The notice states that Anyscale automatically collects IP addresses, MAC addresses, cookie identifiers, mobile advertising identifiers, device information, approximate location derived from IP, browsing and search activity, link clicks, content interactions, and session duration, and uses device identifiers to link a user's activity across Anyscale's services.
This analysis describes what Anyscale's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
This provision establishes the scope of automated data collection, including cross-service user identification using device identifiers. The use of MAC addresses and mobile advertising identifiers alongside IP-derived location data constitutes a notably specific set of device-level identifiers that may have implications under state biometric and device identifier statutes depending on jurisdiction.
Provision renamed from 'Automatic Collection of Device and Behavioral Data' to include 'Cross-Service Identification' but excerpt text appears identical.
View full change record →Under this clause, Anyscale automatically collects IP addresses, MAC addresses, mobile advertising identifiers, browsing history, search queries, and approximate location for all users of its services, and uses device identifiers to correlate a user's activity across its services. Cookie management tools and browser settings may limit some but not all of this collection.
How other platforms handle this
We collect information about you when you shop in our stores, including through store cameras, loyalty programs, payment processing systems, and other in-store technologies. This information is used to improve store operations, loss prevention, and marketing.
Runway is considered the "data controller" of the "personal data" (as defined under the General Data Protection Regulation) we handle under this Privacy Policy. In other words, Runway is responsible for deciding how to collect, use, and disclose personal data, subject to applicable law. The laws of ...
We use your information to send you marketing communications about Square products and services that may be of interest to you, including based on your transaction history, usage patterns, and preferences. You may opt out of receiving marketing communications from us.
Monitoring
Anyscale has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 25 platforms.
"We may collect certain information automatically when you use our Services, such as your Internet protocol (IP) address, user settings, MAC address, cookie identifiers, mobile carrier, mobile advertising and other unique identifiers, browser or device information, location information (including approximate location derived from IP address), and Internet service provider. We may also automatically collect information regarding your use of our Services, such as pages that you visit before, during and after using our Services, items that you search for via the Services and the results returned, information about the links you click, the types of content you interact with, the frequency and duration of your activities, and other information about how you use our Services. We may also use the information we collect automatically (for example, IP address, and unique device identifiers) to identify the same unique person across the Services to provide a more seamless and personalized experience to you.— Excerpt from Anyscale's Anyscale Privacy Policy
(1) REGULATORY LANDSCAPE: This provision implicates GDPR for EU/UK users, particularly regarding lawful basis for processing behavioral and location data and the requirement to disclose cross-service profiling activities. CCPA/CPRA requires disclosure of the categories of personal information collected automatically and their business purpose. The ePrivacy Directive requires consent for non-essential cookies and tracking technologies for EU users. MAC address collection may engage state-level device identifier statutes in certain U.S. jurisdictions. (2) GOVERNANCE EXPOSURE: Medium. The cross-service identification mechanism using IP addresses and unique device identifiers constitutes profiling activity that requires a disclosed legal basis under GDPR. The document does not enumerate the legal basis for this specific processing activity in the excerpt provided. (3) JURISDICTION FLAGS: EU and UK users are subject to GDPR requirements for lawful basis and transparency regarding profiling. California users should assess whether mobile advertising identifier collection constitutes a 'sensitive personal information' category under CPRA, which carries additional use limitations. Illinois users should note that MAC address collection does not constitute biometric data under BIPA, but state-level device tracking statutes vary. (4) CONTRACT AND VENDOR IMPLICATIONS: Enterprise customers deploying Anyscale's platform for employee use should assess whether employee device data collected through this mechanism is adequately addressed in their data processing agreements and whether cross-service tracking of employees creates obligations under applicable employment privacy laws. (5) COMPLIANCE CONSIDERATIONS: Compliance teams should evaluate whether the cross-service identification mechanism is disclosed to EU users with adequate specificity to satisfy GDPR transparency requirements; whether mobile advertising identifier collection is addressed in CPRA sensitive personal information disclosures; and whether MAC address collection is addressed in state-specific device privacy assessments.
Full compliance analysis
Regulatory citations, enforcement risk, and due diligence action items.
Free: track 1 platform + weekly digest. Monitor: 25 platforms + same-day alerts. No credit card required.
We read the privacy policies and terms of service of 38 AI platforms. Here is what they say about training, retention, arbitration, and liability.
Compliance Governance Intelligence
Need to monitor specific governance provisions?
Compliance includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
This provision establishes the scope of automated data collection, including cross-service user identification using device identifiers. The use of MAC addresses and mobile advertising identifiers alongside IP-derived location data constitutes a notably specific set of device-level identifiers that may have implications under state biometric and device identifier statutes depending on jurisdiction.
Under this clause, Anyscale automatically collects IP addresses, MAC addresses, mobile advertising identifiers, browsing history, search queries, and approximate location for all users of its services, and uses device identifiers to correlate a user's activity across its services. Cookie management tools and browser settings may limit some but not all of this collection.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Anyscale.