data to infer their race, political opinions, trade union membership, religious or philosophical beliefs, sex life or sexual orientation
Utilize models as part of any law enforcement application that violates or impairs the liberty, civil liberties, or human rights of natural persons
- Interpretation (disclaimed): This segment establishes a categorical prohibition against using Anthropic's products or services for criminal justice determinations, censorship, surveillance, or prohibited law enforcement purposes, and enumerates specific prohibited activities including parole/sentencing decisions, unauthorized location or emotion tracking, facial recognition, battlefield management, predictive policing, and social scoring of individuals.
- Tier: All
- Location: Usage Policy › “Do Not Create or Spread Misinformation”
- Source: https://www.anthropic.com/legal/aup
- Snapshot SHA-256: `14803ef6189dc1d0cd965845b0b6af7e3d3b54622129352f2d302d91dd7d29f0`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/aup#:~:text=%20Do%20Not%20Use,rights%20of%20natural%20persons
### moderation enforcement — risk unknown
> This includes using our products or services to:
Facilitate, promote, or glamorize any form of suicide or self-harm, including disordered eating and unhealthy or compulsive exercise
Engage in behaviors that promote unhealthy or unattainable body image or beauty standards, such as using the model to critique anyone’s body shape or size
Shame, humiliate, intimidate, bully, harass, or celebrate the suffering of individuals
- Interpretation (disclaimed): This segment enumerates specific prohibited activities including facilitating suicide or self-harm, promoting unhealthy body image standards, and shaming, bullying, or harassing individuals.
- Tier: All
- Location: Usage Policy › “Do Not Create Psychologically or Emotionally Harmful Content”
- Source: https://www.anthropic.com/legal/aup
- Snapshot SHA-256: `14803ef6189dc1d0cd965845b0b6af7e3d3b54622129352f2d302d91dd7d29f0`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/aup#:~:text=%20This%20includes%20using,the%20suffering%20of%20individuals
### moderation enforcement — risk unknown
> This includes using our products or services to:
Produce, modify, design, or illegally acquire weapons, explosives, dangerous materials or other systems designed to cause harm to or loss of human life
Design or develop weaponization and delivery processes for the deployment of weapons
- Interpretation (disclaimed): This segment specifies that users are prohibited from producing, modifying, designing, or illegally acquiring weapons, explosives, or dangerous materials, or designing weaponization and delivery processes, through use of the platform.
- Tier: All
- Location: Usage Policy › “Do Not Develop or Design Weapons”
- Source: https://www.anthropic.com/legal/aup
- Snapshot SHA-256: `14803ef6189dc1d0cd965845b0b6af7e3d3b54622129352f2d302d91dd7d29f0`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/aup#:~:text=%20This%20includes%20using,the%20deployment%20of%20weapons
### moderation enforcement — risk unknown
> This includes using our products or services to:
- Interpretation (disclaimed): This introductory clause signals that the following enumerated items define specific prohibited activities under the sexually explicit content restriction, giving legal operative context to the list that follows.
- Tier: All
- Location: Usage Policy › “Do Not Generate Sexually Explicit Content”
- Source: https://www.anthropic.com/legal/aup
- Snapshot SHA-256: `14803ef6189dc1d0cd965845b0b6af7e3d3b54622129352f2d302d91dd7d29f0`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/aup#:~:text=%20This%20includes%20using,products%20or%20services%20to%3A
### moderation enforcement — risk unknown
> This includes using our products or services to:
- Interpretation (disclaimed): This segment is an introductory clause that incorporates the specific prohibited activities listed in subsequent segments under the 'Do Not Violate Applicable Laws' restriction, establishing that the following enumerated items are all covered by that prohibition.
- Tier: All
- Location: Usage Policy › “Do Not Violate Applicable Laws or Engage in Illegal Activity”
- Source: https://www.anthropic.com/legal/aup
- Snapshot SHA-256: `14803ef6189dc1d0cd965845b0b6af7e3d3b54622129352f2d302d91dd7d29f0`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/aup#:~:text=%20This%20includes%20using,products%20or%20services%20to%3A
### moderation enforcement — risk unknown
> You can read more about our Safeguards practices and recommendations in our Safeguards Support Center .
This Usage Policy is calibrated to strike an optimal balance between enabling beneficial uses and mitigating potential harms. Anthropic may enter into contracts with certain governmental customers that tailor use restrictions to that customer’s public mission and legal authorities if, in Anthropic’s judgment, the contractual use restrictions and applicable safeguards are adequate to mitigate the potential harms addressed by this Usage Policy.
- Interpretation (disclaimed): This segment creates an exception to the standard AUP restrictions, permitting Anthropic to enter contracts with governmental customers that tailor (i.e., modify or relax) use restrictions, conditioned on Anthropic's judgment that safeguards are adequate, thereby carving out a class of users from universal enforcement standards.
- Tier: All
- Location: Usage Policy › “Usage Policy \ Anthropic”
- Source: https://www.anthropic.com/legal/aup
- Snapshot SHA-256: `14803ef6189dc1d0cd965845b0b6af7e3d3b54622129352f2d302d91dd7d29f0`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/aup#:~:text=You%20can%20read%20more,this%20Usage%20Policy.%20
### moderation enforcement — risk unknown
> Create tools designed to intercept communications or monitor devices without authorization of the system owner
Develop persistent access tools designed to operate below normal system security levels, including firmware modifications or hardware implants
Create automated tools designed to compromise multiple systems at scale for malicious purposes
Bypass security controls such as authenticated systems, endpoint protection, or monitoring tools
- Interpretation (disclaimed): This segment enumerates additional specific prohibited activities under the computer/network systems restriction, including unauthorized interception tools, persistent below-OS-level access tools, automated mass-compromise tools, and bypassing security controls.
- Tier: All
- Location: Usage Policy › “Develop tools for denial-of-service attacks or managing botnets”
- Source: https://www.anthropic.com/legal/aup
- Snapshot SHA-256: `14803ef6189dc1d0cd965845b0b6af7e3d3b54622129352f2d302d91dd7d29f0`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/aup#:~:text=%20Create%20tools%20designed,protection%2C%20or%20monitoring%20tools
### moderation enforcement — risk unknown
> Generate content for fraudulent activities, schemes, scams, phishing, or malware that can result in direct financial or psychological harm
Create falsified documents including fake IDs, licenses, currency, or other government documents
Develop, promote, or otherwise facilitate the sale or distribution of fraudulent or deceptive products
Generate deceptive or misleading digital content such as fake reviews, comments, or media
Engage in or facilitate multi-level marketing, pyramid schemes, or other deceptive business models that use high-pressure sales tactics or exploit participants
Promote or facilitate payday loans, title loans, or other high-interest, short-term lending practices that exploit vulnerable individuals
Engage in deceptive or abusive practices that exploit individuals based on age, disability or a specific social or economic situation
Promote or facilitate the use of abusive or harassing debt collection practices
Develop a product or support an existing service that deploys subliminal, manipulative, or deceptive techniques to distort behavior by impairing decision-making
Engage in actions or behaviors that circumvent the guardrails or terms of other platforms or services
Plagiarize or submit AI-assisted work without proper permission or attribution
- Interpretation (disclaimed): This segment enumerates additional specific prohibited fraudulent activities, including generating content for scams, phishing, or malware causing financial or psychological harm, creating falsified documents, developing deceptive products, generating fake reviews or media, and facilitating pyramid schemes or multi-level marketing with deceptive practices.
- Tier: All
- Location: Usage Policy › “Promote or facilitate the generation or distribution of spam”
- Source: https://www.anthropic.com/legal/aup
- Snapshot SHA-256: `14803ef6189dc1d0cd965845b0b6af7e3d3b54622129352f2d302d91dd7d29f0`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/aup#:~:text=%20Generate%20content%20for,proper%20permission%20or%20attribution
### moderation enforcement — risk unknown
> Except when you are accessing our Services via an Anthropic API Key or where we otherwise explicitly permit it, to access the Services through automated or non-human means, whether through a bot, script, or otherwise.
To engage in any other conduct that restricts or inhibits any person from using or enjoying our Services, or that we reasonably believe exposes us—or any of our users, affiliates, or any other third party—to any liability, damages, or detriment of any type, including reputational harms.
To rely upon the Services, the Materials, or the Actions to buy or sell securities or to provide or receive advice about securities, commodities, derivatives, or other financial products or services, as Anthropic is not a broker-dealer or a registered investment adviser under the securities laws of the United States or any other jurisdiction.
- Interpretation (disclaimed): This segment restricts automated access to the Services except via API key, prohibits conduct that restricts other users' enjoyment or exposes Anthropic to liability, and prohibits using Services for securities trading decisions, constituting specific enforceable use restrictions.
- Tier: All
- Location: § 3
- Source: https://www.anthropic.com/legal/consumer-terms
- Snapshot SHA-256: `302af768945b9867a7fa2a9480b1fdc80d85c227ffaf671e19ee2025428d0705`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/consumer-terms#:~:text=%20Except%20when%20you,or%20any%20other%20jurisdiction.
### moderation enforcement — risk unknown
> You also must not abuse, harm, interfere with, or disrupt our Services, including, for example, introducing viruses or malware, spamming or DDoSing Services, or bypassing any of our systems or protective measures.
- Interpretation (disclaimed): This segment prohibits users from abusing, harming, interfering with, or disrupting the Services including introducing malware, spamming, DDoSing, or bypassing security measures, constituting an enforceable behavioral restriction.
- Tier: All
- Location: § 3
- Source: https://www.anthropic.com/legal/consumer-terms
- Snapshot SHA-256: `302af768945b9867a7fa2a9480b1fdc80d85c227ffaf671e19ee2025428d0705`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/consumer-terms#:~:text=%20You%20also%20must,systems%20or%20protective%20measures.
### moderation enforcement — risk unknown
> Department of Commerce Denied Persons List or Entity List, or (iv) any other restricted party lists. You represent and warrant that you and anyone accessing or using the Services on your behalf, or using your Account credentials, are not such persons or entities and are not located in any such country.
Legal Compliance. We may comply with governmental, court, and law enforcement requests or requirements relating to provision or use of the Services, or to information provided to or collected under our Terms. We reserve the right, at our sole discretion, to report information from or about you, including but not limited to Inputs, Outputs, or Actions to law enforcement.
U.S. Government Use. The Services were developed solely at private expense and are commercial computer software and commercial computer software documentation within the meaning of the applicable Federal Acquisition Regulations and their agency supplements. Accordingly, U.S. Government users of the Services will have only those rights that are granted to all other end users of the Services pursuant to these Terms.
- Interpretation (disclaimed): This segment imposes a representation and warranty obligation on the user confirming they are not on restricted party lists, and grants the platform permission to comply with governmental and law enforcement requests and to report user information at its sole discretion, constituting an enforcement and disclosure obligation and permission.
- Tier: All
- Location: § 12 (General terms)
- Source: https://www.anthropic.com/legal/consumer-terms
- Snapshot SHA-256: `302af768945b9867a7fa2a9480b1fdc80d85c227ffaf671e19ee2025428d0705`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/consumer-terms#:~:text=Department%20of%20Commerce%20Denied,pursuant%20to%20these%20Terms.
### moderation enforcement — risk unknown
> Third-Party Content is the responsibility of the person or entity that provides it to our Services. Anthropic is under no obligation to host or serve Third-Party Content. Third-Party Content may appear in Inputs or Outputs and become part of Materials. If you see any Third-Party Content you believe does not comply with these Terms, including by violating the Acceptable Use Policy or the law, you can report it to us.
If we become aware that any Third-Party Content (1) infringes another’s copyright or any other intellectual property or related or neighboring right, (2) is in breach of these Terms or our Acceptable Use Policy, or (3) may cause harm to Anthropic, our users, or third parties, we reserve the right to remove or take down some or all of such Third-Party Content using, where appropriate, algorithmic and human review.
You can learn more about our monitoring and enforcement, including how to appeal an account suspension or termination, in our T&S Support Center .
- Interpretation (disclaimed): This segment establishes that third-party content responsibility lies with its provider, disclaims Anthropic's obligation to host such content, and creates a procedure for users to report non-compliant third-party content, including copyright-infringing or terms-violating material, enabling Anthropic to take enforcement action.
- Tier: All
- Location: § 8 (Content Moderation)
- Source: https://www.anthropic.com/legal/consumer-terms
- Snapshot SHA-256: `302af768945b9867a7fa2a9480b1fdc80d85c227ffaf671e19ee2025428d0705`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/consumer-terms#:~:text=%20Third-Party%20Content%20is,T%26S%20Support%20Center%20.
### moderation enforcement — risk unknown
> It is in our legitimate interests and in the interest of Anthropic users to evaluate the use of the Services and adoption of new features to inform the development of future features and improve direction and development of the Services. Our research also benefits the AI industry and society: it investigates the safety, inner workings, and societal impact of AI models so that artificial intelligence has a positive impact on society as it becomes increasingly advanced and capable.
To enforce our Terms of Service and similar terms and agreements, including our Usage Policy . Identity and Contact Data
- Interpretation (disclaimed): Articulates the legitimate interest rationale for research and model training purposes, then establishes a separate processing purpose to enforce Terms of Service and Usage Policy, permitting Anthropic to process Identity, Contact, and other data for policy enforcement against users.
- Tier: All
- Location: Privacy Policy › “Legitimate interests”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20It%20is%20in,Identity%20and%20Contact%20Data
### moderation enforcement — risk unknown
> To prevent and investigate fraud, abuse, and violations of our Usage Policy , unlawful or criminal activity, unauthorized access to or use of personal data or Anthropic systems and networks, to protect our rights and the rights of others, and to meet legal, governmental and institutional policy obligations Identity and Contact Data
- Interpretation (disclaimed): This segment specifies the purpose of processing Identity and Contact Data to prevent and investigate fraud, abuse, and Usage Policy violations, protect Anthropic's rights, and meet legal obligations, establishing both legitimate interests and legal obligation as the bases for this enforcement-related processing activity.
- Tier: All
- Location: Privacy Policy › “Contract”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20To%20prevent%20and,Identity%20and%20Contact%20Data
### moderation enforcement — risk unknown
> It is in our legitimate interests to protect our business, employees and users from illegal activities, inappropriate behavior or violations of terms that would be detrimental. We also have a duty to cooperate with authorities.
- Interpretation (disclaimed): This segment articulates the legitimate interest and legal obligation rationale for processing personal data to protect the business, employees, and users from illegal activities and policy violations, justifying the dual legal bases for enforcement-related processing.
- Tier: All
- Location: Privacy Policy › “Legal obligation”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20It%20is%20in,cooperate%20with%20authorities.%20
### moderation enforcement — risk unknown
> It is in our legitimate interests to protect our business, employees and users from illegal activities, inappropriate behavior or violations of terms that would be detrimental. We also have a duty to cooperate with authorities.
- Interpretation (disclaimed): This segment articulates the legitimate interests rationale for fraud prevention and enforcement processing, stating that it is in Anthropic's legitimate interests to protect its business, employees, and users from illegal activities, and that Anthropic has a duty to cooperate with authorities, thereby justifying the identified processing activities.
- Tier: All
- Location: Privacy Policy › “Legal obligation”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20It%20is%20in,cooperate%20with%20authorities.%20
### moderation enforcement — risk unknown
> In certain circumstances outside of the performance of our contract with you, we may rely on legitimate interests. It is in our legitimate interests to enforce the rules and policies governing use of our services, to maintain intended functionality and value for users. We aim to provide a safe, useful platform.
- Interpretation (disclaimed): Explains that Anthropic may rely on legitimate interests for enforcement activities outside contractual performance, granting permission to use personal data to enforce platform rules and maintain service integrity.
- Tier: All
- Location: Privacy Policy › “Legitimate interests”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20In%20certain%20circumstances,safe%2C%20useful%20platform.%20
### moderation enforcement — risk unknown
> To prevent and investigate fraud, abuse, and violations of our Usage Policy , unlawful or criminal activity, unauthorized access to or use of personal data or Anthropic systems and networks, to protect our rights and the rights of others, and to meet legal, governmental and institutional policy obligations Identity and Contact Data
- Interpretation (disclaimed): This segment identifies fraud prevention, abuse investigation, Usage Policy enforcement, and legal compliance as purposes for processing personal data, specifying Identity and Contact Data as a processed category and establishing the obligation to process such data for security and compliance purposes.
- Tier: All
- Location: Privacy Policy › “Contract”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=%20To%20prevent%20and,Identity%20and%20Contact%20Data
### tier differences — risk medium
> This Privacy Policy explains how we collect, use, disclose, and process your personal data when you use our website and other places where Anthropic acts as a data controller —for example, when you interact with Claude.ai or other products as a consumer for personal use (" Services ") or when Anthropic operates and provides our commercial customers and their end users with access to our commercial products, such as the Claude Team plan (“ Commercial Services ”).
This Privacy Policy does not apply where Anthropic acts as a data processor and processes personal data on behalf of commercial customers using Anthropic’s Commercial Services – for example, your employer has provisioned you a Claude for Work account, or you're using an app that is powered on the back-end with Claude. In those cases, the commercial customer is the controller, and you can review their policies for more information about how they handle your personal data.
- Interpretation (disclaimed): The policy distinguishes between Anthropic as controller (consumer/Claude.ai users) and Anthropic as processor (enterprise/employer-provisioned users). Enterprise end-users must look to their employer's privacy policy, not Anthropic's, for data rights—creating a potential gap in protections.
- Tier: Enterprise
- Location: Privacy Policy › “Privacy Policy \ Anthropic”
- Source: https://www.anthropic.com/legal/privacy
- Snapshot SHA-256: `68d25fe251e6a971fed543610f088cdce07e69d251a0d0a04b16eb114bfeeaf4`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/privacy#:~:text=This%20Privacy%20Policy%20explains,handle%20your%20personal%20data.
### tier differences — risk unknown
> Except as expressly provided in these Terms or where required by law, all payments are non-refundable. Please check your order carefully before confirming it, and see below for additional information about recurring charges for our subscriptions.
Additional fees. We may increase fees for our Services. If we charge additional fees in connection with our Services, we will give you an opportunity to review and accept the additional fees before you are charged. Also, additional fees may apply for additional Services or features of the Services that we may make available. If you do not accept any such additional fees, we may discontinue your access to the Services or features.
You agree that we will not be held liable for any errors caused by third-party payment processors used to process fees paid by you to us.
Subscriptions. To access Claude Pro and other subscription services we may make available to individuals, you must sign up for a subscription with us (a “ Subscription ”), first by creating an Account, and then following the subscription procedure on our Services. When you sign up for a Subscription, you agree to these Terms.
Subscription content, features, and services. The content, features, and other services provided as part of your Subscription, and the duration of your Subscription, will be described in the order process. We may change the content, features, and other services from time to time, and we do not guarantee that any particular piece of content, feature, or other service will always be available through the Services.
- Interpretation (disclaimed): This segment restricts refund rights by declaring payments non-refundable except as required by law or expressly provided, and establishes Anthropic's right to increase fees with prior notice and user opportunity to review, governing financial terms of paid tiers.
- Tier: All
- Location: § 6
- Source: https://www.anthropic.com/legal/consumer-terms
- Snapshot SHA-256: `302af768945b9867a7fa2a9480b1fdc80d85c227ffaf671e19ee2025428d0705`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/consumer-terms#:~:text=Except%20as%20expressly%20provided,through%20the%20Services.%20
### tier differences — risk unknown
> Subscription term and automatic renewal. If you sign up for a paid Subscription, we or the App Distributor will automatically charge your Payment Method on each agreed-upon periodic renewal date until you cancel. If your Subscription has a minimum term (the “ Initial Term ”), we will let you know during the order process. Your Subscription will last for the Initial Term and will automatically renew, and your Payment Method will be charged, at the end of the Initial Term for an additional term equal in duration to the Initial Term and will continue to renew and incur charges for additional terms equal in duration to the Initial Term (each such additional term, a “ Renewal Term ”) until you cancel.
Subscription cancellation. If you subscribed via our website, you may cancel your Subscription for any reason by using a method we may provide to you through our products—for example, for Claude Pro, in your customer portal—or by notifying us at support@anthropic.com . If you subscribed via an app, you’ll need to cancel via the App Distributor according to the App Distributor’s terms. Learn more here . To avoid renewal and charges for the next Renewal Term, cancel your subscription at least 24 hours before the last day of the Initial Term or any Renewal Term. For example, if you subscribe on January 25th for a Subscription with a one-month Initial Term, you must cancel the Subscription per the instructions by February 23rd (24 hours before February 24th) to avoid renewal and charges for the next Renewal Term.
- Interpretation (disclaimed): This segment establishes automatic renewal obligations for paid subscriptions, requiring periodic charges to the Payment Method until cancellation, and defines Initial Term and Renewal Term duration, creating binding financial obligations for subscription tiers.
- Tier: All
- Location: § 6
- Source: https://www.anthropic.com/legal/consumer-terms
- Snapshot SHA-256: `302af768945b9867a7fa2a9480b1fdc80d85c227ffaf671e19ee2025428d0705`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/consumer-terms#:~:text=%20Subscription%20term%20and,next%20Renewal%20Term.%20
### tier differences — risk unknown
> In the event of a cancellation, your fees will not be refunded, but your access to the Services will continue through the end of the Initial Term or any Renewal Term for which you previously paid fees.
Additional cancellation rights. If you are a resident of Brazil, Mexico, South Korea, or Taiwan, you have a legal right to change your mind and cancel the Subscription within 7 days of entering into the Subscription without giving a reason. To exercise the right to cancel in the 7-day cancellation period, you must inform us of your decision to cancel the Subscription by making a clear statement to us of such decision before the cancellation period has expired. The easiest way to do this is by cancelling your subscription in the customer portal, or you may contact us at support@anthropic.com. You may also use the model cancellation form in Appendix 1 of these Terms, but it is not obligatory. For further details on how to cancel, please see support.anthropic.com. We will acknowledge your cancellation, e.g., through our online customer portal or console.
If you cancel the Subscription under Section 6(4)(a), we will reimburse you all payments received from you for the cancelled Subscription. We will make the reimbursement without undue delay, and not later than 14 days after the day on which we are informed about your decision to cancel the Subscription. We will make the reimbursement using the same means of payment as you used for the initial transaction; you will not incur any fees as a result of the reimbursement.
- Interpretation (disclaimed): This segment grants users in Brazil, Mexico, South Korea, and Taiwan a legal right to cancel subscriptions within 7 days without reason, and establishes that upon cancellation access continues through the paid period without refund, creating jurisdiction-specific tier rights and cancellation procedures.
- Tier: All
- Location: § 6
- Source: https://www.anthropic.com/legal/consumer-terms
- Snapshot SHA-256: `302af768945b9867a7fa2a9480b1fdc80d85c227ffaf671e19ee2025428d0705`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/consumer-terms#:~:text=In%20the%20event%20of,of%20the%20reimbursement.%20
### tier differences — risk unknown
> Evaluation and Additional Services. In some cases, we may permit you to evaluate our Services for a limited time or with limited functionality. Use of our Services for evaluation purposes are for your personal, non-commercial use only.
You may need to accept additional terms to use certain Services. These additional terms will supplement our Terms for those Services and may change your rights or obligations for those Services, including your obligations to pay fees.
- Interpretation (disclaimed): This segment restricts evaluation-period use to personal, non-commercial purposes only, and notes that additional terms may supplement or modify user rights and obligations for certain services including fee obligations, thereby defining limitations specific to evaluation tiers.
