AWS prohibits using Bedrock to create harmful or illegal content, and you must build safeguards into your own applications to stop your users from creating such content too.
This analysis describes what AWS Bedrock's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
This provision establishes the operational boundary for permissible content generation on the platform and allocates responsibility to the customer for monitoring and controlling content produced by end users of customer-built applications. Compliance requires customers to design application controls that enforce the policy restrictions.
The updated terms establish a new service offering, Claude Platform on AWS, that operates under different data handling rules than standard AWS services. Content and metadata you provide will be processed by Anthropic outside of AWS infrastructure in locations Anthropic selects. AWS is authorized to transfer your content and metadata to Anthropic for this processing. You must also comply with Anthropic's Commercial Terms, Data Processing Addendum, Usage Policy, and other agreements governing Claude services. The terms permit AWS to change, deprecate, or discontinue Claude Platform at any time with notice where practicable.
View change record →This change introduces a new optional service feature rather than modifying existing consumer rights or obligations. AWS explicitly disclaims providing regulated financial services, holding custody of funds, or bearing responsibility for wallet providers or transactions. Developers who elect to use AgentCore Payments must comply with applicable financial regulations, implement their own security safeguards, and accept full liability for transactions and disputes. The terms do not impose obligations on end consumers using AI agents; the obligations fall on developers integrating the service.
View change record →Businesses must actively implement content moderation and safety controls in Bedrock-powered applications — failure to do so can result in immediate service suspension and potential legal liability for harmful content generated by end users.
How other platforms handle this
Your use of the Llama Materials must comply with applicable laws and regulations (including trade compliance laws and regulations) and adhere to the Acceptable Use Policy for the Llama 3 models (currently available at https://llama.meta.com/llama3/use-policy), which is hereby incorporated by referen...
Customer shall not, and shall ensure that Authorized Users do not, use the Service in any manner that: (a) violates applicable laws or regulations; (b) infringes the intellectual property rights of any third party; (c) transmits harmful, offensive, or illegal content; or (d) attempts to reverse engi...
You are solely responsible for your User Content and the consequences of posting or publishing it. You represent and warrant that you own or have the necessary licenses, rights, consents, and permissions to use and authorize Squarespace to use all patent, trademark, trade secret, copyright or other ...
Monitoring
AWS Bedrock has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 10 platforms.
"You may not use Amazon Bedrock to generate content that violates the AWS Acceptable Use Policy, including content that is harmful, abusive, or illegal. You must implement appropriate safeguards to prevent your end users from generating prohibited content through applications built on Amazon Bedrock.— Excerpt from AWS Bedrock's AWS Service Terms
REGULATORY FRAMEWORK: This provision engages FTC Act Section 5 (unfair or deceptive practices), the EU Digital Services Act (DSA, Regulation 2022/2065) for illegal content obligations, EU AI Act Art. 5 (prohibited AI practices including manipulation and exploitation), CSAM-related statutes (18 U.S.C. §2256 et seq. for child sexual abuse material), and the STOP CSAM Act (2023). For financial services applications, FINRA and SEC rules on communications with the public may apply to AI-generated financial content. The FTC, EU Digital Services Coordinators, and DOJ Cyber Division are relevant enforcement authorities.
Full compliance analysis
Regulatory citations, enforcement risk, and due diligence action items.
Free: track 1 platform + weekly digest. Watcher: 10 platforms + same-day alerts. No credit card required.
Professional Governance Intelligence
Need to monitor specific governance provisions?
Professional includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
This provision establishes the operational boundary for permissible content generation on the platform and allocates responsibility to the customer for monitoring and controlling content produced by end users of customer-built applications. Compliance requires customers to design application controls that enforce the policy restrictions.
Businesses must actively implement content moderation and safety controls in Bedrock-powered applications — failure to do so can result in immediate service suspension and potential legal liability for harmful content generated by end users.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by AWS Bedrock.