The terms state that customer prompts submitted to and outputs generated by Amazon Bedrock are not used to train the underlying foundation models made available through the service. This applies to both first-party Amazon models and third-party models accessed through Bedrock.
This analysis describes what AWS Bedrock's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
This provision addresses a material concern for enterprise customers deploying proprietary data in AI workflows; the agreement states that customer content processed through Bedrock does not contribute to foundation model training, which is operationally significant for customers with confidentiality obligations around their data.
Interpretive note: The full scope of this provision as it applies to all model types available through Bedrock and the distinction between model training and service improvement uses requires review of the complete untruncated document.
The updated terms establish that customers operating Amazon RDS databases on end-of-life software versions are now required to upgrade to supported versions. The agreement authorizes AWS to scan extension code used with Trusted Language Extensions for security and performance purposes, and establishes that extension code constitutes customer content. AWS disclaims responsibility for service failures caused by extensions or end-of-life database software. If a customer does not upgrade before an engine reaches end of life, AWS may snapshot the customer's data and delete the instance or cluster running the unsupported software, after providing prior notice of the engine end-of-life date.
View change record →The updated terms establish new operational requirements for any organization using Amazon Connect Talent to make or inform employment decisions. Customers must now obtain legally adequate privacy notices and consents from job applicants before their data is processed by the service. The terms require customers to review all AI output before making hiring decisions, implement processes for applicants to request information about the AI's role in decisions, and ensure their use of the tool complies with applicable labor, anti-discrimination, disability, data privacy, AI, wiretap, recordkeeping, and biometrics laws. Customers can configure an AI services opt-out policy through AWS Organizations to prevent their data from being used to train or improve AWS AI technologies.
View change record →The updated terms establish that Reserved Cache Nodes and Amazon DynamoDB Reserved Capacity purchases are noncancellable obligations, and you will owe the full amount charged for the duration of the term you selected, even if the AWS agreement is terminated. For Kiro Free Tier users, the revised policy authorizes AWS to store your inputs for up to 60 days for purposes of detecting agreement violations and improving detection capabilities. You can review your existing reserved capacity commitments and their terms at any time, but the updated language does not provide an opt-out mechanism for this noncancellation obligation.
View change record →Under this clause, inputs and outputs processed through Amazon Bedrock are not used to improve or retrain the foundation models available in the service. This is a contractual commitment regarding the use of customer content in model development.
How other platforms handle this
Redfin may offer interactive features such as chat services, forums, and social media pages. We may collect the information you submit or make available through these features. Any content you provide on the public sections of these channels will be considered "public" and will not be subject to the...
We process the information you share with us when you create your profile or send messages. This includes photos, videos, messages, and other content you share on the platform. We may use this content to improve our services, ensure safety, and comply with legal obligations.
At Ledger, earning and maintaining our users' trust is a top priority. That's why we are deeply committed not only to protecting your privacy and securing your personal data, but also to being fully transparent about how we handle it.
Monitoring
AWS Bedrock has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 25 platforms.
"Amazon Bedrock does not use your inputs or outputs to train the underlying models available in Amazon Bedrock.— Excerpt from AWS Bedrock's AWS Service Terms
(1) REGULATORY LANDSCAPE: This provision is relevant to GDPR data minimization and purpose limitation principles where customer prompts contain personal data; the stated restriction on training use supports a narrower processing purpose claim. CCPA service provider restrictions also align with this commitment where customer content constitutes consumer personal information. (2) GOVERNANCE EXPOSURE: Medium. The provision applies to the underlying foundation models but does not address whether content is used for other AWS service improvement purposes; customers should review whether service improvement and operational uses are separately addressed and whether opt-out mechanisms apply to those uses. (3) JURISDICTION FLAGS: EU customers processing personal data through Bedrock should confirm this commitment is reflected in the AWS Data Processing Addendum and assess whether it satisfies GDPR Article 28 processor requirements. (4) CONTRACT AND VENDOR IMPLICATIONS: Customers with strict data confidentiality obligations, including those in healthcare or financial services, should confirm this provision applies across all model providers available through Bedrock and is not limited to Amazon-owned models. The provision should be assessed alongside any model provider-specific terms that might address training data use differently. (5) COMPLIANCE CONSIDERATIONS: Data protection teams should document this provision as a basis for excluding Bedrock-processed personal data from model training risk assessments. Where Bedrock is used in HIPAA-covered workflows, this commitment should be reviewed alongside the AWS Business Associate Agreement.
Full compliance analysis
Regulatory citations, enforcement risk, and due diligence action items.
Free: track 1 platform + weekly digest. Monitor: 25 platforms + same-day alerts. No credit card required.
Compliance Governance Intelligence
Need to monitor specific governance provisions?
Compliance includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
This provision addresses a material concern for enterprise customers deploying proprietary data in AI workflows; the agreement states that customer content processed through Bedrock does not contribute to foundation model training, which is operationally significant for customers with confidentiality obligations around their data.
Under this clause, inputs and outputs processed through Amazon Bedrock are not used to improve or retrain the foundation models available in the service. This is a contractual commitment regarding the use of customer content in model development.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by AWS Bedrock.