- Tier: All
- Location: § 2
- Source: https://www.anthropic.com/legal/consumer-terms
- Snapshot SHA-256: `302af768945b9867a7fa2a9480b1fdc80d85c227ffaf671e19ee2025428d0705`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/consumer-terms#:~:text=%20Evaluation%20and%20Additional,obligations%20to%20pay%20fees.
### tier differences — risk unknown
> Subscription fees. You will pay the fees, either to us or to the App Distributor, for the Initial Term and each subsequent Renewal Term up front, at the start of that Initial Term or Renewal Term, as applicable. We have the right to make changes to the fees applicable to your Subscription from time to time, although we will not make any change to the fees applicable to your Subscription during the current Initial Term or Renewal Term, as applicable. If these changes result in an increase in the fees payable by you, we will inform you at least 30 days in advance of the change. You agree to the increase in fees payable by you unless you cancel the Subscription, as described in the paragraph (Subscription cancellation) immediately above, before the Renewal Term to which the increase in fees will apply.
- Interpretation (disclaimed): This segment imposes obligations on users to pay subscription fees upfront for each term, grants Anthropic the right to change subscription fees with 30 days' notice, and deems continued use after notice as acceptance of new fees, creating binding financial obligations for subscription tiers.
- Tier: All
- Location: § 6
- Source: https://www.anthropic.com/legal/consumer-terms
- Snapshot SHA-256: `302af768945b9867a7fa2a9480b1fdc80d85c227ffaf671e19ee2025428d0705`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/consumer-terms#:~:text=%20Subscription%20fees.%20You,in%20fees%20will%20apply.
### tier differences — risk unknown
> If you would like to use the Services during the 7-day cancellation period, you may do so. If you have used the Services during the 7-day cancellation period, and wish to cancel the Subscription, you can still do so by following the process in Section (4)(a) above, but we may retain an amount which is in proportion to what has been provided until you have communicated us your withdrawal from these Terms, in comparison with the full coverage of the Subscription.
The 7-day cancellation period will not reset if you change subscription tiers or cancel and then resubscribe, as you have already had an opportunity to test the Services.
- Interpretation (disclaimed): This segment establishes the procedure for exercising the 7-day cancellation right during the cancellation period, including proportional retention of fees for Services used, and clarifies that the cancellation period does not reset upon tier changes or resubscription.
- Tier: All
- Location: § 6
- Source: https://www.anthropic.com/legal/consumer-terms
- Snapshot SHA-256: `302af768945b9867a7fa2a9480b1fdc80d85c227ffaf671e19ee2025428d0705`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/consumer-terms#:~:text=%20If%20you%20would,to%20test%20the%20Services.
### tier differences — risk unknown
> Please note: Our Commercial Terms of Service govern your use of any Anthropic API key, the Anthropic Console , or any other Anthropic offerings that reference the Commercial Terms of Service. For clarity, this does not include Claude.ai or Claude Pro use for individuals or entities.
- Interpretation (disclaimed): This segment defines the boundary between consumer and commercial use terms, clarifying that the Commercial Terms of Service govern API key and Console use while excluding Claude.ai and Claude Pro individual use, thereby defining distinct service tiers with different governing documents.
- Tier: All
- Location: Terms of Service › “Consumer Terms of Service \ Anthropic”
- Source: https://www.anthropic.com/legal/consumer-terms
- Snapshot SHA-256: `302af768945b9867a7fa2a9480b1fdc80d85c227ffaf671e19ee2025428d0705`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/consumer-terms#:~:text=%20Please%20note%3A%20Our,individuals%20or%20entities.%20
### tier differences — risk unknown
> Fees and billing. You may be required to pay us fees to access or use our Services or certain features of our Services. You are responsible for paying any applicable fees listed for the Services on the Model Pricing Page unless otherwise communicated to you by Anthropic in writing.
If you purchase access to our Services or features of our Services, you must provide complete and accurate billing information (“ Payment Method ”). You agree that we may charge the Payment Method for any applicable fees listed on our Services and any applicable tax. If the fees for these Services or features are specified to be recurring or based on usage, you agree that we may charge these fees and applicable taxes to the Payment Method on a periodic basis.
If you purchase access to our Services through a distributor (e.g. an app store) ( “App Distributor” ), then you will make payment to the App Distributor, and the App Distributor’s terms in relation to payment methods, billing, and refunds will apply instead of these Terms.
- Interpretation (disclaimed): This segment imposes obligations on users to pay applicable fees, provide accurate billing information, and authorizes Anthropic to charge the Payment Method for fees and taxes, establishing the financial obligations tied to paid service tiers.
- Tier: All
- Location: § 6
- Source: https://www.anthropic.com/legal/consumer-terms
- Snapshot SHA-256: `302af768945b9867a7fa2a9480b1fdc80d85c227ffaf671e19ee2025428d0705`
- Wayback: —
- Deep link: https://www.anthropic.com/legal/consumer-terms#:~:text=%20Fees%20and%20billing.,instead%20of%20these%20Terms.
---
# GRC Risk Assessment — DeepSeek Chat
- Platform: **DeepSeek Chat** (deepseek-chat)
- Headline risk rating: **HIGH**
- Website: https://chat.deepseek.com
- Generated: 2026-06-14T10:29:58.071Z
- Findings (verified, published): **287**
> Every assertion is anchored to a verbatim quote with a SHA-256 snapshot hash and a Wayback archive URL for independent verification. Informational only; not legal advice.
## Control crosswalk (NIST AI RMF 1.0 + ISO/IEC 42001)
| Surface | Risk | Confidence | NIST AI RMF | ISO/IEC 42001 |
|---|---|---|---|---|
| training use | high | high | MAP-2.3 / MEASURE-2.6 (data provenance & training use) | ISO 42001 A.7.4 (data for AI systems) |
| training use | medium | low | MAP-2.3 / MEASURE-2.6 (data provenance & training use) | ISO 42001 A.7.4 (data for AI systems) |
| training use | medium | low | MAP-2.3 / MEASURE-2.6 (data provenance & training use) | ISO 42001 A.7.4 (data for AI systems) |
| training use | medium | high | MAP-2.3 / MEASURE-2.6 (data provenance & training use) | ISO 42001 A.7.4 (data for AI systems) |
| training use | ambiguous | low | MAP-2.3 / MEASURE-2.6 (data provenance & training use) | ISO 42001 A.7.4 (data for AI systems) |
| training use | unknown | high | MAP-2.3 / MEASURE-2.6 (data provenance & training use) | ISO 42001 A.7.4 (data for AI systems) |
| training use | unknown | high | MAP-2.3 / MEASURE-2.6 (data provenance & training use) | ISO 42001 A.7.4 (data for AI systems) |
| training use | unknown | high | MAP-2.3 / MEASURE-2.6 (data provenance & training use) | ISO 42001 A.7.4 (data for AI systems) |
| training use | unknown | high | MAP-2.3 / MEASURE-2.6 (data provenance & training use) | ISO 42001 A.7.4 (data for AI systems) |
| training use | unknown | high | MAP-2.3 / MEASURE-2.6 (data provenance & training use) | ISO 42001 A.7.4 (data for AI systems) |
| training use | unknown | high | MAP-2.3 / MEASURE-2.6 (data provenance & training use) | ISO 42001 A.7.4 (data for AI systems) |
| training use | unknown | high | MAP-2.3 / MEASURE-2.6 (data provenance & training use) | ISO 42001 A.7.4 (data for AI systems) |
| training use | unknown | high | MAP-2.3 / MEASURE-2.6 (data provenance & training use) | ISO 42001 A.7.4 (data for AI systems) |
| training use | unknown | high | MAP-2.3 / MEASURE-2.6 (data provenance & training use) | ISO 42001 A.7.4 (data for AI systems) |
| prompt ownership | medium | medium | MAP-2.3 (input data rights) | ISO 42001 A.7.2 (data acquisition) |
| prompt ownership | medium | medium | MAP-2.3 (input data rights) | ISO 42001 A.7.2 (data acquisition) |
| prompt ownership | unknown | high | MAP-2.3 (input data rights) | ISO 42001 A.7.2 (data acquisition) |
| prompt ownership | unknown | high | MAP-2.3 (input data rights) | ISO 42001 A.7.2 (data acquisition) |
| prompt ownership | unknown | high | MAP-2.3 (input data rights) | ISO 42001 A.7.2 (data acquisition) |
| prompt ownership | unknown | high | MAP-2.3 (input data rights) | ISO 42001 A.7.2 (data acquisition) |
| output ownership | high | low | MAP-1.1 (IP & output rights) | ISO 42001 A.5.2 (AI policy / IP) |
| output ownership | unknown | high | MAP-1.1 (IP & output rights) | ISO 42001 A.5.2 (AI policy / IP) |
| output ownership | unknown | high | MAP-1.1 (IP & output rights) | ISO 42001 A.5.2 (AI policy / IP) |
| output ownership | unknown | high | MAP-1.1 (IP & output rights) | ISO 42001 A.5.2 (AI policy / IP) |
| output ownership | unknown | high | MAP-1.1 (IP & output rights) | ISO 42001 A.5.2 (AI policy / IP) |
| commercial use | medium | low | MANAGE-1.3 (use limitations) | ISO 42001 A.9.2 (intended use) |
| commercial use | low | high | MANAGE-1.3 (use limitations) | ISO 42001 A.9.2 (intended use) |
| commercial use | unknown | high | MANAGE-1.3 (use limitations) | ISO 42001 A.9.2 (intended use) |
| commercial use | unknown | high | MANAGE-1.3 (use limitations) | ISO 42001 A.9.2 (intended use) |
| commercial use | unknown | high | MANAGE-1.3 (use limitations) | ISO 42001 A.9.2 (intended use) |
| commercial use | unknown | high | MANAGE-1.3 (use limitations) | ISO 42001 A.9.2 (intended use) |
| privacy data use | medium | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | medium | medium | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | medium | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | medium | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | medium | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | medium | low | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | low | medium | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | low | medium | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | low | medium | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | ambiguous | low | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | medium | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | medium | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | medium | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | medium | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | low | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | low | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| privacy data use | unknown | high | MEASURE-2.10 (privacy risk) | ISO 42001 A.7.5 (privacy) |
| data retention | medium | medium | MANAGE-2.2 (data lifecycle) | ISO 42001 A.7.6 (data lifecycle) |
| data retention | medium | high | MANAGE-2.2 (data lifecycle) | ISO 42001 A.7.6 (data lifecycle) |
| data retention | low | high | MANAGE-2.2 (data lifecycle) | ISO 42001 A.7.6 (data lifecycle) |
| data retention | ambiguous | low | MANAGE-2.2 (data lifecycle) | ISO 42001 A.7.6 (data lifecycle) |
| data retention | unknown | high | MANAGE-2.2 (data lifecycle) | ISO 42001 A.7.6 (data lifecycle) |
| data retention | unknown | high | MANAGE-2.2 (data lifecycle) | ISO 42001 A.7.6 (data lifecycle) |
| data retention | unknown | high | MANAGE-2.2 (data lifecycle) | ISO 42001 A.7.6 (data lifecycle) |
| data retention | unknown | high | MANAGE-2.2 (data lifecycle) | ISO 42001 A.7.6 (data lifecycle) |
| data retention | unknown | high | MANAGE-2.2 (data lifecycle) | ISO 42001 A.7.6 (data lifecycle) |
| data retention | unknown | medium | MANAGE-2.2 (data lifecycle) | ISO 42001 A.7.6 (data lifecycle) |
| data retention | unknown | high | MANAGE-2.2 (data lifecycle) | ISO 42001 A.7.6 (data lifecycle) |
| data retention | unknown | high | MANAGE-2.2 (data lifecycle) | ISO 42001 A.7.6 (data lifecycle) |
| data retention | unknown | high | MANAGE-2.2 (data lifecycle) | ISO 42001 A.7.6 (data lifecycle) |
| data retention | unknown | high | MANAGE-2.2 (data lifecycle) | ISO 42001 A.7.6 (data lifecycle) |
| data retention | unknown | medium | MANAGE-2.2 (data lifecycle) | ISO 42001 A.7.6 (data lifecycle) |
| data retention | unknown | high | MANAGE-2.2 (data lifecycle) | ISO 42001 A.7.6 (data lifecycle) |
| subprocessors data sharing | high | medium | MAP-4.1 (third-party/supply-chain) | ISO 42001 A.10.2 (third parties) |
| subprocessors data sharing | high | medium | MAP-4.1 (third-party/supply-chain) | ISO 42001 A.10.2 (third parties) |
| subprocessors data sharing | high | medium | MAP-4.1 (third-party/supply-chain) | ISO 42001 A.10.2 (third parties) |
| subprocessors data sharing | medium | medium | MAP-4.1 (third-party/supply-chain) | ISO 42001 A.10.2 (third parties) |
| subprocessors data sharing | unknown | high | MAP-4.1 (third-party/supply-chain) | ISO 42001 A.10.2 (third parties) |
| subprocessors data sharing | unknown | high | MAP-4.1 (third-party/supply-chain) | ISO 42001 A.10.2 (third parties) |
| subprocessors data sharing | unknown | high | MAP-4.1 (third-party/supply-chain) | ISO 42001 A.10.2 (third parties) |
| subprocessors data sharing | unknown | high | MAP-4.1 (third-party/supply-chain) | ISO 42001 A.10.2 (third parties) |
| subprocessors data sharing | unknown | high | MAP-4.1 (third-party/supply-chain) | ISO 42001 A.10.2 (third parties) |
| subprocessors data sharing | unknown | high | MAP-4.1 (third-party/supply-chain) | ISO 42001 A.10.2 (third parties) |
| subprocessors data sharing | unknown | high | MAP-4.1 (third-party/supply-chain) | ISO 42001 A.10.2 (third parties) |
| subprocessors data sharing | unknown | high | MAP-4.1 (third-party/supply-chain) | ISO 42001 A.10.2 (third parties) |
| subprocessors data sharing | unknown | high | MAP-4.1 (third-party/supply-chain) | ISO 42001 A.10.2 (third parties) |
| subprocessors data sharing | unknown | high | MAP-4.1 (third-party/supply-chain) | ISO 42001 A.10.2 (third parties) |
| subprocessors data sharing | unknown | high | MAP-4.1 (third-party/supply-chain) | ISO 42001 A.10.2 (third parties) |
| subprocessors data sharing | unknown | high | MAP-4.1 (third-party/supply-chain) | ISO 42001 A.10.2 (third parties) |
| subprocessors data sharing | unknown | high | MAP-4.1 (third-party/supply-chain) | ISO 42001 A.10.2 (third parties) |
| subprocessors data sharing | unknown | high | MAP-4.1 (third-party/supply-chain) | ISO 42001 A.10.2 (third parties) |
| subprocessors data sharing | unknown | high | MAP-4.1 (third-party/supply-chain) | ISO 42001 A.10.2 (third parties) |
| subprocessors data sharing | unknown | high | MAP-4.1 (third-party/supply-chain) | ISO 42001 A.10.2 (third parties) |
| subprocessors data sharing | unknown | high | MAP-4.1 (third-party/supply-chain) | ISO 42001 A.10.2 (third parties) |
| subprocessors data sharing | unknown | high | MAP-4.1 (third-party/supply-chain) | ISO 42001 A.10.2 (third parties) |
| subprocessors data sharing | unknown | high | MAP-4.1 (third-party/supply-chain) | ISO 42001 A.10.2 (third parties) |
| subprocessors data sharing | unknown | high | MAP-4.1 (third-party/supply-chain) | ISO 42001 A.10.2 (third parties) |
| subprocessors data sharing | unknown | high | MAP-4.1 (third-party/supply-chain) | ISO 42001 A.10.2 (third parties) |
| subprocessors data sharing | unknown | high | MAP-4.1 (third-party/supply-chain) | ISO 42001 A.10.2 (third parties) |
| subprocessors data sharing | unknown | high | MAP-4.1 (third-party/supply-chain) | ISO 42001 A.10.2 (third parties) |
| subprocessors data sharing | unknown | high | MAP-4.1 (third-party/supply-chain) | ISO 42001 A.10.2 (third parties) |
| subprocessors data sharing | unknown | high | MAP-4.1 (third-party/supply-chain) | ISO 42001 A.10.2 (third parties) |
| subprocessors data sharing | unknown | high | MAP-4.1 (third-party/supply-chain) | ISO 42001 A.10.2 (third parties) |
| subprocessors data sharing | unknown | high | MAP-4.1 (third-party/supply-chain) | ISO 42001 A.10.2 (third parties) |
| subprocessors data sharing | unknown | high | MAP-4.1 (third-party/supply-chain) | ISO 42001 A.10.2 (third parties) |
| subprocessors data sharing | unknown | high | MAP-4.1 (third-party/supply-chain) | ISO 42001 A.10.2 (third parties) |
| subprocessors data sharing | unknown | high | MAP-4.1 (third-party/supply-chain) | ISO 42001 A.10.2 (third parties) |
| subprocessors data sharing | unknown | high | MAP-4.1 (third-party/supply-chain) | ISO 42001 A.10.2 (third parties) |
| subprocessors data sharing | unknown | high | MAP-4.1 (third-party/supply-chain) | ISO 42001 A.10.2 (third parties) |
| subprocessors data sharing | unknown | high | MAP-4.1 (third-party/supply-chain) | ISO 42001 A.10.2 (third parties) |
| audit rights dpa residency | high | medium | GOVERN-2.1 (accountability, audit) | ISO 42001 A.6.2 (internal audit) |
| audit rights dpa residency | high | high | GOVERN-2.1 (accountability, audit) | ISO 42001 A.6.2 (internal audit) |
| audit rights dpa residency | low | high | GOVERN-2.1 (accountability, audit) | ISO 42001 A.6.2 (internal audit) |
| audit rights dpa residency | unknown | high | GOVERN-2.1 (accountability, audit) | ISO 42001 A.6.2 (internal audit) |
| audit rights dpa residency | unknown | high | GOVERN-2.1 (accountability, audit) | ISO 42001 A.6.2 (internal audit) |
| audit rights dpa residency | unknown | high | GOVERN-2.1 (accountability, audit) | ISO 42001 A.6.2 (internal audit) |
| audit rights dpa residency | unknown | medium | GOVERN-2.1 (accountability, audit) | ISO 42001 A.6.2 (internal audit) |
| audit rights dpa residency | unknown | medium | GOVERN-2.1 (accountability, audit) | ISO 42001 A.6.2 (internal audit) |
| audit rights dpa residency | unknown | high | GOVERN-2.1 (accountability, audit) | ISO 42001 A.6.2 (internal audit) |
| audit rights dpa residency | unknown | high | GOVERN-2.1 (accountability, audit) | ISO 42001 A.6.2 (internal audit) |
| audit rights dpa residency | unknown | high | GOVERN-2.1 (accountability, audit) | ISO 42001 A.6.2 (internal audit) |
| audit rights dpa residency | unknown | high | GOVERN-2.1 (accountability, audit) | ISO 42001 A.6.2 (internal audit) |
| audit rights dpa residency | unknown | high | GOVERN-2.1 (accountability, audit) | ISO 42001 A.6.2 (internal audit) |
| audit rights dpa residency | unknown | high | GOVERN-2.1 (accountability, audit) | ISO 42001 A.6.2 (internal audit) |
| audit rights dpa residency | unknown | high | GOVERN-2.1 (accountability, audit) | ISO 42001 A.6.2 (internal audit) |
| audit rights dpa residency | unknown | high | GOVERN-2.1 (accountability, audit) | ISO 42001 A.6.2 (internal audit) |
| audit rights dpa residency | unknown | medium | GOVERN-2.1 (accountability, audit) | ISO 42001 A.6.2 (internal audit) |
| audit rights dpa residency | unknown | medium | GOVERN-2.1 (accountability, audit) | ISO 42001 A.6.2 (internal audit) |
| audit rights dpa residency | unknown | medium | GOVERN-2.1 (accountability, audit) | ISO 42001 A.6.2 (internal audit) |
| audit rights dpa residency | unknown | medium | GOVERN-2.1 (accountability, audit) | ISO 42001 A.6.2 (internal audit) |
| indemnity liability | high | high | GOVERN-6.1 (liability allocation) | ISO 42001 A.9.4 (responsibilities) |
| indemnity liability | high | high | GOVERN-6.1 (liability allocation) | ISO 42001 A.9.4 (responsibilities) |
| indemnity liability | high | medium | GOVERN-6.1 (liability allocation) | ISO 42001 A.9.4 (responsibilities) |
| indemnity liability | medium | medium | GOVERN-6.1 (liability allocation) | ISO 42001 A.9.4 (responsibilities) |
| indemnity liability | medium | high | GOVERN-6.1 (liability allocation) | ISO 42001 A.9.4 (responsibilities) |
| indemnity liability | unknown | high | GOVERN-6.1 (liability allocation) | ISO 42001 A.9.4 (responsibilities) |
| indemnity liability | unknown | high | GOVERN-6.1 (liability allocation) | ISO 42001 A.9.4 (responsibilities) |
| indemnity liability | unknown | high | GOVERN-6.1 (liability allocation) | ISO 42001 A.9.4 (responsibilities) |
| indemnity liability | unknown | high | GOVERN-6.1 (liability allocation) | ISO 42001 A.9.4 (responsibilities) |
| indemnity liability | unknown | high | GOVERN-6.1 (liability allocation) | ISO 42001 A.9.4 (responsibilities) |
| indemnity liability | unknown | high | GOVERN-6.1 (liability allocation) | ISO 42001 A.9.4 (responsibilities) |
| indemnity liability | unknown | high | GOVERN-6.1 (liability allocation) | ISO 42001 A.9.4 (responsibilities) |
| indemnity liability | unknown | high | GOVERN-6.1 (liability allocation) | ISO 42001 A.9.4 (responsibilities) |
| indemnity liability | unknown | high | GOVERN-6.1 (liability allocation) | ISO 42001 A.9.4 (responsibilities) |
| indemnity liability | unknown | high | GOVERN-6.1 (liability allocation) | ISO 42001 A.9.4 (responsibilities) |
| indemnity liability | unknown | high | GOVERN-6.1 (liability allocation) | ISO 42001 A.9.4 (responsibilities) |
| indemnity liability | unknown | high | GOVERN-6.1 (liability allocation) | ISO 42001 A.9.4 (responsibilities) |
| indemnity liability | unknown | high | GOVERN-6.1 (liability allocation) | ISO 42001 A.9.4 (responsibilities) |
| indemnity liability | unknown | high | GOVERN-6.1 (liability allocation) | ISO 42001 A.9.4 (responsibilities) |
| indemnity liability | unknown | high | GOVERN-6.1 (liability allocation) | ISO 42001 A.9.4 (responsibilities) |
| indemnity liability | unknown | high | GOVERN-6.1 (liability allocation) | ISO 42001 A.9.4 (responsibilities) |
| indemnity liability | unknown | high | GOVERN-6.1 (liability allocation) | ISO 42001 A.9.4 (responsibilities) |
| indemnity liability | unknown | high | GOVERN-6.1 (liability allocation) | ISO 42001 A.9.4 (responsibilities) |
| confidentiality | unknown | high | MEASURE-2.7 (confidentiality) | ISO 42001 A.7.5 (information handling) |
| governing law disputes | high | high | GOVERN-1.1 (legal/regulatory) | ISO 42001 A.5.2 (legal context) |
| governing law disputes | high | high | GOVERN-1.1 (legal/regulatory) | ISO 42001 A.5.2 (legal context) |
| governing law disputes | high | high | GOVERN-1.1 (legal/regulatory) | ISO 42001 A.5.2 (legal context) |
| governing law disputes | unknown | low | GOVERN-1.1 (legal/regulatory) | ISO 42001 A.5.2 (legal context) |
| governing law disputes | unknown | high | GOVERN-1.1 (legal/regulatory) | ISO 42001 A.5.2 (legal context) |
| governing law disputes | unknown | high | GOVERN-1.1 (legal/regulatory) | ISO 42001 A.5.2 (legal context) |
| governing law disputes | ambiguous | low | GOVERN-1.1 (legal/regulatory) | ISO 42001 A.5.2 (legal context) |
| governing law disputes | unknown | high | GOVERN-1.1 (legal/regulatory) | ISO 42001 A.5.2 (legal context) |
| governing law disputes | unknown | high | GOVERN-1.1 (legal/regulatory) | ISO 42001 A.5.2 (legal context) |
| governing law disputes | unknown | high | GOVERN-1.1 (legal/regulatory) | ISO 42001 A.5.2 (legal context) |
| moderation enforcement | high | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | high | medium | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | medium | medium | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | medium | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | medium | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | medium | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| moderation enforcement | unknown | high | MANAGE-4.1 (enforcement) | ISO 42001 A.9.3 (operation controls) |
| tier differences | medium | low | MAP-3.4 (context of use by tier) | ISO 42001 A.9.2 (intended use) |
| tier differences | unknown | high | MAP-3.4 (context of use by tier) | ISO 42001 A.9.2 (intended use) |
| tier differences | unknown | high | MAP-3.4 (context of use by tier) | ISO 42001 A.9.2 (intended use) |
## Evidence (verbatim, with provenance)
### training use — risk high
> To improve and develop the Services and to train and improve our
technology, such as our machine learning models and algorithms.
