What can I do about this clause?

{'method': 'EMAIL', 'recipient': 'usersafety@anthropic.com', 'difficulty': 'EASY', 'action_type': 'DELETE_DATA', 'instructions': "If you believe your private, biometric, or health data has been misused through an Anthropic product, email usersafety@anthropic.com describing the specific data and the nature of the misuse. Anthropic's Safeguards Team will review the report.", 'deadline_days': None, 'deadline_hours': None}

Which regulatory agencies enforce this type of clause?

{'agency': 'FTC', 'reason': 'The FTC has authority over deceptive AI impersonation practices and unauthorized collection of sensitive personal data under FTC Act Section 5.', 'complaint_url': 'https://reportfraud.ftc.gov/'}, {'agency': 'State_AG', 'reason': 'State Attorneys General enforce CCPA, BIPA, and state privacy laws implicated by unauthorized biometric and health data collection.', 'complaint_url': 'https://www.naag.org/find-my-ag/'}

What is the severity of this clause?

ConductAtlas classifies this Prohibition on Privacy and Identity Compromise clause as medium severity. Severity reflects the magnitude of rights affected, the breadth of users impacted, and the degree of discretion the platform retains.

Prohibition on Privacy and Identity Compromise — Anthropic

Share 𝕏 Share in Share

What it is

You cannot use Claude to collect people's private data without permission, access health or biometric information unlawfully, or deceive someone into thinking they are talking to a real human rather than an AI.

Consumer impact (what this means for users)

Users are protected from having their biometric, health, or neural data harvested through Claude, and are entitled to know when they are interacting with an AI rather than a human — a right directly enforceable against any operator deploying Claude.

What you can do

⚠️ These actions may provide transparency or partial mitigation but may not fully address the underlying issue. Effectiveness varies by jurisdiction and individual circumstances.

Delete Your Data

If you believe your private, biometric, or health data has been misused through an Anthropic product, email usersafety@anthropic.com describing the specific data and the nature of the misuse. Anthropic's Safeguards Team will review the report.

Cross-platform context

See how other platforms handle Prohibition on Privacy and Identity Compromise and similar clauses.

Compare across platforms →

Need full compliance memos? See Professional →

Why it matters (compliance & risk perspective)

The explicit inclusion of neural data and the anti-impersonation rule are unusually specific and forward-looking compared to most AI platform AUPs, protecting users against emerging AI-enabled privacy and deception harms.

View original clause language

Violate privacy rights as defined by applicable privacy laws, such as sharing personal information without consent or accessing private data unlawfully... Misuse, collect, solicit, or gain access without permission to private information such as non-public contact details, health data, biometric or neural data (including facial recognition), or confidential or proprietary data... Impersonate a human by presenting results as human-generated, or using results in a manner intended to convince a natural person that they are communicating with a natural person when they are not.

Institutional analysis (Compliance & legal intelligence)

(1) REGULATORY FRAMEWORK: This provision implicates GDPR Arts. 9 and 22 (special category data including biometric and health data), CCPA § 1798.100 and § 1798.140(o) (sensitive personal information including biometric and health data), Illinois BIPA (740 ILCS 14/1, biometric data), the EU AI Act Art. 5(1)(d) (subliminal manipulation prohibition), FTC Act Section 5 (deceptive AI impersonation), and the SHIELD Act (N.Y. Gen. Bus. Law § 899-bb). Neural data protections are specifically addressed in Colorado's HB 24-1058 and emerging neurological privacy frameworks. (2)

🔒

Compliance intelligence locked

Regulatory citations, enforcement risk, and due diligence action items.

Watcher $9.99/mo Professional $149/mo

Watcher: regulatory citations. Professional: full compliance memo.

Applicable agencies

FTC

The FTC has authority over deceptive AI impersonation practices and unauthorized collection of sensitive personal data under FTC Act Section 5.
File a complaint →
State AG

State Attorneys General enforce CCPA, BIPA, and state privacy laws implicated by unauthorized biometric and health data collection.
File a complaint →

Provision details

Document information

Document

Anthropic Usage Policy

Entity

Anthropic

Document last updated

March 24, 2026

Tracking information

First tracked

March 6, 2026

Last verified

April 28, 2026

Record ID

CA-P-003872

Document ID

CA-D-00013

Evidence Provenance

Source URL

https://www.anthropic.com/legal/aup

Wayback Machine

View archived versions →

SHA-256

fe6f60bf15130bb0c59c7054ad8111501f08769394cd72b598d456d524e13f2e

Verified

✓ Snapshot stored ✓ Change verified

How to Cite

ConductAtlas Policy Archive
Entity: Anthropic | Document: Anthropic Usage Policy | Record: CA-P-003872
Captured: 2026-03-06 20:36:08 UTC | SHA-256: fe6f60bf15130bb0…
URL: https://conductatlas.com/platform/anthropic/anthropic-usage-policy/prohibition-on-privacy-and-identity-compromise/
Accessed: April 29, 2026

Classification

Severity

Medium

Prohibition on Privacy and Identity Compromise