The policy prohibits using Cohere's AI to build applications that secretly track, monitor, or profile individuals without their knowledge or authorization.
This analysis describes what Cohere's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
This provision covers location tracking, communications monitoring, and unauthorized profiling, which are categories of data processing subject to significant regulatory obligations under privacy frameworks including GDPR, CCPA, and sector-specific wiretapping laws.
Interpretive note: The phrase 'unauthorized purposes' is not defined and requires case-by-case assessment against applicable privacy law standards for lawful processing basis.
Operators cannot use Cohere's services to build covert surveillance tools, location trackers, or unauthorized profiling systems targeting individuals, providing a contractual protection for end users against certain privacy-invasive applications built on the platform.
Cross-platform context
See how other platforms handle Prohibition on Surveillance and Privacy-Violating Applications and similar clauses.
Compare across platforms →Monitoring
Cohere has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 10 platforms.
"Do not use Cohere's services to build tools designed to surveil individuals without their knowledge or consent, including tracking location, monitoring communications, or building profiles of individuals for unauthorized purposes.— Excerpt from Cohere's Cohere Responsible Use Policy
REGULATORY LANDSCAPE: This provision engages GDPR Articles 5 and 6 (lawful basis for processing and data minimization), CCPA provisions on sensitive personal information, the Electronic Communications Privacy Act (ECPA) and state wiretapping laws in the US, and the EU AI Act's provisions on real-time biometric surveillance. The FTC has active enforcement interest in covert tracking and unauthorized profiling practices. GOVERNANCE EXPOSURE: Medium to High depending on operator context. Employers using AI-powered employee monitoring tools, law enforcement technology vendors, and consumer analytics platforms face heightened exposure. The prohibition on 'profiles of individuals for unauthorized purposes' requires operators to assess whether their profiling activities have a lawful basis under applicable privacy law. JURISDICTION FLAGS: GDPR imposes strict limitations on surveillance and profiling of EU residents. California's CCPA imposes special category restrictions on sensitive personal information including precise geolocation. Illinois BIPA regulates biometric data collection. These frameworks impose obligations independent of the AUP. CONTRACT AND VENDOR IMPLICATIONS: B2B contracts involving AI-powered monitoring, analytics, or profiling capabilities should include explicit representations regarding the lawful basis for data processing and the scope of user consent. Procurement teams at regulated entities should assess whether surveillance-adjacent use cases require data protection impact assessments. COMPLIANCE CONSIDERATIONS: Operators should review all use cases involving individual monitoring or profiling against applicable privacy law requirements, conduct data protection impact assessments for high-risk processing activities, and ensure consent mechanisms are adequate for the level of monitoring involved.
Full compliance analysis
Regulatory citations, enforcement risk, and due diligence action items.
Free: track 1 platform + weekly digest. Watcher: 10 platforms + same-day alerts. No credit card required.
Professional Governance Intelligence
Need to monitor specific governance provisions?
Professional includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
This provision covers location tracking, communications monitoring, and unauthorized profiling, which are categories of data processing subject to significant regulatory obligations under privacy frameworks including GDPR, CCPA, and sector-specific wiretapping laws.
Operators cannot use Cohere's services to build covert surveillance tools, location trackers, or unauthorized profiling systems targeting individuals, providing a contractual protection for end users against certain privacy-invasive applications built on the platform.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Cohere.