Including by monitoring interactions and usage across your devices,
analyzing how people are using it, and training and improving our
technology.
- Interpretation (disclaimed): This is an explicit statement that user-provided content and behavioral data are used for model training. No tier-based exemption or opt-out mechanism is referenced here, meaning all users are subject to this use.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=To%20improve%20and%20develop,and%20improving%20our%20technology.
### training use — risk medium
> the right to opt-out of using your Personal Data for training our
models or optimizing our technologies.
- Interpretation (disclaimed): The framing as an opt-out right implies that user personal data (including inputs/outputs) is used for model training by default unless the user takes action to stop it. This is a material risk for users who do not notice or exercise the opt-out.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=the%20right%20to%20opt-out,or%20optimizing%20our%20technologies.
### training use — risk medium
> We may obtain publicly available Personal Data via online sources to
train our models and provide Services.
- Interpretation (disclaimed): While this refers to third-party public data rather than direct user submissions, it signals a broad data-gathering posture for model training that may sweep in user-published content (e.g., shared Dialogue URLs).
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=We%20may%20obtain%20publicly,models%20and%20provide%20Services.
### training use — risk medium
> Under the premise of secure encryption technology processing, strict
de-identification rendering, and irreversibility to identify specific
individuals, we may, to a minimal extent, use Inputs and Outputs to
provide, maintain, operate, develop or improve the Services or the
underlying technologies supporting the Services. If you refuse to allow
us to process the data in the manner described above, you can opt out by
turning off "Improve the model for everyone"
- Interpretation (disclaimed): Default training use applies unless users actively opt out. The 'minimal extent' and de-identification conditions are qualitatively described but not defined with measurable standards, leaving risk ambiguous. Opt-out mechanism exists but requires affirmative user action.
- Tier: All
- Location: § 4.3
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=Under%20the%20premise%20of,the%20model%20for%20everyone%22
### training use — risk ambiguous
> These models can predict the next token
by encoding and computing the input information (including text, images,
files, and more), thereby possessing text generation and conversational
abilities. T
- Interpretation (disclaimed): No explicit training-use clause is present in this excerpt. The reference to a separate 'Model Mechanism and Training Methods' document suggests training rules may exist elsewhere but are not captured here, creating a gap in user notice within the Terms themselves.
- Tier: All
- Location: § 1.2
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=These%20models%20can%20predict,and%20conversational%20abilities.%20T
### training use — risk unknown
> 4.3 Under the premise of secure encryption technology processing, strict
de-identification rendering, and irreversibility to identify specific
individuals, we may, to a minimal extent, use Inputs and Outputs to
provide, maintain, operate, develop or improve the Services or the
underlying technologies supporting the Services. If you refuse to allow
us to process the data in the manner described above, you can opt out by
turning off "Improve the model for everyone".
- Interpretation (disclaimed): This segment permits DeepSeek to use Inputs and Outputs to maintain, operate, develop, or improve the Services and underlying technologies, subject to de-identification and encryption, with an opt-out mechanism via a platform setting.
- Tier: All
- Location: § 4.3
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%204.3%20Under%20the,the%20model%20for%20everyone%22.
### training use — risk unknown
> 5.5 We have published the " Model Principles and Training Methods Explanation " to clarify the foundation model's training process and content
generation mechanisms, helping you understand AI technology and guard
against various risks that may arise from misuse or improper use.
- Interpretation (disclaimed): This segment incorporates by reference DeepSeek's 'Model Principles and Training Methods Explanation' document, which clarifies the foundation model's training process and content generation mechanisms.
- Tier: All
- Location: § 5.5
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%205.5%20We%20have,misuse%20or%20improper%20use.
### training use — risk unknown
> train our models and provide Services.
- Interpretation (disclaimed): Explicitly states that publicly available Personal Data obtained via online sources is used to train models and provide Services, granting the platform a permissive right to use such data for model training.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=train%20our%20models%20and%20provide%20Services.
### training use — risk unknown
> - To improve and develop the Services and to train and improve our
- Interpretation (disclaimed): Grants the platform permission to use Personal Data to improve and develop Services and to train and improve technology including machine learning models and algorithms.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=-%20To%20improve%20and,train%20and%20improve%20our
### training use — risk unknown
> technology, such as our machine learning models and algorithms.
- Interpretation (disclaimed): Continues the statement permitting use of Personal Data for improving machine learning models and algorithms, reinforcing the training-use permission.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=technology%2C%20such%20as%20our,learning%20models%20and%20algorithms.
### training use — risk unknown
> analyzing how people are using it, and training and improving our
technology.
- Interpretation (disclaimed): Further details training use to include analyzing how people use the Services and improving technology through that analysis, broadening the scope of the training-use permission.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=analyzing%20how%20people%20are,and%20improving%20our%20technology.
### training use — risk unknown
> - the right to opt-out of using your Personal Data for training our
- Interpretation (disclaimed): This segment grants users the right to opt-out of having their Personal Data used for training models or optimizing technologies, establishing a user right against a specific data processing activity.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=-%20the%20right%20to,Data%20for%20training%20our
### training use — risk unknown
> models or optimizing our technologies.
- Interpretation (disclaimed): Continuation of segment 120, completing the description of the opt-out right regarding model training and technology optimization, forming part of the same operative clause.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=models%20or%20optimizing%20our%20technologies.
### training use — risk unknown
> | To improve and develop the Services and to train and improve our
technology, such as our machine learning models and algorithms.
Including by monitoring interactions and usage across your
devices, analyzing how people are using it, and training and
improving our technology. | Account Personal Data
User Input
Personal
Data When You Contact Us
Device and Network Personal Data
Log Personal Data
Location Personal Data
Cookies | Our legitimate interests to identify and resolve issues with the
Platform and to improve the Platform; and to conduct research and
protect Personal Data through aggregation or anonymization,
consistent with data minimization and privacy by design
principles.
Your consent when we
ask for it to process your Personal Data for a specific purpose to
provide services. |
- Interpretation (disclaimed): Table row defining the legal basis of legitimate interests for processing Personal Data to improve services and train machine learning models and algorithms, establishing the lawful basis for training-related data use under EEA/UK law.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=%7C%20To%20improve%20and,purpose%20to%3Cbr%3Eprovide%20services.%20%7C
### prompt ownership — risk medium
> By submitting Inputs to our Services, you
represent and warrant that you have all rights, licenses, and
permissions that are necessary for us to process the Inputs under our
Terms. Y
- Interpretation (disclaimed): By warranting the right for DeepSeek to 'process' inputs, users effectively grant a processing license. If inputs contain third-party content without sufficient rights, the user bears full liability.
- Tier: All
- Location: § 4.1
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=By%20submitting%20Inputs%20to,under%20our%20Terms.%20Y
### prompt ownership — risk medium
> we grant you
a revocable, non-transferable, and non-exclusive right to legally use
this product and related services. All other rights not expressly
authorized by these Terms are reserved by DeepSeek, and before
exercising such rights, you must obtain written permission from
DeepSeek.
- Interpretation (disclaimed): The broad reservation of all non-expressly-granted rights, combined with no explicit statement that users retain ownership of their inputs, creates ambiguity about whether DeepSeek claims any license or rights over user-submitted prompts.
- Tier: All
- Location: § 3.1
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=we%20grant%20you%20a,written%20permission%20from%20DeepSeek.
### prompt ownership — risk unknown
> 4.1 You are responsible for all Inputs you submit to our Services and
corresponding Outputs. By submitting Inputs to our Services, you
represent and warrant that you have all rights, licenses, and
permissions that are necessary for us to process the Inputs under our
Terms. You also represent and warrant that your submitting Inputs to us
and corresponding Outputs will not violate our Terms, or any laws or
regulations applicable to those Inputs and Outputs.
- Interpretation (disclaimed): This segment imposes obligations on users to be responsible for all Inputs and Outputs, requires representation and warranty that users hold all necessary rights and licenses for DeepSeek to process Inputs, and warrants that Inputs and Outputs will not violate applicable law or the Terms, establishing user responsibility and licensing obligations for submitted content.
- Tier: All
- Location: § 4.1
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%204.1%20You%20are,those%20Inputs%20and%20Outputs.
### prompt ownership — risk unknown
> 6.1 DeepSeek is the developer and operator of this service and holds all
rights within the scope permitted by laws and regulations in this
service (including but not limited to software, technology, programs,
code, model weights and parameters, user interfaces, web pages, text,
graphics, layout designs, trademarks, electronic documents, etc.),
including but not limited to copyrights, trademark rights, patent
rights, and other intellectual property rights. However, this excludes
rights that relevant rights holders are entitled to under legal
provisions or the terms of this agreement (such as Inputs and Outputs).
- Interpretation (disclaimed): This segment defines the scope of DeepSeek's intellectual property rights in the Service, including software, code, model weights and parameters, trademarks, and other assets, establishing ownership rights reserved by DeepSeek.
- Tier: All
- Location: § 6.1
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%206.1%20DeepSeek%20is,as%20Inputs%20and%20Outputs).
### prompt ownership — risk unknown
> - **User Input.** When
- Interpretation (disclaimed): Introduces the 'User Input' category, labeling and beginning to define the data elements comprising user-submitted prompts and inputs to the model.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=-%20**User%20Input.**%20When
### prompt ownership — risk unknown
> you use our Services, we may collect your text input, voice input,
prompt, uploaded files, photos, feedback, chat history, or other
content that you provide to our model and Services (“Prompts” or
“Inputs”). We generate responses (“Outputs”) based on your Inputs.
- Interpretation (disclaimed): Defines 'Prompts'/'Inputs' and 'Outputs,' establishes DeepSeek's obligation to collect text, voice, files, photos, feedback, and chat history submitted by users, and acknowledges the model generates responses from those inputs — directly relevant to prompt and output ownership and data use.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=you%20use%20our%20Services%2C,based%20on%20your%20Inputs.
### output ownership — risk high
> we grant you
a revocable, non-transferable, and non-exclusive right to legally use
this product and related services. All other rights not expressly
authorized by these Terms are reserved by DeepSeek, and before
exercising such rights, you must obtain written permission from
DeepSeek.
- Interpretation (disclaimed): Absence of an explicit output ownership assignment, paired with a sweeping rights reservation clause, means the ownership of AI-generated outputs is legally ambiguous. Users only receive a revocable, non-transferable, non-exclusive use right, which is materially weaker than ownership.
- Tier: All
- Location: § 3.1
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=we%20grant%20you%20a,written%20permission%20from%20DeepSeek.
### output ownership — risk unknown
> 5.1
Any and all Outputs provided by this Service are generated by the
foundation model and shall not constitute DeepSeek's legal declaration
of intent , nor shall the Outputs represent DeepSeek's views or opinions in any
event. If any Output references any third-party products or services,
this does not mean that DeepSeek endorses that Output.
- Interpretation (disclaimed): This segment disclaims that Outputs constitute DeepSeek's legal declarations of intent, views, or opinions, and that references to third-party products do not represent endorsement, limiting DeepSeek's legal accountability for generated content.
- Tier: All
- Location: § 5.1
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%205.1%20Any%20and,DeepSeek%20endorses%20that%20Output.
### output ownership — risk unknown
> 4.2 Subject to applicable law and our Terms, you have the following
rights regarding the Inputs and Outputs of the Services: (1) You retain
any rights, title, and interests—if any—in the Inputs you submit; (2) We
assign any rights, title, and interests—if any—in the Outputs of the
Services to you. Due to the nature of our Services and artificial
intelligence generally, Outputs may not be unique and other users may
receive similar Outputs from our Services. Our assignment above does not
extend to other users’ Outputs. (3) You may apply the Inputs and Outputs
of the Services to a wide range of use cases, including personal use,
academic research, derivative product development, training other models
(such as model distillation), etc., as long as such usage is legal and
adhere to these Terms.
- Interpretation (disclaimed): This segment grants users retained rights in their Inputs and assigns DeepSeek's rights in Outputs to users, while clarifying the assignment does not extend to other users' Outputs — establishing ownership rights for both inputs and outputs.
- Tier: All
- Location: § 4.2
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%204.2%20Subject%20to,adhere%20to%20these%20Terms.
### output ownership — risk unknown
> reading a user’s request and, in response, predicting the words most
likely to appear next. In some cases, the words most likely to appear
next may not be the most factually accurate.
- Interpretation (disclaimed): Continues the disclaimer noting that predicted words may not be factually accurate, establishing the factual basis for the disclaimer of reliance on model output accuracy.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=reading%20a%20user%E2%80%99s%20request,the%20most%20factually%20accurate.
### output ownership — risk unknown
> **For this reason, you should not rely on the factual accuracy of**
**Output from our models. If you notice that Output contains factually**
**inaccurate Personal Data about you and you would like to request a**
**correction or removal of the Personal Data, you can submit these**
**requests through**
**[privacy@deepseek.com](mailto:privacy@deepseek.com) and**
**we will consider your request based on applicable law and the**
**technical capabilities of our models.**
- Interpretation (disclaimed): Explicitly disclaims that users should not rely on the factual accuracy of model output, and provides a procedure for requesting correction or removal of inaccurate Personal Data, combining a liability disclaimer with a user remedy procedure.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=**For%20this%20reason%2C%20you,capabilities%20of%20our%20models.**
### commercial use — risk medium
> If you publish or
disseminate outputs generated by the Services, you must: (1) proactively
verify the authenticity and accuracy of the output content to avoid
spreading false information; (2) clearly indicate that the output
content is generated by artificial intelligence, to alert the public to
the synthetic nature of the content; (3) avoid publishing and
disseminating any output content that violates the usage specifications
of these Term
- Interpretation (disclaimed): The clause imposes mandatory disclosure and accuracy-verification obligations on any publication/dissemination of outputs, which directly affects commercial exploitation. These conditions apply universally and non-compliance risks breach of terms.
- Tier: All
- Location: § 3.1
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=If%20you%20publish%20or,specifications%20of%20these%20Term
### commercial use — risk low
> You may apply the Inputs and Outputs
of the Services to a wide range of use cases, including personal use,
academic research, derivative product development, training other models
(such as model distillation), etc., as long as such usage is legal and
adhere to these Terms.
- Interpretation (disclaimed): DeepSeek expressly permits a wide range of uses including commercial and derivative use. The caveat that use must be 'legal and adhere to these Terms' is a standard but meaningful limitation.
- Tier: All
- Location: § 4.2
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=You%20may%20apply%20the,to%20these%20Terms.%20
### commercial use — risk unknown
> 3.1 You fully understand and agree that, under these Terms, we grant you
a revocable, non-transferable, and non-exclusive right to legally use
this product and related services. All other rights not expressly
authorized by these Terms are reserved by DeepSeek, and before
exercising such rights, you must obtain written permission from
DeepSeek. Additionally, DeepSeek's failure to exercise any of these
rights does not constitute a waiver of those rights. If you publish or
disseminate outputs generated by the Services, you must: (1) proactively
verify the authenticity and accuracy of the output content to avoid
spreading false information; (2) clearly indicate that the output
content is generated by artificial intelligence, to alert the public to
the synthetic nature of the content; (3) avoid publishing and
disseminating any output content that violates the usage specifications
of these Terms.
- Interpretation (disclaimed): Grants users a revocable, non-transferable, non-exclusive license to use the Services, reserves all other rights to DeepSeek, requires written permission for unlicensed rights, clarifies non-waiver, and imposes obligations on users publishing outputs to verify accuracy and comply with laws — establishing the scope of the usage license and its conditions.
- Tier: All
- Location: § 3.1
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%203.1%20You%20fully,specifications%20of%20these%20Terms.
### commercial use — risk unknown
> (4) Without DeepSeek's authorization, copying, transferring, leasing,
- Interpretation (disclaimed): This restriction prohibits copying, transferring, leasing, lending, selling, or sub-licensing the Services or any part thereof without DeepSeek's authorization, limiting unauthorized commercial exploitation of the platform.
- Tier: All
- Location: § 3.6
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%20(4)%20Without%20DeepSeek's%20authorization%2C%20copying%2C%20transferring%2C%20leasing%2C
### commercial use — risk unknown
> lending, selling, or sub-licensing the entire or part of the Services.
- Interpretation (disclaimed): Continuation of segment 74, completing the enumeration of prohibited commercial activities (sub-licensing the entire or part of the Services) without authorization.
- Tier: All
- Location: § 3.6
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%20lending%2C%20selling%2C%20or,part%20of%20the%20Services.
### commercial use — risk unknown
> service-related messages or commercial messages.
- Interpretation (disclaimed): Includes sending commercial messages as a permitted use of Personal Data alongside service-related communications, establishing a commercial use permission.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=service-related%20messages%20or%20commercial%20messages.
### privacy data use — risk medium
> We automatically collect Personal Data about your approximate
location based on IP address (1) for security reasons, for example to
protect your account by detecting unusual login activity; (2) to
respond to your inquiries related to your location (e.g., when you
ask, "What's the weather like in my city?" or "Please recommend local
cuisines in my city"). We will not obtain your precise geolocation
information through other means without your explicit consent.
- Interpretation (disclaimed): The carve-out for 'other means' still permits IP geolocation without consent, which can be sufficiently precise for many jurisdictions' regulatory frameworks. The clause does not restrict secondary uses of location data.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=We%20automatically%20collect%20Personal,without%20your%20explicit%20consent.
### privacy data use — risk medium
> We collect Personal Data that you provide when you set up an account,
such as your date of birth (where applicable), username (where
applicable), email address and/or telephone number, and password.
- Interpretation (disclaimed): Routine account data collection; risk is low in isolation but material when combined with the broad sharing and training use provisions elsewhere in the policy.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=We%20collect%20Personal%20Data,telephone%20number%2C%20and%20password.
### privacy data use — risk medium
> The Services are not designed or intended to process sensitive Personal
Data (e.g., personal data revealing racial or ethnic origin, religious
beliefs, health, sexuality, citizenship, immigration status, genetic or
biometric data, personal data of children, precise geolocation or
criminal membership).
**We do not ask for, and you should not provide sensitive Personal Data**
**to the Services,** **whether about yourself or other individuals*
- Interpretation (disclaimed): The disclaimer shifts risk to the user. If sensitive data is submitted (e.g., in a medical query), the platform does not commit to special handling or deletion — it simply says users 'should not' provide it.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=The%20Services%20are%20not,yourself%20or%20other%20individuals*
### privacy data use — risk medium
> The security of your Personal Data is important to us. We maintain
commercially reasonable technical, administrative, and physical security
measures that are designed to protect your Personal Data from
unauthorized access, theft, disclosure, modification, or loss. We
regularly review our security measures to consider available new
technology and methods. However, no Internet or email transmission is
ever fully secure or error free. In particular, emails sent to or from
us may not be secure.
**Therefore, you should take special care in deciding what Personal**
**Data you send to us via the Services or email. In addition, we are**
**not responsible for circumvention of any privacy settings or**
**security measures contained on the Services, or third-party**
**websites.**
- Interpretation (disclaimed): The disclaimer of responsibility for security circumvention is a standard but notable liability-limiting clause. Combined with 'commercially reasonable' (rather than 'industry-leading') security standard, this reduces platform accountability for data breaches.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=The%20security%20of%20your,Services%2C%20or%20third-party**%20**websites.**
### privacy data use — risk medium
> interest unless we can demonstrate
compelling legitimate grounds which may override your right. If you
object to such processing, we ask you to state the grounds of your
objection in order for us to examine the processing of your Personal
Data and to balance our legitimate interest in processing and your
objection to this processing;
- Interpretation (disclaimed): GDPR Article 21 permits controllers to override objections to legitimate-interest-based processing by demonstrating compelling legitimate grounds. While legally standard, this clause means user objections are not absolute and the platform retains discretion to continue processing after a balancing exercise.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=interest%20unless%20we%20can,objection%20to%20this%20processing%3B
### privacy data use — risk medium
> Under the premise of secure encryption technology processing, strict
de-identification rendering, and irreversibility to identify specific
individuals, we may, to a minimal extent, use Inputs and Outputs to
provide, maintain, operate, develop or improve the Services or the
underlying technologies supporting the Services.
- Interpretation (disclaimed): The clause describes how personal data in inputs is handled — via de-identification and encryption — before use. However, the adequacy of these measures under GDPR or other privacy frameworks cannot be verified from the document alone.
- Tier: All
- Location: § 4.3
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=Under%20the%20premise%20of,supporting%20the%20Services.%20
### privacy data use — risk low
> NOTE WE DO NOT ENGAGE IN TARGETED
ADVERTISING, “SELL” PERSONAL DATA OR USE PERSONAL DATA FOR “PROFILING”
OR OTHERWISE ENGAGE IN AUTOMATED PROCESSING OF PERSONAL DATA TO MAKE
DECISIONS THAT COULD HAVE LEGAL OR SIMILARLY SIGNIFICANT IMPACT ON YOU
OR OTHERS.
- Interpretation (disclaimed): This explicit statement reduces risks associated with data brokering, ad-targeting, and automated decision-making under GDPR/CCPA and similar frameworks. However, it is a self-attestation with no third-party verification.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=NOTE%20WE%20DO%20NOT,ON%20YOU%20OR%20OTHERS.
### privacy data use — risk low
> You have the right to request the restriction of the processing of
your Personal Data where (a) you are challenging the accuracy of the
Personal Data, (b) the Personal Data has been unlawfully processed,
but you are opposing the deletion of that Personal Data, (c) where you
need the Personal Data to be retained for the pursuit or defense of a
legal claim, or (d) you have objected to the processing and you are
awaiting the outcome of that objection request.
- Interpretation (disclaimed): This clause enumerates the four standard grounds under GDPR Article 18 for requesting restriction of processing. It is a data-subject-rights disclosure rather than a data-use grant, and presents low risk to users.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=You%20have%20the%20right,of%20that%20objection%20request.
### privacy data use — risk low
> You may choose not to provide some of the
Personal Data fields, but this may affect the Services you are able to
use from us.
