Anthropic

anthropic.com · facts updated 1 hour ago

Privacy facts at a glance

Retention: No specific retention period in days is stated; confidential information is destroyed promptly upon request except where retained to comply with law or in automated back-up systems.
Breach notification: The DPA defines a 'Security Breach' but does not state a specific notification timeframe in hours.
Transfer mechanism: SCCs (Module 2 controller-to-processor and Module 3 processor-to-processor) plus UK Addendum
SCC modules: Module 2 · Module 3
DPA available: Yes
GDPR addressed: Yes
CCPA addressed: Yes

Tracked documents

https://www.anthropic.com/legal/privacy checked 2 hours ago

https://www.anthropic.com/legal/commercial-terms checked 1 hour ago

Data processing agreement

https://www.anthropic.com/legal/data-processing-addendum checked 2 hours ago

Subprocessor list

https://trust.anthropic.com/subprocessors checked 2 hours ago

Security / trust page

https://trust.anthropic.com/ checked 2 hours ago

Recent changes

minor Data processing agreement 2 hours ago

Anthropic's Data Processing Addendum page shows only a reordering of header/navigation elements with no substantive content changes.

minor Data processing agreement 2 hours ago

Anthropic's Data Processing Addendum page had only navigation element text reordered with no substantive content changes.

minor Data processing agreement 2 hours ago

Anthropic's Data Processing Addendum page shows only a reordering of navigation/header elements with no substantive content changes detected in the diff.

Public summary; per-account review history visible to subscribers tracking this vendor.

Track Anthropic in your workspace.

Get notified when Anthropic adds a subprocessor, changes retention, updates their DPA, or quietly amends their privacy posture.

Start tracking — 14-day trial

No card required.