- Interpretation (disclaimed): This is a standard GDPR-compliant disclosure about the consequences of not providing data, but it implicitly acknowledges that some data collection is not strictly necessary for all service functions.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=You%20may%20choose%20not,to%20use%20from%20us.
### privacy data use — risk ambiguous
> For detailed rules on how we collect, protect, and use personal
information, please carefully read the
DeepSeek Privacy Policy
- Interpretation (disclaimed): The Terms disclaim detailed privacy governance by incorporating by reference a separate Privacy Policy. This means the operative data-use rules are not visible in this document, and users must locate and review that separate policy.
- Tier: All
- Location: Terms of Service › “DeepSeek products and services are owned and operated by Hangzhou”
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=For%20detailed%20rules%20on,the%20DeepSeek%20Privacy%20Policy
### privacy data use — risk unknown
> 1.6 Users may also share the Inputs and Outputs information (together
referred to as "Dialogues") by generating a unique URL. Anyone who has
access to a shared link can view the linked Dialogues. When using such
feature, any Dialogues you share with others, if subsequently published
on public networks, may be at risk of being obtained by third parties
through technical means such as web crawlers. We have implemented
industry-standard anti-crawling mechanisms (the robots exclusion
protocol) to prevent third parties from scraping user-publicly shared
content. However, due to the technical limitations commonly existing
within the industry, such risks cannot be entirely eliminated.
- Interpretation (disclaimed): Describes the dialogue-sharing feature and associated privacy risk — that publicly shared content may be scraped by third parties despite anti-crawling measures — effectively disclaiming liability for third-party data collection of user-shared content.
- Tier: All
- Location: § 1.6
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%201.6%20Users%20may,cannot%20be%20entirely%20eliminated.
### privacy data use — risk unknown
> using this feature: (1) avoid sharing your own or others' personal
information, especially sensitive personal data; (2) before sharing
other individual's personal information, please ensure you have obtained
their explicit consent; (3) before publicly publishing any relevant
conversation to an open network, carefully review the content to
identify any information you would not wish third parties to access.
- Interpretation (disclaimed): Imposes specific user obligations when sharing dialogues: avoid sharing personal/sensitive data, obtain consent before sharing others' data, and review content before public publication — establishing data-protection responsibilities on users.
- Tier: All
- Location: Terms of Service › “Therefore, we recommend that you take the following precautions when”
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%20using%20this%20feature%3A,third%20parties%20to%20access.
### privacy data use — risk unknown
> For detailed rules on how we collect, protect, and use personal
information, please carefully read the
DeepSeek Privacy Policy . If you would like to learn more about our model mechanism or training
methods, please refer to the
Model Mechanism and Training Methods of DeepSeek .
- Interpretation (disclaimed): Incorporates the DeepSeek Privacy Policy by reference for rules on collection, protection, and use of personal information, and separately incorporates the Model Mechanism and Training Methods document, both of which carry binding legal obligations regarding data handling and training use.
- Tier: All
- Location: Terms of Service › “DeepSeek products and services are owned and operated by Hangzhou”
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%20For%20detailed%20rules,Methods%20of%20DeepSeek%20.
### privacy data use — risk unknown
> - **Payment Personal Data**. When you use paid services in our open platform, we collect your
- Interpretation (disclaimed): Introduces 'Payment Personal Data' and establishes DeepSeek's obligation to collect payment and transaction data for paid platform services to support order, payment, customer service, and after-sales functions.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=-%20**Payment%20Personal%20Data**.,platform%2C%20we%20collect%20your
### privacy data use — risk unknown
> This privacy policy (“Privacy Policy”) applies to the Personal Data (or
other similar terms as defined by applicable data protection law)
relating to you (“Personal Data”) that DeepSeek processes in connection
with DeepSeek apps, websites, software, and related services (the
“Services”), that link to or reference this Privacy Policy. The Services
enable you to create and interact with chatbots.
- Interpretation (disclaimed): Defines key terms including 'Personal Data,' 'Services,' and scope of the Privacy Policy, establishing which data and which products are subject to the legal obligations herein.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=This%20privacy%20policy%20(%E2%80%9CPrivacy,and%20interact%20with%20chatbots.
### privacy data use — risk unknown
> **Hangzhou DeepSeek Artificial Intelligence Co., Ltd.,** with its registered address in China (“we” or “us”). If you have any
questions about how we use your Personal Data, please contact
[privacy@deepseek.com](mailto:privacy@deepseek.com)
or click the “Contact us” column on the website.
- Interpretation (disclaimed): Names the Data Controller as Hangzhou DeepSeek Artificial Intelligence Co., Ltd. with registered address in China, and provides a contact point for data subjects, creating an obligation to respond to privacy inquiries.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=**Hangzhou%20DeepSeek%20Artificial%20Intelligence,column%20on%20the%20website.
### privacy data use — risk unknown
> Please be informed that the processing rules for Personal Data collected
from end users when accessing downstream systems or applications
developed by developers using our open platform services are not covered
by this privacy policy. The developer operating the application, as the
controller of the Personal Data processing activity, should disclose the
relevant Personal Data protection policies to the end users. If you
would like to learn more about our model mechanism or training methods,
please refer to the
[Model Mechanism and Training Methods of DeepSeek](https://cdn.deepseek.com/policies/en-US/model-algorithm-disclosure.html).
- Interpretation (disclaimed): Carves out downstream developer-deployed applications from this Privacy Policy's scope, placing responsibility on developers as data controllers for end-user data, and incorporates by reference a separate document on model mechanism and training methods.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=Please%20be%20informed%20that,Training%20Methods%20of%20DeepSeek%5D(https%3A%2F%2Fcdn.deepseek.com%2Fpolicies%2Fen-US%2Fmodel-algorithm-disclosure.html).
### privacy data use — risk unknown
> We collect your Personal Data in three ways: Personal Data You Provide,
- Interpretation (disclaimed): Identifies the three methods of Personal Data collection (provided, automatically collected, from other sources), defining the overall structure of data intake practices.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=We%20collect%20your%20Personal,Personal%20Data%20You%20Provide%2C
### privacy data use — risk unknown
> Sources. More detail is provided below.
- Interpretation (disclaimed): Reference to detailed provisions below, incorporating subsequent segments as elaborations of the three collection categories.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=Sources.%20More%20detail%20is%20provided%20below.
### privacy data use — risk unknown
> When you create an account, input content, contact us directly, or
otherwise use the Services, you may provide some or all of the following
Personal Data:
- Interpretation (disclaimed): Specifies the circumstances under which DeepSeek collects user-provided Personal Data (account creation, content input, direct contact, or use of Services), establishing collection triggers and the scope of the obligation to handle such data.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=When%20you%20create%20an,the%20following%20Personal%20Data%3A
### privacy data use — risk unknown
> - **Account Personal Data.**
- Interpretation (disclaimed): Labels the 'Account Personal Data' sub-category, defining the type of data collected during account registration.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=-%20**Account%20Personal%20Data.**
### privacy data use — risk unknown
> We collect Personal Data that you provide when you set up an account,
such as your date of birth (where applicable), username (where
applicable), email address and/or telephone number, and password.
- Interpretation (disclaimed): Enumerates specific account data elements collected (date of birth, username, email/phone, password), establishing DeepSeek's obligation to process these data points and users' awareness thereof.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=We%20collect%20Personal%20Data,telephone%20number%2C%20and%20password.
### privacy data use — risk unknown
> recognition information or other unique biological patterns or
characteristics used to identify a specific individual from the voice
inputs or photos you provided to us.
- Interpretation (disclaimed): Continuation of the restriction prohibiting extraction of unique biological patterns or characteristics from user-provided voice or photo data, reinforcing the biometric non-processing commitment.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=recognition%20information%20or%20other,you%20provided%20to%20us.
### privacy data use — risk unknown
> - **Personal Data When You Contact Us.** When you contact us, we collect the Personal Data you send to us,
- Interpretation (disclaimed): Establishes that when users contact DeepSeek, the company collects the Personal Data submitted in that communication, obligating DeepSeek to handle such contact data under this policy.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=-%20**Personal%20Data%20When,you%20send%20to%20us%2C
### privacy data use — risk unknown
> such as proof of identity or age, contact details, feedback or
inquiries about your use of the Services or Personal Data about
possible violations of our
[Terms of Service](https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html)
(our “ **Terms**”) or
other policies.
- Interpretation (disclaimed): Specifies examples of data collected when users contact DeepSeek (identity proof, contact details, feedback, inquiries, Terms of Service violation reports), incorporating by reference the Terms of Service and creating processing obligations for that data.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=such%20as%20proof%20of,**Terms**%E2%80%9D)%20or%20other%20policies.
### privacy data use — risk unknown
> We automatically collect certain Personal Data from you when you use the
- Interpretation (disclaimed): States that DeepSeek automatically collects certain Personal Data during Service use, establishing the obligation and practice of passive data collection.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=We%20automatically%20collect%20certain,when%20you%20use%20the
### privacy data use — risk unknown
> such as your IP address, unique device identifiers, and cookies.
- Interpretation (disclaimed): Lists specific automatically collected data points (IP address, unique device identifiers, cookies), confirming DeepSeek's data collection practices and creating processing obligations for each.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=such%20as%20your%20IP,device%20identifiers%2C%20and%20cookies.
### privacy data use — risk unknown
> - **Device and Network Personal Data.** We collect certain device and network connection Personal Data when
- Interpretation (disclaimed): Introduces 'Device and Network Personal Data' sub-category and states collection occurs upon Service access, establishing the trigger and scope of this automatic collection obligation.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=-%20**Device%20and%20Network,connection%20Personal%20Data%20when
### privacy data use — risk unknown
> you access the Services. This Personal Data includes your device
model, operating system, IP address, device identifiers and system
language. We also collect service-related, diagnostic, and performance
Personal Data, including crash reports and performance logs. We
automatically assign you a device ID and user ID. Where you log-in
from multiple devices, we use Personal Data such as your device ID and
user ID to identify your activity across devices to give you a
seamless log-in experience and for security purposes.
- Interpretation (disclaimed): Enumerates device and network data collected (device model, OS, IP, identifiers, language, crash reports, performance logs, device ID, user ID) and describes cross-device identification for seamless login and security, establishing processing obligations and purposes for this data.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=you%20access%20the%20Services.,and%20for%20security%20purposes.
### privacy data use — risk unknown
> - **Log Personal Data**. We collect Personal Data regarding your use of the Services, such
- Interpretation (disclaimed): Defines 'Log Personal Data' as usage data including features used and actions taken, establishing DeepSeek's obligation to collect behavioral data from Service interactions.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=-%20**Log%20Personal%20Data**.,of%20the%20Services%2C%20such
### privacy data use — risk unknown
> as the features you use and the actions you take.
- Interpretation (disclaimed): Continues specifying the types of log data collected (features used, actions taken), forming part of the behavioral data collection obligation.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=as%20the%20features%20you,the%20actions%20you%20take.
### privacy data use — risk unknown
> - **Location Personal Data**. We automatically collect Personal Data about your approximate
- Interpretation (disclaimed): Introduces 'Location Personal Data' sub-category and establishes that approximate location is automatically collected from IP address, specifying two permitted purposes (security and location-based query responses).
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=-%20**Location%20Personal%20Data**.,Data%20about%20your%20approximate
### privacy data use — risk unknown
> location based on IP address (1) for security reasons, for example to
protect your account by detecting unusual login activity; (2) to
respond to your inquiries related to your location (e.g., when you
ask, "What's the weather like in my city?" or "Please recommend local
cuisines in my city"). We will not obtain your precise geolocation
information through other means without your explicit consent.
- Interpretation (disclaimed): Restricts DeepSeek from obtaining precise geolocation through other means without explicit user consent, limiting permissible location data collection beyond IP-based approximation.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=location%20based%20on%20IP,without%20your%20explicit%20consent.
### privacy data use — risk unknown
> - **Cookies & Similar Technologies**. We may use cookies and similar tracking technologies to operate and
- Interpretation (disclaimed): Discloses use of cookies and similar tracking technologies for Service operation, security, and usage analytics, establishing DeepSeek's obligation to allow management of non-essential cookies where legally required, and incorporates the Cookies Policy by reference.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=-%20**Cookies%20%26%20Similar,technologies%20to%20operate%20and
### privacy data use — risk unknown
> provide the Service. For example, we use cookies for security purposes
and to better understand how the Service is used. We will allow you to
manage our use of non-essential cookies where required by law. To
learn more about our use of cookies, please see our
[Cookies Policy](https://cdn.deepseek.com/policies/en-US/cookies-policy.html).
- Interpretation (disclaimed): Continuation of cookie disclosure, stating DeepSeek will allow users to manage non-essential cookies where required by law and incorporating the Cookies Policy by reference, creating a compliance obligation.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=provide%20the%20Service.%20For,see%20our%20%5BCookies%20Policy%5D(https%3A%2F%2Fcdn.deepseek.com%2Fpolicies%2Fen-US%2Fcookies-policy.html).
### privacy data use — risk unknown
> payment order and transaction Personal Data to provide Services such
as order placement, payment, customer service, and after-sales
support.
- Interpretation (disclaimed): Specifies the purposes for which payment data is collected (order placement, payment processing, customer service, after-sales support), defining the permissible processing scope for financial data.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=payment%20order%20and%20transaction,service%2C%20and%20after-sales%20support.
### privacy data use — risk unknown
> - **Security Personal Data**.We receive
- Interpretation (disclaimed): Introduces the category 'Security Personal Data' and identifies trusted partners as the source, defining a distinct category of personal data received for security purposes.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=-%20**Security%20Personal%20Data**.We%20receive
### privacy data use — risk unknown
> - **Public Personal Data.** We may obtain publicly available Personal Data via online sources to
- Interpretation (disclaimed): Introduces the category 'Public Personal Data' and identifies publicly available online sources as the origin, defining how this data type is obtained.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=-%20**Public%20Personal%20Data.**,via%20online%20sources%20to
### privacy data use — risk unknown
> The Services are not designed or intended to process sensitive Personal
Data (e.g., personal data revealing racial or ethnic origin, religious
beliefs, health, sexuality, citizenship, immigration status, genetic or
biometric data, personal data of children, precise geolocation or
criminal membership).
**We do not ask for, and you should not provide sensitive Personal Data**
**to the Services,** **whether about yourself or other individuals** **.**
- Interpretation (disclaimed): Restricts processing of sensitive Personal Data categories (racial/ethnic origin, health, biometric data, children's data, etc.) and instructs users not to provide such data, imposing a restriction on both the platform's design and user behavior.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=The%20Services%20are%20not,or%20other%20individuals**%20**.**
### privacy data use — risk unknown
> We use your Personal Data to operate, provide, develop, and improve the
Services, including for the following purposes.
- Interpretation (disclaimed): States the general obligation and permission to use Personal Data to operate, provide, develop, and improve the Services, establishing the overarching lawful basis and scope of data use.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=We%20use%20your%20Personal,for%20the%20following%20purposes.
### privacy data use — risk unknown
> - To provide, administer and maintain the Services and to enforce our
- Interpretation (disclaimed): Establishes the obligation to use Personal Data to provide, administer, and maintain the Services and to enforce terms, conditions, and policies.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=-%20To%20provide%2C%20administer,and%20to%20enforce%20our
### privacy data use — risk unknown
> terms, conditions and policies. Such as creating the accounts, deliver
a fast and convenient logging-in experience, enabling you to chat with
DeepSeek and provide user support.
- Interpretation (disclaimed): Specifies concrete examples of service provision purposes (account creation, login experience, chat functionality, user support) for which Personal Data is processed, operationalizing the stated obligation.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=terms%2C%20conditions%20and%20policies.,and%20provide%20user%20support.
### privacy data use — risk unknown
> - To communicate with you, including to notify you about changes to the
- Interpretation (disclaimed): Establishes the obligation to use Personal Data to communicate with users, including notifications about service changes.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=-%20To%20communicate%20with,about%20changes%20to%20the
### privacy data use — risk unknown
> - To promote the safety, security, and stability of the Services, such
- Interpretation (disclaimed): Establishes the obligation to use Personal Data to promote safety, security, and stability of the Services, including preventing and detecting abuse and fraud.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=-%20To%20promote%20the,of%20the%20Services%2C%20such
### privacy data use — risk unknown
> as by preventing and detecting abuse, fraud, and illegal activity on
the Services and by conducting troubleshooting, data analysis,
testing, and research.
- Interpretation (disclaimed): Specifies additional security-related processing purposes (troubleshooting, data analysis, testing, research) as obligations tied to maintaining service safety and integrity.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=as%20by%20preventing%20and,analysis%2C%20testing%2C%20and%20research.
### privacy data use — risk unknown
> - To comply with our legal obligations, or as necessary to perform tasks
- Interpretation (disclaimed): Establishes the obligation to use Personal Data to comply with legal obligations, perform tasks in the public interest, or protect vital interests of users, providing a legal basis for such processing.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=-%20To%20comply%20with,necessary%20to%20perform%20tasks
### privacy data use — risk unknown
> in the public interest, or to protect the vital interests of our users
and other people. This could include providing law enforcement
agencies or emergency services with Personal Data in urgent situations
to protect health or life, in accordance with the due process
prescribed by law.
- Interpretation (disclaimed): Provides a concrete example of legal compliance use: sharing Personal Data with law enforcement or emergency services in urgent situations to protect health or life, subject to due process, operationalizing the legal obligation basis.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=in%20the%20public%20interest%2C,process%20prescribed%20by%20law.
### privacy data use — risk unknown
> - **PLEASE NOTE: We do not engage in “profiling” or otherwise engage in**
- Interpretation (disclaimed): Begins a prominent disclaimer/restriction stating that the platform does not engage in profiling or automated processing of Personal Data for decisions with legal or similarly significant impact.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=-%20**PLEASE%20NOTE%3A%20We,or%20otherwise%20engage%20in**
### privacy data use — risk unknown
> **automated processing of Personal Data to make decisions that could**
**have legal or similarly significant impact on you or others.**
- Interpretation (disclaimed): Completes the anti-profiling restriction, explicitly prohibiting automated decision-making that could have legal or similarly significant impact on individuals, imposing a binding restriction on data processing practices.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=**automated%20processing%20of%20Personal,on%20you%20or%20others.**
### privacy data use — risk unknown
> After we receive your request, we may verify it by requesting
information sufficient to confirm your identity or authority to exercise
a right on behalf of someone else.
- Interpretation (disclaimed): This segment establishes the identity verification procedure that may be required after receiving a rights request, defining the controller's right to confirm identity before fulfilling requests.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=After%20we%20receive%20your,behalf%20of%20someone%20else.
### privacy data use — risk unknown
> subsequently published on public networks, may be at risk of being
obtained by third parties through technical means such as web crawlers.
We recommend that you take the following precautions when using this
feature: (1) avoid sharing your own or others' personal information,
especially sensitive personal data; (2) before sharing other
individual's personal information, please ensure you have obtained their
explicit consent; (3) before publicly publishing any relevant
conversation to an open network, carefully review the content to
identify any information you would not wish third parties to access.
- Interpretation (disclaimed): This segment provides procedural recommendations to users when sharing Dialogues, including avoiding sharing sensitive personal data and obtaining consent before sharing others' information, establishing user-facing data handling guidance.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=subsequently%20published%20on%20public,third%20parties%20to%20access.
### privacy data use — risk unknown
> Depending on where you live and subject to exceptions provided under
applicable data protection laws, you may have certain rights with
respect to your Personal Data.
- Interpretation (disclaimed): This segment establishes that users may have certain rights with respect to their personal data depending on their jurisdiction, subject to exceptions under applicable data protection laws, qualifying the scope of rights granted.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=Depending%20on%20where%20you,to%20your%20Personal%20Data.
### privacy data use — risk unknown
> **To exercise your rights, you or an authorized agent may submit a**
**request by emailing us at** [**privacy@deepseek.com**](mailto:privacy@deepseek.com).
- Interpretation (disclaimed): This segment establishes the procedure by which users or authorized agents must submit rights requests, specifying the designated email address for such submissions.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=**To%20exercise%20your%20rights%2C,emailing%20us%20at**%20%5B**privacy%40deepseek.com**%5D(mailto%3Aprivacy%40deepseek.com).
### privacy data use — risk unknown
> **You may also have the right to appeal requests that we deny by**
**emailing** [**privacy@deepseek.com**](mailto:privacy@deepseek.com) **. If your appeal is unsuccessful and depending on where you live, you**
**may have the right to raise a concern or lodge a complaint with the**
**competent authority**.
- Interpretation (disclaimed): This segment establishes the appeal procedure for denied rights requests and notes users' right to escalate to a competent supervisory authority if the appeal is unsuccessful, defining the remedial process for disputed requests.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=**You%20may%20also%20have,with%20the**%20**competent%20authority**.
### privacy data use — risk unknown
> We will not discriminate against you for exercising any privacy right
you may have.
- Interpretation (disclaimed): This segment imposes an obligation on the controller not to discriminate against users for exercising their privacy rights, establishing a non-discrimination commitment.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=We%20will%20not%20discriminate,right%20you%20may%20have.
### privacy data use — risk unknown
> **Privacy rights that may be available to you include**:
- Interpretation (disclaimed): This segment introduces the enumerated list of privacy rights that may be available to users, establishing the framework for the specific rights that follow.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=**Privacy%20rights%20that%20may,available%20to%20you%20include**%3A
### privacy data use — risk unknown
> - the right to know whether and how we process your Personal Data;
- Interpretation (disclaimed): This segment grants users the right to know whether and how their personal data is processed, establishing a transparency right.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=-%20the%20right%20to,process%20your%20Personal%20Data%3B
### privacy data use — risk unknown
> - the right to access your Personal Data;
- Interpretation (disclaimed): This segment grants users the right to access their personal data held by the controller, establishing a data access right.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=-%20the%20right%20to%20access%20your%20Personal%20Data%3B
### privacy data use — risk unknown
> - the right to correctinaccuracies in your Personal Data;
- Interpretation (disclaimed): This segment grants users the right to correct inaccuracies in their personal data, establishing a data rectification right.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=-%20the%20right%20to,in%20your%20Personal%20Data%3B
### privacy data use — risk unknown
> - the right to receive a portable copy of Personal Data you’ve provided
- Interpretation (disclaimed): This segment grants users a data portability right to receive a copy of their personal data in a portable format, subject to availability in digital form.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=-%20the%20right%20to,Personal%20Data%20you%E2%80%99ve%20provided
### privacy data use — risk unknown
> to us, or that we’ve obtained about you, to the extent it is available
in a digital format, and where technically feasible, in a format that
allows you to transfer your Personal Data to another service, and
- Interpretation (disclaimed): This segment extends the portability right to include technically feasible transfer to another service, defining the conditions and scope of the portability obligation.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=to%20us%2C%20or%20that,to%20another%20service%2C%20and
### privacy data use — risk unknown
> - the right to opt-outof the processing of your Personal Data for the purposes of targeted
- Interpretation (disclaimed): This segment grants users the right to opt out of processing of personal data for targeted advertising, sale, or profiling with legal or consequential impact, establishing an opt-out right.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=-%20the%20right%20to,the%20purposes%20of%20targeted
### privacy data use — risk unknown
> advertising, sale or profiling that could have legal or similarly
consequential impact on you. NOTE WE DO NOT ENGAGE IN TARGETED
- Interpretation (disclaimed): This segment begins a disclaimer clarifying that the platform does not engage in targeted advertising, sale of personal data, or profiling, limiting the practical scope of the opt-out right just granted.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=advertising%2C%20sale%20or%20profiling,NOT%20ENGAGE%20IN%20TARGETED
### privacy data use — risk unknown
> OR OTHERWISE ENGAGE IN AUTOMATED PROCESSING OF PERSONAL DATA TO MAKE
DECISIONS THAT COULD HAVE LEGAL OR SIMILARLY SIGNIFICANT IMPACT ON YOU
OR OTHERS.
- Interpretation (disclaimed): This segment completes the disclaimer by explicitly stating the platform does not engage in automated processing to make decisions with legal or similarly significant impact on users or others, disclaiming any such processing obligation.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=OR%20OTHERWISE%20ENGAGE%20IN,ON%20YOU%20OR%20OTHERS.
### privacy data use — risk unknown
> You can control and access some of your Personal Data directly through
settings. For example, you can manage your chat history. Should you
choose to do so, you may also copy or delete your chat history via your
settings.
- Interpretation (disclaimed): Grants users the right to control and access their Personal Data through settings, including the ability to manage, copy, or delete chat history, establishing specific user data rights.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=You%20can%20control%20and,history%20via%20your%20settings.
### privacy data use — risk unknown
> The security of your Personal Data is important to us. We maintain
commercially reasonable technical, administrative, and physical security
measures that are designed to protect your Personal Data from
unauthorized access, theft, disclosure, modification, or loss. We
regularly review our security measures to consider available new
technology and methods. However, no Internet or email transmission is
ever fully secure or error free. In particular, emails sent to or from
us may not be secure.
**Therefore, you should take special care in deciding what Personal**
**Data you send to us via the Services or email. In addition, we are**
**not responsible for circumvention of any privacy settings or**
**security measures contained on the Services, or third-party**
**websites.**
- Interpretation (disclaimed): Obligates DeepSeek to maintain commercially reasonable technical, administrative, and physical security measures to protect Personal Data, while also including a disclaimer that internet transmissions are never fully secure, limiting liability for transmission failures.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=The%20security%20of%20your,Services%2C%20or%20third-party**%20**websites.**
### privacy data use — risk unknown
> Our Services are not aimed at children, and we do not knowingly process
Personal Data from children. If we notice or receive feedback that we
have collected any of their Personal Data from a child, we will
investigate, and where appropriate, delete the Personal Data to the
extent permitted by applicable law. If you believe that we processed
Personal Data about or collected from a child, please contact us at
[privacy@deepseek.com](mailto:privacy@deepseek.com).
- Interpretation (disclaimed): Continuation of segment 140, providing the procedure for reporting suspected collection of children's Personal Data via a contact email address.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=Our%20Services%20are%20not,contact%20us%20at%20%5Bprivacy%40deepseek.com%5D(mailto%3Aprivacy%40deepseek.com).
### privacy data use — risk unknown
> | **Purpose of processing** | **Personal Data categories** | **Legal bases** |
- Interpretation (disclaimed): Table header row defining the columns (purpose, Personal Data categories, legal bases) for the legal bases for processing table, establishing the definitional structure of lawful processing grounds.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=%7C%20**Purpose%20of%20processing**,%7C%20**Legal%20bases**%20%7C
### privacy data use — risk unknown
> We may update this Privacy Policy from time to time as required by law.
When we update the Privacy Policy, we will notify you by updating the
“Last Updated” date at the top of the new Privacy Policy, posting the
new Privacy Policy, or by providing any other notice required by
applicable law. We recommend that you review the Privacy Policy each
time you access our Services to stay informed of our privacy practices.
- Interpretation (disclaimed): Establishes the procedure for notifying users of Privacy Policy updates, including updating the 'Last Updated' date and posting the new policy, and recommends users review the policy periodically.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=We%20may%20update%20this,of%20our%20privacy%20practices.
### privacy data use — risk unknown
> addressed to
[privacy@deepseek.com](mailto:privacy@deepseek.com)
or click “Contact us” column on the website.
- Interpretation (disclaimed): Continuation of segment 145, providing the contact email address and website contact option for privacy policy inquiries, completing the contact procedure.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=addressed%20to%20%5Bprivacy%40deepseek.com%5D(mailto%3Aprivacy%40deepseek.com)%20or,column%20on%20the%20website.
### privacy data use — risk unknown
> **Legal bases for processing.**
- Interpretation (disclaimed): Section header introducing the legal bases for processing Personal Data for EEA/Switzerland/UK users, signaling operative definitions of lawful processing grounds.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=**Legal%20bases%20for%20processing.**
### privacy data use — risk unknown
> We use your Personal Data only as permitted by law. Our legal bases for
processing your Personal Data described in this Privacy Policy are
described in the table below.
- Interpretation (disclaimed): Obligates DeepSeek to use Personal Data only as permitted by law, and references the table below as the source of legal bases for processing, establishing a lawfulness constraint on data processing activities.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=We%20use%20your%20Personal,in%20the%20table%20below.
### privacy data use — risk unknown
> Please be aware that we collect your Personal Data for the purposes set
out in the table above. You may choose not to provide some of the
Personal Data fields, but this may affect the Services you are able to
use from us.
- Interpretation (disclaimed): Notes that some Personal Data fields are optional but that declining to provide them may affect service availability, serving as a disclosure of consequence rather than a strict obligation, while acknowledging user choice in data provision.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=Please%20be%20aware%20that,to%20use%20from%20us.
### privacy data use — risk unknown
> | | | |
- Interpretation (disclaimed): Table structure row that is part of the legal bases for processing table, forming part of the definitional framework for lawful processing grounds even though it contains only formatting.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=%7C%20%20%20%20%20%7C%20%20%20%20%20%7C%20%20%20%20%20%7C
### privacy data use — risk unknown
> | --- | --- | --- |
- Interpretation (disclaimed): Table formatting separator row that is structurally part of the legal bases processing table defining lawful grounds for data use.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=%7C%20---%20%7C%20---%20%7C%20---%20%7C
### privacy data use — risk unknown
> | To provide, administer and maintain the Services and to enforce
our terms, conditions and policies. Such as creating the accounts,
deliver a fast and convenient logging-in experience, enabling you
to chat with DeepSeek and provide user support. | Account Personal Data
User Input
Personal
Data When You Contact Us
Device and Network Personal Data
Log Personal Data
Location Personal Data
Cookies | Performance of a contract with you when we provide and maintain
our services. To take steps that you request prior to signing up
for an account to use the Platform.
Your consent when we
ask for it to process your Personal Data for a specific purpose to
help you create accounts.
Legitimate interests.
If you are 14 or older but under the age of 18, with a limited
ability to enter into an enforceable contract only, where we may
be unable to process your Personal Data on the grounds of
contractual necessity, we rely on legitimate interests and use the
Personal Data we collect to allow you to access and use the
Platform. |
- Interpretation (disclaimed): Table row defining the legal basis of contractual performance for processing Personal Data to provide, administer, and maintain services including account creation, login, chat, and user support, establishing a lawful basis for that processing purpose.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=%7C%20To%20provide%2C%20administer,and%20use%20the%3Cbr%3EPlatform.%20%7C
### privacy data use — risk unknown
> | To comply with our legal obligations, or as necessary to perform
tasks in the public interest, or to protect the vital interests of
our users and other people. This could include providing law
enforcement agencies or emergency services with Personal Data in
urgent situations to protect health or life. | Account Personal Data
User Input
Personal
Data When You Contact Us
Device and Network Personal Data
Log Personal Data
Location Personal Data
Cookies | Compliance with our legal obligations. This includes situations
where we have obligations to take measures to ensure the safety of
our users or comply with a valid legal request such as an order
from law enforcement agencies or courts; and where we have
obligations to comply with applicable law or when we protect our
or our affiliates’, users’, or third parties’ rights, safety, and
property.
Our legitimate
interests to protect our business, employees and users from
illegal activities, inappropriate behavior or violations of terms
that would be detrimental, and to disclose and share Personal Data
with regulators or other government entities. |
- Interpretation (disclaimed): Table row defining the legal basis of legal obligation compliance for processing Personal Data to fulfill legal duties, public interest tasks, or vital interest protection including disclosure to law enforcement in urgent situations.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=%7C%20To%20comply%20with,other%20government%20entities.%20%7C
### privacy data use — risk unknown
> | To communicate with you, including to notify you about changes to
the Platform, provide customer support to you and send you other
service-related messages. | Account Personal Data
Personal Data When You Contact Us
Location Personal Data | Performance of a contract with you when we provide and maintain
our services.
Your consent when we
ask for it to process your Personal Data for a specific purpose to
communicate with you. |
- Interpretation (disclaimed): Table row defining the legal bases of contractual performance and consent for processing Personal Data to communicate with users, including notifications and customer support, establishing lawful grounds for communications-related data use.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=%7C%20To%20communicate%20with,to%3Cbr%3Ecommunicate%20with%20you.%20%7C
### privacy data use — risk unknown
> - The right to request proper rectification or erasure of your Personal
- Interpretation (disclaimed): This segment begins the description of the data subject's right to request rectification or erasure of personal data or restriction of processing, conferring legally operative rights under data protection law.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=-%20The%20right%20to,erasure%20of%20your%20Personal
### privacy data use — risk unknown
> Data or restriction of the processing of your Personal Data;
- Interpretation (disclaimed): This segment continues the description of the right to erasure and restriction of processing of personal data, completing the clause granting these data subject rights.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=Data%20or%20restriction%20of,of%20your%20Personal%20Data%3B
### privacy data use — risk unknown
> - Where processing of your Personal Data is either based on your consent
- Interpretation (disclaimed): This segment introduces the conditions under which the right to data portability applies, specifically where processing is consent-based or contract-based and carried out by automated means, establishing a conditional right for the data subject.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=-%20Where%20processing%20of,based%20on%20your%20consent
### privacy data use — risk unknown
> or necessary for the performance of a contract with you and processing
is carried out by automated means, the right to receive the Personal
- Interpretation (disclaimed): This segment continues describing the right to data portability, specifying the data subject's entitlement to receive their personal data in a structured format, which is a legally operative right.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=or%20necessary%20for%20the,to%20receive%20the%20Personal
### privacy data use — risk unknown
> machine-readable format or to have your Personal Data transmitted
directly to another company, where technically feasible (data
portability);
- Interpretation (disclaimed): This segment completes the data portability right by including the right to have data transmitted to another company where technically feasible, which is a legally operative right subject to a technical feasibility condition.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=machine-readable%20format%20or%20to,technically%20feasible%20(data%20portability)%3B
### privacy data use — risk unknown
> - Where the processing of your Personal Data is based on your consent,
- Interpretation (disclaimed): This segment introduces the right to withdraw consent where processing is consent-based, establishing a conditional right for data subjects to withdraw consent for personal data processing.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=-%20Where%20the%20processing,based%20on%20your%20consent%2C
### privacy data use — risk unknown
> the right to withdraw your consent at any time (withdrawal will not
impact the lawfulness of data processing activities that have taken
place before such withdrawal);
- Interpretation (disclaimed): This segment completes the consent withdrawal right, including the important qualification that withdrawal does not affect the lawfulness of prior processing, which is a legally operative right with a limitation on its retroactive effect.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=the%20right%20to%20withdraw,place%20before%20such%20withdrawal)%3B
### privacy data use — risk unknown
> - The right not to be subject to any automatic individual decisions,
- Interpretation (disclaimed): This segment begins the description of the right not to be subject to automated individual decision-making and profiling with significant legal effects, conferring a protective right on data subjects.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=-%20The%20right%20not,any%20automatic%20individual%20decisions%2C
### privacy data use — risk unknown
> including profiling, which produces legal effects on you or similarly
significantly affects you unless we have your consent, this is
authorised by European Union or Member State law or this is necessary
for the performance of a contract;
- Interpretation (disclaimed): This segment completes the automated decision-making right by listing exceptions (consent, EU/Member State law, contract necessity), establishing the scope and limitations of this data subject right.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=including%20profiling%2C%20which%20produces,performance%20of%20a%20contract%3B
### privacy data use — risk unknown
> - The right to object to processing if we are processing your Personal
- Interpretation (disclaimed): This segment begins the description of the right to object to processing based on legitimate interest, establishing a data subject right to challenge ongoing processing.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=-%20The%20right%20to,are%20processing%20your%20Personal
### privacy data use — risk unknown
> Data on the basis of our legitimate interest unless we can demonstrate
compelling legitimate grounds which may override your right. If you
object to such processing, we ask you to state the grounds of your
objection in order for us to examine the processing of your Personal
Data and to balance our legitimate interest in processing and your
objection to this processing;
- Interpretation (disclaimed): This segment completes the objection right, specifying the override condition for compelling legitimate grounds and the procedure for submitting an objection, making it a right with an embedded procedure and limitation.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=Data%20on%20the%20basis,objection%20to%20this%20processing%3B
### privacy data use — risk unknown
> - You have the right to request the restriction of the processing of
- Interpretation (disclaimed): This segment introduces the right to request restriction of processing of personal data, establishing a data subject right operative under specific conditions.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=-%20You%20have%20the,of%20the%20processing%20of
### privacy data use — risk unknown
> your Personal Data where (a) you are challenging the accuracy of the
- Interpretation (disclaimed): This segment specifies the first condition under which the restriction right applies — where the data subject is challenging the accuracy of the personal data — making it part of the operative right clause.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=your%20Personal%20Data%20where,the%20accuracy%20of%20the
### privacy data use — risk unknown
> but you are opposing the deletion of that Personal Data, (c) where you
need the Personal Data to be retained for the pursuit or defense of a
legal claim, or (d) you have objected to the processing and you are
awaiting the outcome of that objection request.
- Interpretation (disclaimed): This segment completes the restriction right clause by listing additional conditions (opposing deletion, need for legal claims, pending objection), fully defining when the right to restriction of processing applies.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=but%20you%20are%20opposing,of%20that%20objection%20request.
### privacy data use — risk unknown
> - The right to object to processing your Personal Data for direct
- Interpretation (disclaimed): This segment begins the description of the right to object to processing of personal data for direct marketing purposes, which is an absolute right under data protection law.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=-%20The%20right%20to,Personal%20Data%20for%20direct
### privacy data use — risk unknown
> marketing purposes; and
- Interpretation (disclaimed): This segment completes the direct marketing objection right, confirming the data subject's entitlement to object to such processing.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=marketing%20purposes%3B%20and
### data retention — risk medium
> We retain Personal Data for as long as necessary to provide our Services
and for the other purposes set out in this Privacy Policy. We also
retain Personal Data when necessary to comply with contractual and legal
obligations, when we have a legitimate business interest to do so (such
as improving and developing our Services and enhancing their safety,
security and stability), and for the exercise or defense of legal
claims.
The retention periods will be different depending on the amount, type
and sensitivity of Personal Data, the purposes for which we use the
Personal Data and any legal requirements, etc. For example, when we
process your Personal Data to provide you with the Services, we keep
this Personal Data for as long as you have an account. This Personal
Data includes your account Personal Data, input and payment Personal
Data. If you violate any of our terms, policies or guidelines, we may
keep your Personal Data as necessary to process the violation.
- Interpretation (disclaimed): Open-ended retention tied to 'legitimate business interest' and account existence lacks the specificity required by GDPR's storage limitation principle. Retention for violation processing is particularly broad and indefinite.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=We%20retain%20Personal%20Data,to%20process%20the%20violation.
### data retention — risk medium
> even after the user deletes the account, we still have
the right to:
Retain certain data of the user as required by laws and regulations.
Exercise the rights stipulated in these Terms for any illegal or
violating behavior committed by the user during the use of the
Services before de
- Interpretation (disclaimed): The retention clause is open-ended ('certain data') and justified by a broad 'laws and regulations' carve-out without specifying applicable jurisdictions, duration, or data types. This limits users' ability to exercise deletion/erasure rights effectively.
- Tier: All
- Location: § 2.5
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=even%20after%20the%20user,the%20Services%20before%20de
### data retention — risk low
> If you choose to delete your account, you will not be able to reactivate
your account or retrieve any of the content or Personal Data in
connection with your account.
- Interpretation (disclaimed): Permanent account deletion with no recovery option is generally favorable from a data privacy perspective, but users should be aware that outputs cannot be recovered after account deletion.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=If%20you%20choose%20to,connection%20with%20your%20account.
### data retention — risk ambiguous
> the right to delete Personal Data you’ve provided to us, or that we’ve
obtained about you;
- Interpretation (disclaimed): The existence of a deletion right is noted but no affirmative retention schedule or deletion timeline is stated anywhere in the document. This omission is itself a risk indicator — users cannot assess how long their data is held.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=the%20right%20to%20delete,we%E2%80%99ve%20obtained%20about%20you%3B
### data retention — risk unknown
> 2.5 Under the agreed conditions, you have the option to discontinue the
use of our Services, terminate the contract with us, and delete your
account. However, even after the user deletes the account, we still have
the right to:
- Interpretation (disclaimed): Grants users the right to delete their account and terminate the Services agreement, but reserves DeepSeek's rights post-deletion, including data retention and enforcement rights, establishing a data-retention entitlement that survives account deletion.
- Tier: All
- Location: § 2.5
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%202.5%20Under%20the,have%20the%20right%20to%3A
### data retention — risk unknown
> Retain certain data of the user as required by laws and regulations.
- Interpretation (disclaimed): Imposes an obligation on DeepSeek to retain certain user data after account deletion as required by laws and regulations, establishing a legally mandated data-retention duty that overrides deletion requests.
- Tier: All
- Location: § 2.5
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%20Retain%20certain%20data,by%20laws%20and%20regulations.
### data retention — risk unknown
> - the right to delete Personal Data you’ve provided to us, or that we’ve
- Interpretation (disclaimed): This segment grants users the right to request deletion of personal data they have provided or that has been collected about them, establishing a data deletion/erasure right with implications for retention practices.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=-%20the%20right%20to,us%2C%20or%20that%20we%E2%80%99ve
### data retention — risk unknown
> obtained about you;
- Interpretation (disclaimed): This segment completes the deletion right by specifying it covers data obtained about the user as well, broadening the scope of the erasure right.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=obtained%20about%20you%3B
### data retention — risk unknown
> If you choose to delete your account, you will not be able to reactivate
your account or retrieve any of the content or Personal Data in
connection with your account.
- Interpretation (disclaimed): Clarifies that upon account deletion, users cannot reactivate their account or retrieve content or Personal Data, effectively disclaiming any obligation to restore data post-deletion.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=If%20you%20choose%20to,connection%20with%20your%20account.
### data retention — risk unknown
> **How Long Do We Keep Your Personal Data**
- Interpretation (disclaimed): Section header introducing the data retention policy, signaling operative clauses defining how long Personal Data is kept.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=**How%20Long%20Do%20We%20Keep%20Your%20Personal%20Data**
### data retention — risk unknown
> We retain Personal Data for as long as necessary to provide our Services
and for the other purposes set out in this Privacy Policy. We also
retain Personal Data when necessary to comply with contractual and legal
obligations, when we have a legitimate business interest to do so (such
as improving and developing our Services and enhancing their safety,
security and stability), and for the exercise or defense of legal
claims.
- Interpretation (disclaimed): Establishes the obligation to retain Personal Data only as long as necessary for service provision and other specified purposes, including compliance with legal obligations, legitimate business interests, and defense of legal claims.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=We%20retain%20Personal%20Data,defense%20of%20legal%20claims.
### data retention — risk unknown
> The retention periods will be different depending on the amount, type
and sensitivity of Personal Data, the purposes for which we use the
Personal Data and any legal requirements, etc. For example, when we
process your Personal Data to provide you with the Services, we keep
this Personal Data for as long as you have an account. This Personal
- Interpretation (disclaimed): Describes the procedure for determining retention periods based on amount, type, sensitivity, purpose, and legal requirements, and specifies that account-related Personal Data is retained as long as the user has an account.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=The%20retention%20periods%20will,an%20account.%20This%20Personal
### data retention — risk unknown
> Data. If you violate any of our terms, policies or guidelines, we may
keep your Personal Data as necessary to process the violation.
- Interpretation (disclaimed): Creates an exception to standard retention periods allowing retention of Personal Data beyond normal limits when necessary to process terms or policy violations by the user.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=Data.%20If%20you%20violate,to%20process%20the%20violation.
### data retention — risk unknown
> When the Personal Data collected is no longer required by us, we and our
service providers will perform the necessary procedures for destroying,
deleting, erasing, or converting it into an anonymous form as permitted
or required under applicable laws.
- Interpretation (disclaimed): Obligates DeepSeek and its service providers to destroy, delete, erase, or anonymize Personal Data when it is no longer required, subject to applicable law.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=When%20the%20Personal%20Data,required%20under%20applicable%20laws.
### data retention — risk unknown
> **Data storage**
- Interpretation (disclaimed): This segment is a heading introducing the data storage section, defining the topic of how and where personal data is stored, which is legally operative as it introduces storage/retention obligations.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=**Data%20storage**
### data retention — risk unknown
> The Personal Data we collect from you may be stored on a server located
outside of the country where you live. To provide you with our services,
we directly collect, process and store your Personal Data in People's
Republic of China.
- Interpretation (disclaimed): This segment discloses that personal data may be stored on servers outside the user's country and specifically that data is collected, processed, and stored in the People's Republic of China, establishing a cross-border data transfer and storage obligation/disclosure relevant to data residency.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=The%20Personal%20Data%20we,People's%20Republic%20of%20China.
### subprocessors data sharing — risk high
> We engage service providers that help us provide, support, and develop
the Services and understand how they are used. We share Personal Data
You Provide, Automatically Collected Personal Data, and Personal Data
From Other Sources with these service providers as necessary to enable
them to provide their services. For example:
- We use third party vendors to provide necessary information to
responde to your inquiries.
- We use communication service providers to send notifications and/or
communications to you.
- We integrate third-party APIs to provide search services, and we will
share your input keywords to provide these services.
- We use analytics services providers to analyse data.
- We use support and safety monitoring services providers to assist us
in ensuring the safety of our Services
- Interpretation (disclaimed): The clause grants broad sharing rights to unspecified service providers covering all data categories. The explicit mention of sharing 'input keywords' with third-party search APIs is particularly notable as it means user prompt content flows to external parties.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=We%20engage%20service%20providers,safety%20of%20our%20Services
### subprocessors data sharing — risk high
> The Services are supported by certain entities within our corporate
group. These entities process the Personal Data You Provide,
Automatically Collected Personal Data, and Personal Data from Other
Sources for us, as necessary to provide certain functions, such as
storage, content delivery, security, research and development,
foundation model training and optimization, analytics, customer and
technical support.
- Interpretation (disclaimed): The corporate group sharing is extensive and explicitly includes model training. Given DeepSeek is controlled by a China-based entity, this implies data flows to China-based affiliates, raising significant data residency and regulatory risk.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=The%20Services%20are%20supported,customer%20and%20technical%20support.
### subprocessors data sharing — risk high
> Our legitimate
interests to protect our business, employees and users from
illegal activities, inappropriate behavior or violations of terms
that would be detrimental, and to disclose and share Personal Data
with regulators or other government entitie
- Interpretation (disclaimed): Using 'legitimate interests' (rather than legal obligation) as a basis for sharing data with government entities is unusual and potentially concerning, as it allows proactive rather than reactive disclosure. This is particularly significant given PRC jurisdiction over stored data.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=Our%20legitimate%3Cbr%3Einterests%20to%20protect,or%20other%20government%20entitie
### subprocessors data sharing — risk medium
> Your Personal Data may be disclosed to third parties in connection with
a corporate transaction, such as a merger, sale of assets or shares,
reorganization, financing, change of control, or acquisition of all or a
portion of our business.
- Interpretation (disclaimed): Standard M&A carve-out but broad in scope — covers financing events and partial acquisitions, not just full mergers. No requirement to notify users or allow opt-out.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=Your%20Personal%20Data%20may,portion%20of%20our%20business.
### subprocessors data sharing — risk unknown
> We may receive the Personal Data described in this Privacy Policy from
other sources, such as:
- Interpretation (disclaimed): Begins specifying examples of third-party sources from which DeepSeek receives Personal Data, establishing data-sharing obligations and disclosures regarding subprocessors or partner sources.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=We%20may%20receive%20the,other%20sources%2C%20such%20as%3A
### subprocessors data sharing — risk unknown
> - **Log-in, Sign-up, or Linked Services**. Where available, if you choose to sign-up or log-in to the Services
- Interpretation (disclaimed): Describes the procedure by which users may sign up or log in via third-party services (Apple, Google) and how that triggers data collection from those linked services, establishing the mechanism for third-party data sharing.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=-%20**Log-in%2C%20Sign-up%2C%20or,log-in%20to%20the%20Services
### subprocessors data sharing — risk unknown
> using a third-party service such as Apple or Google, or link your
account to a third-party service, we may collect Personal Data from
the third-party service, such as access token.
- Interpretation (disclaimed): Specifies what Personal Data (e.g., access tokens) may be collected from third-party services when a user links their account, defining the scope of data sharing between the platform and third-party identity providers.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=using%20a%20third-party%20service,such%20as%20access%20token.
### subprocessors data sharing — risk unknown
> Personal Data from our trusted partners, such as security partners, to
protect against fraud, abuse, and other security threats to our
Services.
- Interpretation (disclaimed): Describes receipt of Personal Data from security partners to protect against fraud, abuse, and security threats, establishing the purpose and source of this inter-party data sharing arrangement.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=Personal%20Data%20from%20our,threats%20to%20our%20Services.
### subprocessors data sharing — risk unknown
> We engage service providers that help us provide, support, and develop
the Services and understand how they are used. We share Personal Data
- Interpretation (disclaimed): Establishes that the platform engages service providers and shares Personal Data with them to enable them to provide services, creating an obligation to share data with subprocessors under defined conditions.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=We%20engage%20service%20providers,We%20share%20Personal%20Data
### subprocessors data sharing — risk unknown
> From Other Sources with these service providers as necessary to enable
them to provide their services. For example:
- Interpretation (disclaimed): States that sharing with service providers occurs as necessary to enable them to provide their services, establishing necessity as the limiting condition for such data sharing, and introduces examples.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=From%20Other%20Sources%20with,their%20services.%20For%20example%3A
### subprocessors data sharing — risk unknown
> - We use third party vendors to provide necessary information to
- Interpretation (disclaimed): Identifies use of third-party vendors to respond to user inquiries as a specific instance of subprocessor data sharing, concretizing the general sharing obligation.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=-%20We%20use%20third,provide%20necessary%20information%20to
### subprocessors data sharing — risk unknown
> responde to your inquiries.
- Interpretation (disclaimed): Continues the description of third-party vendor use for responding to inquiries, part of the enumeration of specific subprocessor sharing instances.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=responde%20to%20your%20inquiries.
### subprocessors data sharing — risk unknown
> - We use communication service providers to send notifications and/or
- Interpretation (disclaimed): Identifies use of communication service providers as a specific subprocessor data sharing instance for sending notifications and communications to users.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=-%20We%20use%20communication,to%20send%20notifications%20and%2For
### subprocessors data sharing — risk unknown
> communications to you.
- Interpretation (disclaimed): Completes the description of communication service provider use, establishing data sharing with such providers as part of notification and communication services.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=communications%20to%20you.
### subprocessors data sharing — risk unknown
> - We integrate third-party APIs to provide search services, and we will
- Interpretation (disclaimed): Identifies integration of third-party APIs for search services as a subprocessor sharing instance, and specifies that user input keywords are shared with these providers to deliver search functionality.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=-%20We%20integrate%20third-party,services%2C%20and%20we%20will
### subprocessors data sharing — risk unknown
> share your input keywords to provide these services.
- Interpretation (disclaimed): Completes the description of search API data sharing, confirming that user input keywords are shared with third-party search service providers.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=share%20your%20input%20keywords%20to%20provide%20these%20services.
### subprocessors data sharing — risk unknown
> - We use analytics services providers to analyse data.
- Interpretation (disclaimed): Identifies use of analytics service providers as a subprocessor data sharing instance for analyzing data, establishing analytics providers as recipients of Personal Data.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=-%20We%20use%20analytics,providers%20to%20analyse%20data.
### subprocessors data sharing — risk unknown
> - We use support and safety monitoring services providers to assist us
- Interpretation (disclaimed): Identifies use of support and safety monitoring service providers as a subprocessor data sharing instance to ensure the safety of the Services.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=-%20We%20use%20support,providers%20to%20assist%20us
### subprocessors data sharing — risk unknown
> in ensuring the safety of our Services.
- Interpretation (disclaimed): Completes the description of support and safety monitoring provider use, confirming data sharing with these providers as part of ensuring service safety.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=in%20ensuring%20the%20safety%20of%20our%20Services.
### subprocessors data sharing — risk unknown
> store Personal Data only in the course of performing their duties to us.
- Interpretation (disclaimed): Completes the restriction on subprocessors, confirming they must act only under the platform's instructions and solely for the purpose of performing contracted duties, establishing a use limitation on third-party data access.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=store%20Personal%20Data%20only,their%20duties%20to%20us.
### subprocessors data sharing — risk unknown
> group. These entities process the Personal Data You Provide,
- Interpretation (disclaimed): This segment specifies that corporate group entities process the identified categories of personal data on behalf of the controller, establishing an obligation regarding what data is processed by these entities.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=group.%20These%20entities%20process,Personal%20Data%20You%20Provide%2C
### subprocessors data sharing — risk unknown
> Sources for us, as necessary to provide certain functions, such as
storage, content delivery, security, research and development,
foundation model training and optimization, analytics, customer and
technical support.
- Interpretation (disclaimed): This segment permits corporate group entities to process personal data for specific enumerated purposes including storage, security, research and development, foundation model training and optimization, and analytics, granting a permission for these specific uses of shared personal data.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=Sources%20for%20us%2C%20as,customer%20and%20technical%20support.
### subprocessors data sharing — risk unknown
> We share your Personal Data with the following categories of third
parties in other limited scenarios as follows:
- Interpretation (disclaimed): This segment discloses that personal data is shared with specified categories of third parties in limited scenarios, establishing the general framework and obligation of disclosure applicable to the following enumerated cases.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=We%20share%20your%20Personal,limited%20scenarios%20as%20follows%3A
### subprocessors data sharing — risk unknown
> **Parties to a Corporate Transaction.**
Your Personal Data may be disclosed to third parties in connection with
a corporate transaction, such as a merger, sale of assets or shares,
reorganization, financing, change of control, or acquisition of all or a
portion of our business.
- Interpretation (disclaimed): This segment grants permission to disclose personal data to third parties in connection with corporate transactions such as mergers, acquisitions, or reorganizations, establishing a lawful basis for such disclosure.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=**Parties%20to%20a%20Corporate,portion%20of%20our%20business.
### subprocessors data sharing — risk unknown
> **Law Enforcement and Parties with Other Legal Rights**. We may access, preserve, and share the Personal Data described in
“What Personal Data We Collect” with law enforcement agencies, public
authorities, copyright holders, or other third parties if we have good
faith belief that it is necessary to:
- Interpretation (disclaimed): This segment grants permission to access, preserve, and share personal data with law enforcement, public authorities, and other parties when the controller holds a good-faith belief that such sharing is necessary, listing the conditions that justify this exception to normal data sharing restrictions.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=**Law%20Enforcement%20and%20Parties,it%20is%20necessary%20to%3A
### subprocessors data sharing — risk unknown
> - comply with applicable law, legal process or government requests, as
- Interpretation (disclaimed): This segment establishes compliance with applicable law and legal process as an exception justifying disclosure of personal data to law enforcement and government authorities.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=-%20comply%20with%20applicable,or%20government%20requests%2C%20as
### subprocessors data sharing — risk unknown
> consistent with internationally recognized standards, in accordance
with the due process prescribed by law;
- Interpretation (disclaimed): This segment qualifies the legal compliance exception by requiring that it be consistent with internationally recognized standards and due process, limiting the scope of the exception.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=consistent%20with%20internationally%20recognized,process%20prescribed%20by%20law%3B
### subprocessors data sharing — risk unknown
> - protect the rights, property, and safety of our users, copyright
- Interpretation (disclaimed): This segment establishes protection of rights, property, and safety—including preventing imminent bodily harm—as a further exception justifying disclosure of personal data to third parties.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=-%20protect%20the%20rights%2C,of%20our%20users%2C%20copyright
### subprocessors data sharing — risk unknown
> holders, and others, including protecting life or preventing imminent
bodily harm. For example, we may provide Personal Data (such as your
IP address) to law enforcement agencies in the event of an emergency
where someone’s life or safety is at risk;
- Interpretation (disclaimed): This segment provides a concrete example of the safety exception (sharing IP address with law enforcement in an emergency), further defining the permissible scope of data disclosure under this exception.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=holders%2C%20and%20others%2C%20including,safety%20is%20at%20risk%3B
### subprocessors data sharing — risk unknown
> - investigate potential violations of and enforce our Terms, Guidelines,
- Interpretation (disclaimed): This segment establishes investigation of potential violations and enforcement of the platform's terms and policies as a further exception justifying disclosure of personal data to relevant parties.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=-%20investigate%20potential%20violations,enforce%20our%20Terms%2C%20Guidelines%2C
### subprocessors data sharing — risk unknown
> or any other applicable terms, policies, or standards; or
- Interpretation (disclaimed): This segment continues the enforcement exception, specifying that applicable terms, policies, and standards are covered, further defining the scope of the enforcement-based disclosure permission.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=or%20any%20other%20applicable,policies%2C%20or%20standards%3B%20or
### subprocessors data sharing — risk unknown
> - detect, investigate, prevent, or address misleading activity,
- Interpretation (disclaimed): This segment establishes detection, investigation, and prevention of misleading activity or illegal activity as a further exception justifying disclosure of personal data to third parties.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=-%20detect%2C%20investigate%2C%20prevent%2C%20or%20address%20misleading%20activity%2C
### subprocessors data sharing — risk unknown
> copyright infringement, or other illegal activity.
- Interpretation (disclaimed): This segment completes the illegal activity exception by specifying copyright infringement and other illegal activity as covered grounds, completing the enumerated exceptions for law enforcement disclosure.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=copyright%20infringement%2C%20or%20other%20illegal%20activity.
### subprocessors data sharing — risk unknown
> Depending on where you live, we may share Personal Data with the proper
authorization or to provide the Services you have requested or
authorized. For example, if you choose to log in to our Services using a
social network account, or share Personal Data from our Services to a
social media service, we will share that Personal Data with those third
parties services. Specifically, you may share the Inputs and Outputs
information (together referred to as "Dialogues") by generating a unique
- Interpretation (disclaimed): This segment grants permission to share personal data with third-party services (e.g., social networks) when the user authorizes it or requests services requiring such sharing, and defines 'Dialogues' as the combination of Inputs and Outputs for purposes of the sharing feature.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=Depending%20on%20where%20you,by%20generating%20a%20unique
### subprocessors data sharing — risk unknown
> URL. When using such feature, any Dialogues you share with others, if
- Interpretation (disclaimed): This segment describes the mechanism by which users can share Dialogues via a unique URL and notes the risk of third-party acquisition through web crawlers when content is published publicly, informing users of the procedural and risk implications of this sharing feature.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=URL.%20When%20using%20such,share%20with%20others%2C%20if
### subprocessors data sharing — risk unknown
> **Third-party content**. The Services may contain links to policies, functionality, or content
maintained by third parties not controlled by us. We are not responsible
for, and make no representations regarding, such policies,
functionality, or content or any other practices or operations of such
third parties.
- Interpretation (disclaimed): This segment disclaims responsibility for third-party content, policies, and practices accessible via links within the services, limiting the platform's liability for third-party data handling practices.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=**Third-party%20content**.%20The%20Services,of%20such%20third%20parties.
### subprocessors data sharing — risk unknown
> We value your privacy and your rights as a data subject and have
therefore appointed Prighter Group with its local partners as our
privacy representative and your point of contact for the following
regions:
- Interpretation (disclaimed): This segment discloses that the company has appointed Prighter Group as its privacy representative and data subject point of contact for EU and UK regions, establishing a representative relationship that is legally required under GDPR Article 27.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=We%20value%20your%20privacy,for%20the%20following%20regions%3A
### audit rights dpa residency — risk high
> Data Controller: The Services are provided and controlled by
**Hangzhou DeepSeek Artificial Intelligence Co., Ltd.,** with its registered address in China (“we” or “us”).
- Interpretation (disclaimed): For EU/UK/US users, having a China-based data controller creates significant compliance exposure under GDPR (Chapter V international transfers), CCPA, and other frameworks. The absence of any DPA or audit rights provisions means enterprise customers have no contractual recourse for compliance assurance.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=Data%20Controller%3A%20The%20Services,(%E2%80%9Cwe%E2%80%9D%20or%20%E2%80%9Cus%E2%80%9D).%20
### audit rights dpa residency — risk high
> The Personal Data we collect from you may be stored on a server located
outside of the country where you live. To provide you with our services,
we directly collect, process and store your Personal Data in People's
Republic of China.
- Interpretation (disclaimed): Data storage in the PRC means user data is subject to Chinese law, including laws that may require disclosure to government authorities. This is a significant cross-border transfer risk, especially for EEA/UK users where adequacy decisions for China do not exist.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=The%20Personal%20Data%20we,People's%20Republic%20of%20China.
### audit rights dpa residency — risk low
> We value your privacy and your rights as a data subject and have
therefore appointed Prighter Group with its local partners as our
privacy representative and your point of contact for the following
regions:
-European Union (EU)
-United Kingdom (UK
- Interpretation (disclaimed): Under GDPR Article 27 and UK GDPR, non-EU/UK controllers processing data of EU/UK residents must designate a local representative. The appointment of Prighter Group satisfies this obligation and provides EU/UK users a local point of contact for data subject requests.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=We%20value%20your%20privacy,(EU)%20-United%20Kingdom%20(UK
### audit rights dpa residency — risk unknown
> authority.
- Interpretation (disclaimed): This segment completes the data subject's right to lodge complaints with their local data protection authority, finalizing this legally operative right.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=authority.
### audit rights dpa residency — risk unknown
> The Personal Data we collect from you may be stored on a server located
outside of the country where you live. To provide you with our services,
we directly collect, process and store your Personal Data in People's
Republic of China.
- Interpretation (disclaimed): Discloses that Personal Data may be stored on servers outside the user's country and specifically that it is collected, processed, and stored in the People's Republic of China, establishing data residency facts.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=The%20Personal%20Data%20we,People's%20Republic%20of%20China.
### audit rights dpa residency — risk unknown
> Personal Data outside of certain countries, including for one or more of
the purposes as set out in this Policy, we will do so in accordance with
the requirements of applicable data protection laws.
- Interpretation (disclaimed): Continuation of segment 138, completing the cross-border transfer obligation requiring compliance with applicable data protection law requirements when transferring Personal Data internationally.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=Personal%20Data%20outside%20of,applicable%20data%20protection%20laws.
### audit rights dpa residency — risk unknown
> **Your rights**
- Interpretation (disclaimed): This segment is a heading that introduces the section on data subject rights, serving as a structural label that defines the scope of the following rights-related clauses under applicable data protection law.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=**Your%20rights**
### audit rights dpa residency — risk unknown
> You have the following rights:
- Interpretation (disclaimed): This segment introduces the enumeration of data subject rights, serving as a structural definition clause that introduces the list of legally conferred rights to data subjects.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=You%20have%20the%20following%20rights%3A
### audit rights dpa residency — risk unknown
> - The right to request free of charge (i) confirmation of whether we
- Interpretation (disclaimed): This segment begins the description of the data subject's right to request, free of charge, confirmation of whether their personal data is processed, which is a right conferred on users under data protection law.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=-%20The%20right%20to,confirmation%20of%20whether%20we
### audit rights dpa residency — risk unknown
> process your Personal Data and (ii) access to a copy of the Personal
Data retained;
- Interpretation (disclaimed): This segment completes the description of the right to access a copy of retained personal data, conferring a legally operative access right on the data subject.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=process%20your%20Personal%20Data,the%20Personal%20Data%20retained%3B
### audit rights dpa residency — risk unknown
> - The right to lodge complaints before your local data protection
- Interpretation (disclaimed): This segment begins the description of the right to lodge complaints with a local data protection authority, establishing a legally operative right to seek regulatory redress.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=-%20The%20right%20to,your%20local%20data%20protection
### audit rights dpa residency — risk unknown
> Before we can respond to a request to exercise one or more of the rights
listed above, you may be required to verify your identity or your
account details.
- Interpretation (disclaimed): This segment establishes the identity verification requirement before the company must respond to data subject rights requests, creating a procedural condition precedent to the exercise of those rights.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=Before%20we%20can%20respond,or%20your%20account%20details.
### audit rights dpa residency — risk unknown
> Please send an email to us if you would like to exercise any of your
rights at
[privacy@deepseek.com](mailto:privacy@deepseek.com).
- Interpretation (disclaimed): This segment provides the specific mechanism (email to privacy@deepseek.com) by which data subjects must exercise their rights, establishing the formal procedure for submitting rights requests.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=Please%20send%20an%20email,your%20rights%20at%20%5Bprivacy%40deepseek.com%5D(mailto%3Aprivacy%40deepseek.com).
### audit rights dpa residency — risk unknown
> -European Union (EU)
- Interpretation (disclaimed): This segment identifies the European Union as one of the geographic regions covered by the Prighter Group privacy representative appointment, defining the territorial scope of that legal obligation.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=-European%20Union%20(EU)
### audit rights dpa residency — risk unknown
> -United Kingdom (UK)
- Interpretation (disclaimed): This segment identifies the United Kingdom as one of the geographic regions covered by the Prighter Group privacy representative appointment, defining the territorial scope of that legal obligation.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=-United%20Kingdom%20(UK)
### audit rights dpa residency — risk unknown
> If you wish to lodge a data subject request, you may also exercise your
rights by contacting us at
[rep\_deepseek@prighter.com](mailto:rep_deepseek@prighter.com), with “Data Subject Request” in the subject line, setting out the
details of your rights request. To verify the appointment of Prighter as
our representative and for further contact details please visit [https://app.prighter.com/portal/deepseek](https://app.prighter.com/portal/deepseek).
- Interpretation (disclaimed): This segment provides the procedure for data subjects in EU/UK to exercise rights by contacting the Prighter representative via a specified email address, establishing an alternative channel and process for submitting data subject requests.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=If%20you%20wish%20to,details%20please%20visit%20%5Bhttps%3A%2F%2Fapp.prighter.com%2Fportal%2Fdeepseek%5D(https%3A%2F%2Fapp.prighter.com%2Fportal%2Fdeepseek).
### audit rights dpa residency — risk unknown
> [](https://app.prighter.com/portal/17162496076)
- Interpretation (disclaimed): This segment is a certification badge linking to Prighter's GDPR Article 27 representation certificate for the company, incorporating by reference the formal GDPR representation documentation.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=%5B!%5BGDPR%20Certification%3A%20Art%2027%20representation%20by%20Prighter%5D(https%3A%2F%2Fapi.prighter.com%2Fv1%2Fbusiness%2Fcertificate-of-representation%3Fbusiness_id%3D17162496076%26certificate_product%3DART27)%5D(https%3A%2F%2Fapp.prighter.com%2Fportal%2F17162496076)
### audit rights dpa residency — risk unknown
> powered by
[Prighter](https://prighter.com/ "Prighter - GDPR Compliance / Privacy Representation for EU, Switzerland, UK and Turkey")
- Interpretation (disclaimed): This segment is an attribution link for the Prighter GDPR representation service, incorporating by reference the service provider involved in the company's GDPR Article 27 compliance arrangement.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=powered%20by%20%5BPrighter%5D(https%3A%2F%2Fprighter.com%2F%20%22Prighter,Switzerland%2C%20UK%20and%20Turkey%22)
### audit rights dpa residency — risk unknown
> [](https://app.prighter.com/portal/17162496076)
- Interpretation (disclaimed): This segment is a UK-GDPR certification badge linking to Prighter's UK Article 27 representation certificate, incorporating by reference the formal UK-GDPR representation documentation.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=%5B!%5BUK-GDPR%20Certification%3A%20Art%2027%20representation%20by%20Prighter%5D(https%3A%2F%2Fapi.prighter.com%2Fv1%2Fbusiness%2Fcertificate-of-representation%3Fbusiness_id%3D17162496076%26certificate_product%3DUKREP)%5D(https%3A%2F%2Fapp.prighter.com%2Fportal%2F17162496076)
### audit rights dpa residency — risk unknown
> powered by
[Prighter](https://prighter.com/ "Prighter - GDPR Compliance / Privacy Representation for EU, Switzerland, UK and Turkey")
- Interpretation (disclaimed): This segment is an attribution link for the Prighter UK-GDPR representation service, incorporating by reference the service provider involved in the company's UK-GDPR Article 27 compliance arrangement.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=powered%20by%20%5BPrighter%5D(https%3A%2F%2Fprighter.com%2F%20%22Prighter,Switzerland%2C%20UK%20and%20Turkey%22)
### indemnity liability — risk high
> You agree to indemnify, defend, and hold us, our affiliates,
employees and licensors (if any) harmless against any liabilities,
damages, and costs (including reasonable attorneys' fees) payable to a
third party arising out of a breach by you or any user of your account
of these Terms, your violation of all applicable laws and regulations or
third party rights, your fraud or other illegal acts, or your
intentional misconduct or gross negligence, to the extent permitted by
the applicable la
- Interpretation (disclaimed): The user indemnifies DeepSeek and its affiliates for third-party claims. Coverage extends to all users of the account, meaning account holders bear liability for others' actions. Limited to intentional misconduct/gross negligence, which partially reduces risk.
- Tier: All
- Location: § 8.5
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=You%20agree%20to%20indemnify%2C,by%20the%20applicable%20la
### indemnity liability — risk high
> Unless otherwise agreed, either DeepSeek or you shall not be liable
for the other’s incidental, consequential, punitive, special, or
indirect losses or damages, including but not limited to the loss of
profits or goodwill, unless such losses or damages result from its own
intentional or gross negligent conduct. This limitation applies
irrespective of any litigation brought under breach, tort, compensation,
or any other legal grounds, even if the party was informed of the
possibility of such losses. OUR AGGREGATE LIABILITY UNDER THESE TERMS
WILL NOT EXCEED THE GREATER OF THE AMOUNT YOU PAID FOR THE SERVICE THAT
GAVE RISE TO THE CLAIM DURING THE 12 MONTHS BEFORE THE LIABILITY AROSE
OR ONE HUNDRED DOLLARS ($100). THE LIMITATIONS IN THIS SECTION APPLY
ONLY TO THE MAXIMUM EXTENT PERMITTED BY APPLICABLE LAW
- Interpretation (disclaimed): The liability cap of $100 is extremely low and practically eliminates meaningful recovery for free-tier users. The mutual exclusion of consequential damages limits both parties, but DeepSeek as the service provider benefits disproportionately from this limitation.
- Tier: All
- Location: § 8.4
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=Unless%20otherwise%20agreed%2C%20either,PERMITTED%20BY%20APPLICABLE%20LAW
### indemnity liability — risk high
> You shall be responsible for any legal
liabilities, claims, demands, or losses asserted by third parties
resulting therefrom, and you shall compensate us for any losses
incurred, including but not limited to litigation fees, arbitration
fees, attorney fees, notary fees, announcement fees, appraisal fees,
travel expenses, investigation and evidence collection fees,
compensation, liquidated damages, settlement costs, and administrative
fines incurred in protecting our rights. However, if we are also at
fault, liability shall be apportioned between you and Deepseek based on
the degree of fault, as determined under applicable laws and
regulations.
- Interpretation (disclaimed): This indemnification clause is broader than typical — it includes 'administrative fines' (which may relate to Chinese regulatory penalties) and an unusually detailed list of recoverable costs. Users bear full liability unless DeepSeek is also at fault, in which case apportionment applies.
- Tier: All
- Location: § 8.2
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=You%20shall%20be%20responsible,applicable%20laws%20and%20regulations.
### indemnity liability — risk medium
> We make no warranty that the Services are available or will continue
to be available in certain jurisdictions. The functions or features of
the Services may also vary in different jurisdiction
- Interpretation (disclaimed): The warranty disclaimer regarding availability means users have no contractual recourse if the service becomes unavailable in their jurisdiction, which is particularly relevant for business-critical or API-dependent deployments.
- Tier: All
- Location: § 1.5
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=We%20make%20no%20warranty,vary%20in%20different%20jurisdiction
### indemnity liability — risk medium
> You will bear full responsibility for any losses
caused by the leakage of your account or password, except where the loss
is caused by our intentional or gross negligent conduc
- Interpretation (disclaimed): The clause allocates financial risk of unauthorized account access to the user by default. The carve-out for DeepSeek's 'intentional or gross negligent conduct' sets a high threshold that will rarely be met in practice, limiting user recourse.
- Tier: All
- Location: § 2.4
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=You%20will%20bear%20full,or%20gross%20negligent%20conduc
### indemnity liability — risk unknown
> CONFORMANCE WITH DESCRIPTION. IN PARTICULAR, WE DO NOT REPRESENT OR
WARRANT TO YOU:
- Interpretation (disclaimed): This segment introduces the specific enumerated representations and warranties that DeepSeek does not make regarding the Services.
- Tier: All
- Location: Terms of Service › “IMPLIED TERMS AS TO SATISFACTORY QUALITY, FITNESS FOR PURPOSE OR”
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%20CONFORMANCE%20WITH%20DESCRIPTION.,OR%20WARRANT%20TO%20YOU%3A
### indemnity liability — risk unknown
> their content, services, or practices. Your use of any such link is
undertaken at your sole discretion and risk. You acknowledge and agree
that it is your responsibility to evaluate the third party's terms,
protect your data, and secure your property when engaging with these
external resources.
- Interpretation (disclaimed): This segment places the obligation on the user to evaluate third-party terms, protect their own data, and secure their property when engaging with external resources, shifting responsibility away from DeepSeek.
- Tier: All
- Location: Terms of Service › “Outputs for informational purposes only and disclaim all liability for”
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%20their%20content%2C%20services%2C,with%20these%20external%20resources.
### indemnity liability — risk unknown
> 8.5 You agree to indemnify, defend, and hold us, our affiliates,
employees and licensors (if any) harmless against any liabilities,
damages, and costs (including reasonable attorneys' fees) payable to a
third party arising out of a breach by you or any user of your account
of these Terms, your violation of all applicable laws and regulations or
third party rights, your fraud or other illegal acts, or your
intentional misconduct or gross negligence, to the extent permitted by
the applicable law.
- Interpretation (disclaimed): This segment imposes an indemnification obligation on users to defend and hold harmless DeepSeek, its affiliates, employees, and licensors from third-party claims arising from the user's breach of Terms, violation of laws or third-party rights, fraud, or intentional misconduct or gross negligence.
- Tier: All
- Location: § 8.5
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%208.5%20You%20agree,by%20the%20applicable%20law.
### indemnity liability — risk unknown
> (1) THAT YOUR USE OF THE SERVICES WILL MEET YOUR REQUIREMENTS;
- Interpretation (disclaimed): This segment disclaims any warranty that use of the Services will meet the user's requirements.
- Tier: All
- Location: Terms of Service › “IMPLIED TERMS AS TO SATISFACTORY QUALITY, FITNESS FOR PURPOSE OR”
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%20(1)%20THAT%20YOUR,WILL%20MEET%20YOUR%20REQUIREMENTS%3B
### indemnity liability — risk unknown
> (2) THAT YOUR USE OF THE SERVICES OR ANY PART THEREOF WILL BE
- Interpretation (disclaimed): This segment disclaims any warranty that use of the Services will be uninterrupted, timely, secure, or free from error.
- Tier: All
- Location: Terms of Service › “IMPLIED TERMS AS TO SATISFACTORY QUALITY, FITNESS FOR PURPOSE OR”
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%20(2)%20THAT%20YOUR,PART%20THEREOF%20WILL%20BE
### indemnity liability — risk unknown
> 4.4 The Output may include information from third-party websites or
other external sources. We are not responsible for the validity of such
content, nor do we guarantee the authenticity, legality, or security of
any content, products, services, or other materials obtained through
these channels. We may provide links to third-party websites in the
- Interpretation (disclaimed): This segment disclaims DeepSeek's responsibility for the validity, authenticity, legality, or security of third-party content appearing in Outputs, limiting liability for third-party information referenced by the Service.
- Tier: All
- Location: § 4.4
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%204.4%20The%20Output,third-party%20websites%20in%20the
### indemnity liability — risk unknown
> 5.4 Given that the Outputs may contain incorrect, incomplete or
inaccurate content, if you use the Outputs for any purpose that could
have a legal or material impact on natural persons, such as making
credit, educational, employment, housing, insurance, legal, medical, or
other important decisions about them, such Outputs shall undergo human
reviews; and you shall be solely and independently liable for the
corresponding liabilities.
- Interpretation (disclaimed): This segment imposes an obligation on users to subject Outputs to human review before using them for consequential decisions affecting natural persons, and assigns sole and independent liability to users for resulting consequences.
- Tier: All
- Location: § 5.4
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%205.4%20Given%20that,for%20the%20corresponding%20liabilities.
### indemnity liability — risk unknown
> NON-INFRINGING OR SECURE;
- Interpretation (disclaimed): This segment continues disclaiming that Outputs will be non-infringing or secure.
- Tier: All
- Location: Terms of Service › “YOUR USE OF THE SERVICES WILL BE ACCURATE, UP-TO-DATE, RELIABLE,”
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%20NON-INFRINGING%20OR%20SECURE%3B
### indemnity liability — risk unknown
> (4) THAT DEFECTS IN THE OPERATION OR FUNCTIONALITY OF THE SERVICES WILL
- Interpretation (disclaimed): This segment disclaims any warranty that defects in the operation or functionality of the Services will be corrected.
- Tier: All
- Location: Terms of Service › “YOUR USE OF THE SERVICES WILL BE ACCURATE, UP-TO-DATE, RELIABLE,”
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%20(4)%20THAT%20DEFECTS,OF%20THE%20SERVICES%20WILL
### indemnity liability — risk unknown
> (5) WITH RESPECT TO THIRD PARTY OFFERINGS.
- Interpretation (disclaimed): This segment disclaims any warranty with respect to third-party offerings available through or referenced by the Services.
- Tier: All
- Location: Terms of Service › “BE CORRECTED;OR”
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%20(5)%20WITH%20RESPECT%20TO%20THIRD%20PARTY%20OFFERINGS.
### indemnity liability — risk unknown
> Outputs may contain errors or omissions and are for your reference
only. You should NOT treat any Outputs as professional advice.
In particular, when using this Service to consult on medical, legal,
financial, and other professional issues, please note that the Output
does not constitute any advice or commitment, nor does it represent
opinions in any professional field. If you require related professional
services, you should consult professionals and make decisions under
their guidance. The Output of our Services shall not form the basis for
your further actions or omissions. You are solely and independently
responsible for any decisions or actions you take based on any Outputs,
as well as for any consequences that follow.
- Interpretation (disclaimed): This segment disclaims that Outputs constitute professional advice in medical, legal, financial, or other professional fields, and states that users are solely responsible for their own decisions and actions based on Outputs.
- Tier: All
- Location: Terms of Service › “The”
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%20Outputs%20may%20contain,any%20consequences%20that%20follow.
### indemnity liability — risk unknown
> 5.2 When you enable the "Search" function, the accuracy of the Outputs
may be improved to some extent. However, limited by current technical
capabilities, inaccuracy in AI-generated content is a common
industry-wide issue and cannot be entirely avoided. Therefore, please
use our Services rationally in accordance with these Terms.
- Interpretation (disclaimed): This segment discloses that even with the Search function enabled, inaccuracy in AI-generated content is an industry-wide issue that cannot be entirely avoided, limiting DeepSeek's liability for Output accuracy.
- Tier: All
- Location: § 5.2
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%205.2%20When%20you,accordance%20with%20these%20Terms.
### indemnity liability — risk unknown
> (3) THAT ANY OUTPUT OR OTHER INFORMATION OBTAINED BY YOU AS A RESULT OF
- Interpretation (disclaimed): This segment disclaims any warranty that Outputs or other information obtained through the Services will be accurate, up-to-date, reliable, non-infringing, or secure.
- Tier: All
- Location: Terms of Service › “IMPLIED TERMS AS TO SATISFACTORY QUALITY, FITNESS FOR PURPOSE OR”
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%20(3)%20THAT%20ANY,AS%20A%20RESULT%20OF
### indemnity liability — risk unknown
> 8.1 NOTHING IN THESE TERMS SHALL AFFECT ANY STATUTORY RIGHTS THAT YOU
CANNOT CONTRACTUALLY AGREE TO ALTER OR WAIVE AND ARE LEGALLY ALWAYS
ENTITLED TO AS A CONSUMER.
- Interpretation (disclaimed): This segment carves out statutory consumer rights that cannot be contractually waived, ensuring that the disclaimer and limitation provisions do not override mandatory legal protections available to consumers.
- Tier: All
- Location: § 8.1
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%208.1%20NOTHING%20IN,TO%20AS%20A%20CONSUMER.
### indemnity liability — risk unknown
> 8.3 THE SERVICES ARE PROVIDED ON AN “AS IS” AND “AS AVAILABLE” BASIS AND
WE MAKE NO WARRANTY, REPRESENTATION OR CONDITION TO YOU WITH RESPECT TO
- Interpretation (disclaimed): This segment begins the 'as is' and 'as available' warranty disclaimer, excluding all express and implied warranties regarding the Services including satisfactory quality and fitness for purpose.
- Tier: All
- Location: § 8.3
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%208.3%20THE%20SERVICES,YOU%20WITH%20RESPECT%20TO
### indemnity liability — risk unknown
> UNINTERRUPTED, TIMELY, SECURE OR FREE FROM ERROR;
- Interpretation (disclaimed): This segment continues the disclaimer that use of the Services will be uninterrupted, timely, secure, or free from error.
- Tier: All
- Location: Terms of Service › “IMPLIED TERMS AS TO SATISFACTORY QUALITY, FITNESS FOR PURPOSE OR”
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%20UNINTERRUPTED%2C%20TIMELY%2C%20SECURE%20OR%20FREE%20FROM%20ERROR%3B
### indemnity liability — risk unknown
> 8.4 Unless otherwise agreed, either DeepSeek or you shall not be liable
for the other’s incidental, consequential, punitive, special, or
indirect losses or damages, including but not limited to the loss of
profits or goodwill, unless such losses or damages result from its own
intentional or gross negligent conduct. This limitation applies
irrespective of any litigation brought under breach, tort, compensation,
or any other legal grounds, even if the party was informed of the
possibility of such losses. OUR AGGREGATE LIABILITY UNDER THESE TERMS
WILL NOT EXCEED THE GREATER OF THE AMOUNT YOU PAID FOR THE SERVICE THAT
GAVE RISE TO THE CLAIM DURING THE 12 MONTHS BEFORE THE LIABILITY AROSE
OR ONE HUNDRED DOLLARS ($100). THE LIMITATIONS IN THIS SECTION APPLY
ONLY TO THE MAXIMUM EXTENT PERMITTED BY APPLICABLE LAW.
- Interpretation (disclaimed): This segment establishes mutual exclusion of incidental, consequential, punitive, special, or indirect damages except for intentional or grossly negligent conduct, and caps DeepSeek's aggregate liability at the greater of fees paid or another threshold, constituting a core liability limitation.
- Tier: All
- Location: § 8.4
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%208.4%20Unless%20otherwise,PERMITTED%20BY%20APPLICABLE%20LAW.
### indemnity liability — risk unknown
> 8.6 DeepSeek’s affiliates, suppliers, licensors, and employees are
intended third party beneficiaries of this section.
- Interpretation (disclaimed): This segment designates DeepSeek's affiliates, suppliers, licensors, and employees as intended third-party beneficiaries of the indemnity and liability section, granting them enforceable rights under the agreement.
- Tier: All
- Location: § 8.6 (DeepSeek’s affiliates, suppliers, licensors, and employees are)
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%208.6%20DeepSeek%E2%80%99s%20affiliates%2C,beneficiaries%20of%20this%20section.
### confidentiality — risk unknown
> 6.2 Without our permission, you or your end users shall not use any
trademarks, service marks, trade names, domain names, website names,
company logos (LOGOs), URLs, or other prominent brand features related
to the Services, including but not limited to "DeepSeek," etc., in any
way, either singly or in combination. You are not allowed to display,
use, or apply for registration of trademarks, domain names, etc.,
related to the aforementioned terms in any way, and you shall not
perform acts that expressly or implicitly indicate the right to display,
use, or otherwise deal with these identifiers to others except as
permitted by the relevant law and licensed by DeepSeek.
- Interpretation (disclaimed): This segment restricts users and their end users from using DeepSeek's trademarks, brand features, domain names, or logos in any form without permission, and prohibits applying for registration of such marks.
- Tier: All
- Location: § 6.2
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%206.2%20Without%20our,and%20licensed%20by%20DeepSeek.
### governing law disputes — risk high
> 10.1 The establishment, execution, interpretation, and resolution of
disputes under these Terms shall be governed by the laws of the People's
Republic of China in the mainland.
- Interpretation (disclaimed): Choice-of-law clause selects mainland Chinese law for all disputes. For users outside China, this means their local consumer/data protection laws may not apply, and enforcing rights could require engaging with an unfamiliar legal system. This is a significant risk for EU, US, and other non-Chinese users.
- Tier: All
- Location: § 10.1 (The establishment, execution, interpretation, and resolution of)
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=10.1%20The%20establishment%2C%20execution%2C,China%20in%20the%20mainland.
### governing law disputes — risk high
> The establishment, execution, interpretation, and resolution of
disputes under these Terms shall be governed by the laws of the People's
Republic of China in the mainlan
- Interpretation (disclaimed): PRC governing law means disputes are interpreted under Chinese legal standards. This may conflict with mandatory local law protections (e.g., GDPR in the EU) and practically limits international users' ability to seek redress in their home jurisdictions.
- Tier: All
- Location: § 10.1 (The establishment, execution, interpretation, and resolution of)
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=The%20establishment%2C%20execution%2C%20interpretation%2C,China%20in%20the%20mainlan
### governing law disputes — risk high
> 10.2 In the event of a dispute arising from the signing, performance, or
interpretation of these Terms, the parties can make efforts to resolve
it amicably through negotiation. Also either party has the right to file
a lawsuit with a court having jurisdiction over the location of the
registered office of Hangzhou DeepSeek Artificial Intelligence Co., Ltd.
- Interpretation (disclaimed): The exclusive venue is a Chinese court at DeepSeek's registered location (Hangzhou). Non-Chinese users face significant practical barriers — cost, language, travel, and procedural unfamiliarity — to asserting legal rights. No arbitration, class action, or alternative dispute resolution mechanism is offered.
- Tier: All
- Location: § 10.2
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=10.2%20In%20the%20event,Artificial%20Intelligence%20Co.%2C%20Ltd.
### governing law disputes — risk unknown
> Last Update: Feb 10, 2026
- Interpretation (disclaimed): The complete absence of a governing law or dispute resolution clause in the privacy policy means users have no clarity on which legal system governs privacy disputes. This is itself a risk factor, particularly for non-Chinese users.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=Last%20Update%3A%20Feb%2010%2C%202026
### governing law disputes — risk unknown
> 11.1 In order to provide you with better services or to comply with
changes in national laws, regulations, policy adjustments, technical
conditions, product functionalities, and other requirements, we may
revise these Terms from time to time. The revised content will form an
integral part of these Terms. Once announced, it replaces the original
terms. Please refer to the latest version of these Terms on the official
website. If you do not accept the modified terms, please stop using the
Service immediately. Your continued usage of the Service will be
considered as your acceptance of the modified terms.
- Interpretation (disclaimed): Establishes the procedure for amending the Terms, providing that DeepSeek may revise them unilaterally, that revised terms replace originals upon announcement, and that continued use constitutes acceptance, while granting users the right to reject changes by ceasing use.
- Tier: All
- Location: § 11.1
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%2011.1%20In%20order,of%20the%20modified%20terms.
### governing law disputes — risk unknown
> You understand that your use of Services, providing Inputs to and
obtaining Outputs via Services, might be subject to all applicable laws
and regulations of export controls and sanctions laws (collectively
"Export Control and Sanctions Laws") . You recognize that you are solely
responsible for complying with all applicable Export Control and
Sanctions Laws related to the access and use of the Services of you and
your end user. You represent and warrant that Services may not be used
in or for the benefit of, or exported, re-exported, or transferred (a)
to or within any country subject to comprehensive sanctions under Export
Control and Sanctions Laws; (b) to any party on any restricted party
lists under any applicable Export Control and Sanctions Laws that would
prohibit your use of Services. Our Services shall not be used for any
end use prohibited by applicable Export Control and Sanctions Laws, and
your and your end user's Inputs shall not include material or
information that requires a license for release or export.
- Interpretation (disclaimed): Imposes an obligation on the user to comply with all applicable Export Control and Sanctions Laws when accessing or using the Services, and includes a warranty/representation that the Services will not be used in prohibited countries or for prohibited purposes, creating a binding legal compliance requirement.
- Tier: All
- Location: Terms of Service › “Export Control and Sanctions”
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%20You%20understand%20that,for%20release%20or%20export.
### governing law disputes — risk ambiguous
> DeepSeek products and services are owned and operated by Hangzhou
DeepSeek Artificial Intelligence Co., Ltd
- Interpretation (disclaimed): The absence of an explicit governing law or dispute resolution clause in the reproduced document, combined with the operator being a PRC entity, creates material ambiguity about which legal system governs disputes and where users must pursue claims.
- Tier: All
- Location: Terms of Service › “DeepSeek products and services are owned and operated by Hangzhou”
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=DeepSeek%20products%20and%20services,Artificial%20Intelligence%20Co.%2C%20Ltd
### governing law disputes — risk unknown
> 10.1 The establishment, execution, interpretation, and resolution of
disputes under these Terms shall be governed by the laws of the People's
Republic of China in the mainland.
- Interpretation (disclaimed): Establishes that the laws of the People's Republic of China (mainland) govern the formation, execution, interpretation, and dispute resolution under these Terms, binding both parties to a specific legal framework.
- Tier: All
- Location: § 10.1 (The establishment, execution, interpretation, and resolution of)
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%2010.1%20The%20establishment%2C,China%20in%20the%20mainland.
### governing law disputes — risk unknown
> 10.2 In the event of a dispute arising from the signing, performance, or
interpretation of these Terms, the parties can make efforts to resolve
it amicably through negotiation. Also either party has the right to file
a lawsuit with a court having jurisdiction over the location of the
registered office of Hangzhou DeepSeek Artificial Intelligence Co., Ltd.
- Interpretation (disclaimed): Sets out the dispute resolution procedure, providing that parties should first attempt amicable negotiation and grants either party the right to file a lawsuit in the court having jurisdiction over the registered office of Hangzhou DeepSeek Artificial Intelligence Co., Ltd.
- Tier: All
- Location: § 10.2
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%2010.2%20In%20the,Artificial%20Intelligence%20Co.%2C%20Ltd.
### governing law disputes — risk unknown
> If you are using the Services in the EEA, Switzerland or the UK (the
“European Region”), the following additional terms apply:
- Interpretation (disclaimed): States that users in the European Region are subject to additional terms, formally incorporating those supplemental provisions into the agreement for qualifying users.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=If%20you%20are%20using,following%20additional%20terms%20apply%3A
### moderation enforcement — risk high
> In response to your violation of these Terms or other service terms,
or your use of our Services could cause risk or harm to DeepSeek, our
users, or anyone else, DeepSeek reserves the right to independently
judge and take measures against you, including but not limited to,
issuing warnings, setting deadlines for correction, restricting account
functions, suspending usage, closing accounts, prohibiting
re-registration, deleting relevant content, etc.. For behaviors
suspected of violating laws and regulations or involving illegal
activities, relevant records will be retained, and reports will be made
to the competent authorities in accordance with the law, cooperating
with their investigations.
- Interpretation (disclaimed): The enforcement clause grants DeepSeek nearly unlimited discretion to take action against users based on a subjective harm standard ('could cause risk'). The mandatory reporting to 'competent authorities' under Chinese law raises significant concerns for users in other jurisdictions regarding data sovereignty and surveillance risk.
- Tier: All
- Location: § 8.2
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=In%20response%20to%20your,cooperating%20with%20their%20investigations.
### moderation enforcement — risk high
> If the materials or information you submit are inaccurate,
untrue, non-standard, or if there is a reason for the company to suspect
them as incorrect, false, or illegal, we reserve the right to refuse to
provide you with related functions. As a result, you may be unable to
use this platform and related services or may face restrictions on
certain functions during use. In such cases, we will offer an
opportunity for you to explain or object. If we determine your
explanation or objection is valid at our sole discretion, we will
promptly restore your access to the Services without reasonably delay.
- Interpretation (disclaimed): The 'sole discretion' standard for evaluating appeals, combined with broad grounds for restriction (including mere suspicion), creates significant enforcement asymmetry. Users have no independent adjudication mechanism.
- Tier: All
- Location: § 2.2
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=If%20the%20materials%20or,without%20reasonably%20delay.%20
### moderation enforcement — risk medium
> To fulfill legal and compliance requirements, DeepSeek has the right
to use technical means to review the behavior of users using the
Services, including but not limited to establishing risk filtering
mechanisms, and creating databases for illegal content features.
- Interpretation (disclaimed): The clause grants DeepSeek unilateral authority to conduct technical surveillance of user activity without apparent limitation on scope, raising concerns about pervasive monitoring of inputs and usage patterns.
- Tier: All
- Location: § 3.3
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=To%20fulfill%20legal%20and,illegal%20content%20features.%20
### moderation enforcement — risk unknown
> 11.2 If you notice any violation of laws and regulations or breach of
these Terms or you have any opinions or suggestions regarding these
Terms or the Services, you can contact us through the following methods:
- Interpretation (disclaimed): Sets out the procedure by which users may report violations of laws, breaches of the Terms, or submit feedback about the Services, establishing a channel for enforcement and compliance reporting.
- Tier: All
- Location: § 11.2
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%2011.2%20If%20you,through%20the%20following%20methods%3A
### moderation enforcement — risk unknown
> 3.5 You will not violate any applicable, nor interfere with, damage, or
attack the Services, systems, networks, models, and other components
that support the normal operation of the service. You will not engage in
activities that endanger the security of the Services:
- Interpretation (disclaimed): This restriction prohibits violating applicable law and interfering with, damaging, or attacking the Services, systems, networks, models, and components, and prohibits activities endangering service security, establishing broad platform integrity obligations.
- Tier: All
- Location: § 3.5
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%203.5%20You%20will,security%20of%20the%20Services%3A
### moderation enforcement — risk unknown
> (4) is discriminatory such as discriminating another based on race,
- Interpretation (disclaimed): This restriction prohibits discriminatory content targeting individuals based on protected characteristics, establishing an enforceable content moderation obligation against discriminatory use.
- Tier: All
- Location: § 3.4
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%20(4)%20is%20discriminatory,another%20based%20on%20race%2C
### moderation enforcement — risk unknown
> (2) Using the Services for dangerous purposes that may have serious
- Interpretation (disclaimed): This restriction prohibits using the Services for purposes that may cause serious harmful impacts on physical health, psychology, society, or economy, or that violate scientific and technological ethics.
- Tier: All
- Location: § 3.6
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%20(2)%20Using%20the,that%20may%20have%20serious
### moderation enforcement — risk unknown
> (2) Engage in activities that disrupt or damage the normal operation of
- Interpretation (disclaimed): This restriction introduces the category of activities that disrupt or damage normal network operation, forming part of the enumerated prohibited security conduct under platform terms.
- Tier: All
- Location: § 3.5
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%20(2)%20Engage%20in,the%20normal%20operation%20of
### moderation enforcement — risk unknown
> networks, models, and other components.
- Interpretation (disclaimed): Continuation of segment 65, completing the catch-all restriction by listing the protected components (systems, networks, models, and other components) against endangering activities.
- Tier: All
- Location: § 3.5
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%20networks%2C%20models%2C%20and%20other%20components.
### moderation enforcement — risk unknown
> Online Complaints and Feedback Portal: Click the "Contact us" button on
the product interface after logging in.
- Interpretation (disclaimed): Specifies the online complaints and feedback portal as a designated method for users to contact DeepSeek, forming part of the enforcement and reporting procedure described in segment 126.
- Tier: All
- Location: § 11.2
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%20Online%20Complaints%20and,interface%20after%20logging%20in.
### moderation enforcement — risk unknown
> (6) facilitates, promotes, incites or glorifies violence or
- Interpretation (disclaimed): This restriction prohibits content that facilitates, promotes, incites or glorifies violence or terrorist/extremism material, establishing a content moderation rule with legal and safety implications.
- Tier: All
- Location: § 3.4
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%20(6)%20facilitates%2C%20promotes%2C,or%20glorifies%20violence%20or
### moderation enforcement — risk unknown
> offence; or
- Interpretation (disclaimed): Continuation of segment 54, completing the clause on criminal offence prohibition as part of the enumerated list of restricted content types.
- Tier: All
- Location: § 3.4
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%20offence%3B%20or
### moderation enforcement — risk unknown
> (10) impersonates or is designed to impersonate a celebrity, public
- Interpretation (disclaimed): This restriction prohibits impersonation of celebrities, public figures, or other persons without labelling content as unofficial or parody, unless explicit consent is obtained, establishing an identity and honesty moderation rule.
- Tier: All
- Location: § 3.4
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%20(10)%20impersonates%20or,impersonate%20a%20celebrity%2C%20public
### moderation enforcement — risk unknown
> (1) Engage in illegal activities involving network intrusion, such as:
- Interpretation (disclaimed): This restriction introduces the category of illegal network intrusion activities prohibited to users, forming part of the enumerated security-related conduct restrictions under platform rules.
- Tier: All
- Location: § 3.5
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%20(1)%20Engage%20in,network%20intrusion%2C%20such%20as%3A
### moderation enforcement — risk unknown
> regulations, regulatory policies, or infringe on the legitimate rights
and interests of third parties.
- Interpretation (disclaimed): Continuation of segment 68, completing the prohibition on illegal use by specifying infringement on legitimate rights and interests of third parties as a prohibited purpose.
- Tier: All
- Location: § 3.6
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%20regulations%2C%20regulatory%20policies%2C,interests%20of%20third%20parties.
### moderation enforcement — risk unknown
> 3.4 You will not use the Services to generate, express or promote
content or a chatbot that:
- Interpretation (disclaimed): Prohibits users from generating, expressing, or promoting certain categories of harmful content or chatbots through the Services, establishing content moderation restrictions.
- Tier: All
- Location: § 3.4
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%203.4%20You%20will,or%20a%20chatbot%20that%3A
### moderation enforcement — risk unknown
> using unauthorized data or accessing unauthorized servers/accounts;
forging TCP/IP packet names or partial names; attempting to probe, scan,
or test vulnerabilities in the software system or network without
permission.
- Interpretation (disclaimed): This restriction enumerates specific prohibited network intrusion activities, including unauthorized data access, TCP/IP forgery, and unauthorized vulnerability scanning, enforcing platform security obligations.
- Tier: All
- Location: § 3.5
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%20using%20unauthorized%20data,or%20network%20without%20permission.
### moderation enforcement — risk unknown
> 3.3 To fulfill legal and compliance requirements, DeepSeek has the right
to use technical means to review the behavior of users using the
- Interpretation (disclaimed): Grants DeepSeek the right to use technical means to monitor and review user behavior for legal and compliance purposes, including risk filtering and illegal-content databases.
- Tier: All
- Location: § 3.3
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%203.3%20To%20fulfill,of%20users%20using%20the
### moderation enforcement — risk unknown
> chatbots);
- Interpretation (disclaimed): Continuation of segment 46, completing the parenthetical example of sexual chatbots as prohibited sexually explicit content under platform moderation enforcement.
- Tier: All
- Location: § 3.4
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%20chatbots)%3B
### moderation enforcement — risk unknown
> (3) may harass, intimidate, threaten, harm, hurt, scare, distress,
- Interpretation (disclaimed): This restriction prohibits content that may harass, intimidate, threaten, harm, hurt, scare, distress, embarrass or upset another person, defining a category of prohibited user conduct under content moderation enforcement.
- Tier: All
- Location: § 3.4
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%20(3)%20may%20harass%2C,harm%2C%20hurt%2C%20scare%2C%20distress%2C
### moderation enforcement — risk unknown
> harmful impacts on physical health, psychology, society, or the economy,
or violate scientific and technological ethics.
- Interpretation (disclaimed): Continuation of segment 70, completing the harmful purposes restriction by referencing violations of scientific and technological ethics as an additional prohibited category.
- Tier: All
- Location: § 3.6
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%20harmful%20impacts%20on,scientific%20and%20technological%20ethics.
### moderation enforcement — risk unknown
> regulations, or that may harm DeepSeek's rights and interests.
- Interpretation (disclaimed): Continuation of segment 76, completing the catch-all restriction by specifying harm to DeepSeek's rights and interests as an additional prohibited category of use.
- Tier: All
- Location: § 3.6
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%20regulations%2C%20or%20that,DeepSeek's%20rights%20and%20interests.
### moderation enforcement — risk unknown
> Exercise the rights stipulated in these Terms for any illegal or
violating behavior committed by the user during the use of the
Services before deletion.
- Interpretation (disclaimed): Reserves DeepSeek's right to exercise enforcement rights under the Terms for any user violations committed prior to account deletion, ensuring that account deletion does not extinguish DeepSeek's remedial or enforcement authority.
- Tier: All
- Location: § 2.5
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%20Exercise%20the%20rights,the%20Services%20before%20deletion.
### moderation enforcement — risk unknown
> person under the age of 18 or the minimum age required in your country;
- Interpretation (disclaimed): Continuation of segment 52, completing the age-based restriction by specifying the minimum age threshold required in the user's country as an alternative standard for the prohibition.
- Tier: All
- Location: § 3.4
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%20person%20under%20the,required%20in%20your%20country%3B
### moderation enforcement — risk unknown
> 8.2 In response to your violation of these Terms or other service terms,
or your use of our Services could cause risk or harm to DeepSeek, our
users, or anyone else, DeepSeek reserves the right to independently
judge and take measures against you, including but not limited to,
issuing warnings, setting deadlines for correction, restricting account
functions, suspending usage, closing accounts, prohibiting
re-registration, deleting relevant content, etc.. For behaviors
suspected of violating laws and regulations or involving illegal
activities, relevant records will be retained, and reports will be made
to the competent authorities in accordance with the law, cooperating
with their investigations. You shall be responsible for any legal
liabilities, claims, demands, or losses asserted by third parties
resulting therefrom, and you shall compensate us for any losses
incurred, including but not limited to litigation fees, arbitration
fees, attorney fees, notary fees, announcement fees, appraisal fees,
travel expenses, investigation and evidence collection fees,
compensation, liquidated damages, settlement costs, and administrative
fines incurred in protecting our rights. However, if we are also at
fault, liability shall be apportioned between you and Deepseek based on
the degree of fault, as determined under applicable laws and
regulations.
- Interpretation (disclaimed): This segment reserves DeepSeek's right to take unilateral enforcement actions — including warnings, account suspension, content deletion, and reporting to authorities — against users who violate the Terms or cause risk or harm.
- Tier: All
- Location: § 8.2
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%208.2%20In%20response,applicable%20laws%20and%20regulations.
### moderation enforcement — risk unknown
> (7) exploits, harms, or attempts to exploit or harm minors or exposes
- Interpretation (disclaimed): This restriction prohibits content that exploits, harms, or attempts to exploit or harm minors, or exposes minors to harmful content, establishing a child safety content moderation obligation.
- Tier: All
- Location: § 3.4
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%20(7)%20exploits%2C%20harms%2C,harm%20minors%20or%20exposes
### moderation enforcement — risk unknown
> bullying or trolling another;
- Interpretation (disclaimed): Continuation of the restriction prohibiting bullying or trolling behavior, forming part of the enumerated list of prohibited content under platform moderation rules.
- Tier: All
- Location: § 3.4
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%20bullying%20or%20trolling%20another%3B
### moderation enforcement — risk unknown
> 3.2 When using the Services provided by DeepSeek, users shall comply
with these Terms and adhere to the principles of voluntariness,
equality, fairness, and good faith. Users shall not use the Service to
engage in, facilitate, or promote any activities violating laws or
regulations, infringing on the legal rights or interests of others or
seek unjust benefits, nor shall you disrupt the normal order of the
internet platform.
- Interpretation (disclaimed): Obliges users to comply with the Terms and principles of voluntariness, equality, fairness, and good faith, and prohibits using the Services for illegal activities, infringement of others' rights, unjust enrichment, or disruption of platform order.
- Tier: All
- Location: § 3.2
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%203.2%20When%20using,of%20the%20internet%20platform.
### moderation enforcement — risk unknown
> mechanisms, and creating databases for illegal content features.
- Interpretation (disclaimed): Continuation of DeepSeek's right to create databases of illegal content features as part of its technical compliance monitoring infrastructure.
- Tier: All
- Location: Terms of Service › “Services, including but not limited to establishing risk filtering”
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%20mechanisms%2C%20and%20creating,for%20illegal%20content%20features.
### moderation enforcement — risk unknown
> (1) is hateful, defamatory, offensive, abusive, tortious or vulgar;
- Interpretation (disclaimed): Specifies that hateful, defamatory, offensive, abusive, tortious, or vulgar content is prohibited from being generated or promoted through the Services, detailing the first category of restricted content.
- Tier: All
- Location: § 3.4
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%20(1)%20is%20hateful%2C,abusive%2C%20tortious%20or%20vulgar%3B
### moderation enforcement — risk unknown
> (2) is deliberately designed to provoke or antagonize another or is
- Interpretation (disclaimed): This restriction prohibits users from submitting content deliberately designed to provoke or antagonize others, establishing a behavioral content moderation rule enforceable against users.
- Tier: All
- Location: § 3.4
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%20(2)%20is%20deliberately,antagonize%20another%20or%20is
### moderation enforcement — risk unknown
> embarrass or upset another;
- Interpretation (disclaimed): Continuation of segment 42, completing the list of prohibited harmful effects (embarrass or upset another) that constitute restricted content under the platform's moderation policy.
- Tier: All
- Location: § 3.4
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%20embarrass%20or%20upset%20another%3B
### moderation enforcement — risk unknown
> gender, sexuality, religion, nationality, disability or age;
- Interpretation (disclaimed): Continuation of segment 44, specifying protected characteristics (sexuality, religion, nationality, disability, or age) whose discrimination is prohibited under platform content rules.
- Tier: All
- Location: § 3.4
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%20gender%2C%20sexuality%2C%20religion%2C%20nationality%2C%20disability%20or%20age%3B
### moderation enforcement — risk unknown
> (5) is pornographic, obscene, or sexually explicit (e.g., sexual
- Interpretation (disclaimed): This restriction prohibits pornographic, obscene, or sexually explicit content, including sexual chatbots as a named example, establishing a content moderation rule enforceable against users.
- Tier: All
- Location: § 3.4
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%20(5)%20is%20pornographic%2C,sexually%20explicit%20(e.g.%2C%20sexual
### moderation enforcement — risk unknown
> terrorist/extremism content;
- Interpretation (disclaimed): Continuation of segment 48, completing the description of prohibited terrorist and extremism content as part of the enumerated content moderation restrictions.
- Tier: All
- Location: § 3.4
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%20terrorist%2Fextremism%20content%3B
### moderation enforcement — risk unknown
> minors to such content;
- Interpretation (disclaimed): Continuation of segment 50, completing the phrase about prohibition on exposing minors to harmful content under platform child protection moderation rules.
- Tier: All
- Location: § 3.4
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%20minors%20to%20such%20content%3B
### moderation enforcement — risk unknown
> (8) are designed to specifically appeal to or present a persona of any
- Interpretation (disclaimed): This restriction prohibits content specifically designed to appeal to or present a persona of persons under 18 or minimum age thresholds by jurisdiction, establishing a child protection content moderation rule.
- Tier: All
- Location: § 3.4
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%20(8)%20are%20designed,a%20persona%20of%20any
### moderation enforcement — risk unknown
> (9) constitute, encourage or provide instructions for a criminal
- Interpretation (disclaimed): This restriction prohibits content that constitutes, encourages, or provides instructions for criminal offences, establishing a legal compliance content moderation obligation on users.
- Tier: All
- Location: § 3.4
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%20(9)%20constitute%2C%20encourage,instructions%20for%20a%20criminal
### moderation enforcement — risk unknown
> figure or a person other than yourself without clearly labelling the
content or chatbot as "unofficial" or "parody", unless you have that
person's explicit consent.
- Interpretation (disclaimed): Continuation of segment 56, completing the impersonation restriction by specifying the conditions under which it may be permitted (labelling as unofficial/parody or obtaining explicit consent).
- Tier: All
- Location: § 3.4
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%20figure%20or%20a,that%20person's%20explicit%20consent.
### moderation enforcement — risk unknown
> the network, such as: intentionally generating, spreading malicious
programs or viruses; entering public computer networks or other people's
computer systems without permission and deleting, modifying, adding
stored information, etc.
- Interpretation (disclaimed): This restriction enumerates specific prohibited network disruption activities including spreading malicious programs, unauthorized system access, and unauthorized data modification, enforcing platform and network security obligations.
- Tier: All
- Location: § 3.5
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%20the%20network%2C%20such,adding%20stored%20information%2C%20etc.
### moderation enforcement — risk unknown
> (3) Engage in activities to steal network data, such as: reverse
- Interpretation (disclaimed): This restriction introduces the category of prohibited network data theft and enumerated activities such as reverse engineering, reverse compilation, and capturing service content using automated tools, protecting the platform's intellectual property and system integrity.
- Tier: All
- Location: § 3.5
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%20(3)%20Engage%20in,data%2C%20such%20as%3A%20reverse
### moderation enforcement — risk unknown
> engineering, reverse assembly, reverse compilation, translation, or
attempting to discover the source code, models, algorithms, and system
source code or underlying components of the software in any way;
capturing, copying any content of the Services, including but not
limited to using any robots, spiders, or other automatic setups, setting
mirrors.
- Interpretation (disclaimed): Continuation of segment 63, completing the enumeration of prohibited data theft and scraping activities including use of bots, spiders, and mirroring tools that capture service content without authorization.
- Tier: All
- Location: § 3.5
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%20engineering%2C%20reverse%20assembly%2C,automatic%20setups%2C%20setting%20mirrors.
### moderation enforcement — risk unknown
> (4) Engaging in other activities that endanger the Services' systems,
- Interpretation (disclaimed): This restriction introduces a catch-all prohibition on other activities that endanger the Services' systems, networks, models, and components, serving as a general residual security restriction.
- Tier: All
- Location: § 3.5
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%20(4)%20Engaging%20in,endanger%20the%20Services'%20systems%2C
### moderation enforcement — risk unknown
> 3.6 You will not use the Services for the following improper purposes:
- Interpretation (disclaimed): This segment introduces the heading for section 3.6, establishing that the following subsections enumerate improper purposes for which the Services may not be used, framing subsequent restrictions on commercial and legal use.
- Tier: All
- Location: § 3.6
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%203.6%20You%20will,the%20following%20improper%20purposes%3A
### moderation enforcement — risk unknown
> (1) Using the Services for any illegal purposes that violate laws and
- Interpretation (disclaimed): This restriction prohibits using the Services for illegal purposes that violate laws, regulations, regulatory policies, or infringe on third-party rights, establishing a broad legal compliance obligation on users.
- Tier: All
- Location: § 3.6
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%20(1)%20Using%20the,that%20violate%20laws%20and
### moderation enforcement — risk unknown
> (3) Engaging in activities that infringe on intellectual property
- Interpretation (disclaimed): This restriction prohibits activities that infringe on intellectual property rights, trade secrets, business ethics violations, or use of algorithms and platforms for monopolistic and unfair competition behaviors.
- Tier: All
- Location: § 3.6
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%20(3)%20Engaging%20in,infringe%20on%20intellectual%20property
### moderation enforcement — risk unknown
> rights, trade secrets, and other violations of business ethics, or using
algorithms, data, platforms, etc., to implement monopolistic and unfair
competition behaviors.
- Interpretation (disclaimed): Continuation of segment 72, completing the intellectual property and competition restriction by specifying the use of algorithms, data, and platforms to implement monopolistic or unfair competition behaviors as prohibited conduct.
- Tier: All
- Location: § 3.6
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%20rights%2C%20trade%20secrets%2C,and%20unfair%20competition%20behaviors.
### moderation enforcement — risk unknown
> (5) Other uses prohibited or restricted by laws and administrative
- Interpretation (disclaimed): This restriction prohibits other uses barred by law, administrative regulations, or that may harm DeepSeek's rights and interests, serving as a residual catch-all restriction on user conduct.
- Tier: All
- Location: § 3.6
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%20(5)%20Other%20uses,by%20laws%20and%20administrative
### moderation enforcement — risk unknown
> 5.3 To prevent confusion while reducing the potential impact of
inaccurate generated information, DeepSeek has added labels within the
platform to explicitly remind users that such content is AI generated.
You shall not delete, alter, forge, conceal, or attempt to circumvent
such labels, nor use this Service to produce or disseminate false
information, infringing information, or engage in any illegal or
non-compliant activities.
- Interpretation (disclaimed): This segment restricts users from deleting, altering, forging, concealing, or circumventing AI-generated content labels, and prohibits use of the Service to produce or disseminate false, infringing, or illegal information.
- Tier: All
- Location: § 5.3
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%205.3%20To%20prevent,illegal%20or%20non-compliant%20activities.
### moderation enforcement — risk unknown
> If you believe that our service infringes on your intellectual property
rights or other rights, or if you find any illegal, false information or
behaviors that violate these Terms, or if you have any comments and
suggestions about our services, you can submit them by going to the
product interface, checking the avatar, and clicking the "Contact Us"
button, or by providing truthful feedback to us through our publicly
listed contact email as provided in Section 11. We take your opinions
seriously and will take legal actions accordingly. We appreciate your
feedback, and you agree that we may use it without restriction or
compensation to you.
- Interpretation (disclaimed): This segment establishes the procedure for users to submit complaints about intellectual property infringement, illegal content, or policy violations, and grants DeepSeek permission to use the feedback provided.
- Tier: All
- Location: Terms of Service › “Complaints and Feedback”
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%20If%20you%20believe,or%20compensation%20to%20you.
### moderation enforcement — risk unknown
> Contact Email:
service@deepseek.com
- Interpretation (disclaimed): Provides the contact email address (service@deepseek.com) as an additional designated channel for users to submit complaints, feedback, or reports, completing the contact and enforcement procedure.
- Tier: All
- Location: § 11.2
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%20Contact%20Email%3A%0A%20service%40deepseek.com
### moderation enforcement — risk unknown
> | To promote the safety, security, and stability of the Platform,
such as by preventing and detecting abuse, fraud, and illegal
activity on the Platform and by conducting troubleshooting, data
analysis, testing, and research. | Account Personal Data
User Input
Personal
Data When You Contact Us
Device and Network Personal Data
Log Personal Data
Location Personal Data
Cookies | Compliance with our legal obligations when we use your Personal
Data to comply with applicable law or when we protect our or our
affiliates’, users’, or third parties’ rights, safety, and
property.
Our legitimate
interests to ensure that the Platform is safe and secure. |
- Interpretation (disclaimed): This segment identifies the purposes for which personal data is processed to maintain platform safety and security, including fraud prevention, abuse detection, troubleshooting, and research, establishing an obligation tied to lawful bases for processing personal data.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=%7C%20To%20promote%20the,safe%20and%20secure.%20%7C
### tier differences — risk medium
> When you use paid services in our open platform, we collect your
payment order and transaction Personal Data to provide Services such
as order placement, payment, customer service, and after-sales
support.
- Interpretation (disclaimed): Paid/API tier users are subject to additional financial data collection. While the stated purpose is transactional, this data feeds into the broader data profile shared with service providers and the corporate group.
- Tier: Paid
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=When%20you%20use%20paid,service%2C%20and%20after-sales%20support.
### tier differences — risk unknown
> 1.5 We make no warranty that the Services are available or will continue
to be available in certain jurisdictions. The functions or features of
the Services may also vary in different jurisdictions.
- Interpretation (disclaimed): Disclaims any warranty of service availability in certain jurisdictions and notes that features may vary by jurisdiction, limiting DeepSeek's obligations regarding geographic accessibility.
- Tier: All
- Location: § 1.5
- Source: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html
- Snapshot SHA-256: `3ec7d1a92a5fa104b7ae0810a1fa63ef1f97d117e114def64fa7e249e94b653e`
- Wayback: —
- Deep link: https://cdn.deepseek.com/policies/en-US/deepseek-terms-of-use.html#:~:text=%201.5%20We%20make,vary%20in%20different%20jurisdictions.
### tier differences — risk unknown
> and
**Payment Personal Data**
are not applicable to DeepSeek App.
- Interpretation (disclaimed): Confirms exclusion of Cookie and Payment Personal Data from DeepSeek App, establishing a legally operative difference between app and platform tiers regarding these data categories.
- Tier: All
- Location: text-fragment link only — source has no section structure
- Source: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html
- Snapshot SHA-256: `21ea059d389152785841addf1e6475fb7a376dd8d0419dcaa017b2dfc36895da`
- Wayback: —
- Deep link: https://chat.deepseek.com/downloads/DeepSeek%20Privacy%20Policy.html#:~:text=and%20**Payment%20Personal%20Data**,applicable%20to%20DeepSeek%20App.