8 Total
1 High severity
5 Medium severity
2 Low severity
Summary

This is ElevenLabs' privacy policy, governing how the company collects and uses personal data from users of its AI voice cloning and text-to-speech platform. The policy discloses that ElevenLabs collects voice recordings and generated voice models from users and states that this data may be used to train and improve ElevenLabs AI systems, subject to user consent where legally required. The policy also authorizes sharing of user data including identifiers, usage data, and payment information with advertising, analytics, and service provider partners.

Technical / Legal Breakdown

This document is ElevenLabs' privacy policy governing the collection, use, storage, and sharing of personal data across its AI voice generation platform, with legal bases including consent, contractual necessity, and legitimate interests as applicable under GDPR and equivalent frameworks. The policy states that ElevenLabs collects identifiers, contact information, payment data, usage data, device and browser information, voice recordings and voice models, and user-generated content, and the terms authorize sharing this data with service providers, analytics partners, advertising partners, payment processors, and business partners. The policy includes provisions authorizing the use of user-submitted voice data to train and improve ElevenLabs AI models, subject to consent where required; the scope of this authorization and its interaction with biometric data regulations (such as Illinois BIPA and similar state-level laws) warrants legal review, as the document asserts broad rights over voice data that may be constrained by applicable law. The policy engages GDPR for EU/EEA users, CCPA/CPRA for California residents, and potentially Illinois BIPA, Texas CUBI, and Washington MY Health MY Data Act given the biometric and voice data dimensions; material compliance considerations include whether consent mechanisms for voice model training satisfy the specificity requirements under GDPR Article 7 and BIPA Section 15, and whether cross-border data transfers to the United States are supported by adequate transfer mechanisms such as Standard Contractual Clauses.

Institutional Analysis

Institutional analysis available with Compliance

Regulatory exposure by statute, material risk assessment, vendor due diligence action items, and enforcement precedent. Available on Compliance.

Start Compliance free trial

8 important changes detected

9 versions captured · Last updated: June 2026

What changed ElevenLabs removed a call-to-action button labeled 'Contact Sales' from its privacy policy document on June 26, 2026. The substantive text of the privacy policy—including the statement that Eleven Labs Poland sp. z o.o. serves as the data controller for users in the EEA, UK, and Switzerland—remained unchanged. This is a formatting or navigation change with no material impact on the privacy terms themselves.
Why this matters This change does not materially affect the privacy terms consumers operate under. The substantive privacy policy language—including the designation of Eleven Labs Poland sp. z o.o. as the data controller for EEA, UK, and Swiss users—remains in effect. The removal of a 'Contact Sales' button is a navigation or formatting adjustment, not a policy modification.
View full change record →
What changed ElevenLabs updated footer navigation links in their privacy policy on June 25, 2026. The change involved removing 'X' and adding 'ElevenLabs ElevenCreative Developers' in the social and product navigation sections. This appears to be a formatting or navigation restructuring with no material change to the privacy policy's substantive terms, data handling practices, or user rights.
Why this matters This change does not affect ElevenLabs' privacy practices, data handling, or user rights. The updated language only restructures footer navigation links within the privacy policy document. No changes to data collection, processing, retention, or consumer protections are involved.
View full change record →

June 24, 2026 low

ElevenLabs updated its privacy policy on June 24, 2026 by adding a reference to an 'Ads Engine' product in the navigation menu. The previous version did not list this product. …

View change record →
June 23, 2026 low

ElevenLabs updated its Privacy Policy on June 23, 2026. The change involved the addition of a reference to a 'Human Rights Statement' in the policy footer, alongside existing policy links …

View change record →
June 17, 2026 unknown

ElevenLabs updated their ElevenLabs Privacy Policy on June 17, 2026. Change detected: 1 sentence(s) modified. Document contained 281 sentences after update.

View change record →
May 30, 2026 low

ElevenLabs modified a single sentence in their privacy policy on May 30, 2026, removing a reference to the EU Digital Services Act (DSA) from the footer navigation while reorganizing the …

View change record →
May 21, 2026 low

ElevenLabs updated its privacy policy on May 21, 2026, making several modifications to how it describes legal bases for data processing and contact procedures for exercising data rights. The policy …

View change record →
May 19, 2026 low

ElevenLabs removed two social media platform links from their privacy policy footer on May 19, 2026. The updated policy no longer includes direct links to X-Developers and YouTube-Developers accounts in …

View change record →

Recent Provision Changes Jun 26, 2026

8 provisions unchanged.

View full change record →
High — 1 provision
Medium — 5 provisions
Low — 2 provisions

Monitoring

ElevenLabs has updated this document before.

Monitor includes same-day alerts, structured change summaries, and monitoring for up to 25 platforms.

Start Monitor free trial Or create a free account →

Compliance Governance Intelligence

Need provision-level monitoring and regulatory mapping?

Compliance includes governance timelines, compliance memos, audit-ready analysis, and full provision tracking.

Start Compliance free trial

Cross-platform context

See how other platforms handle Third-Party Data Sharing with Advertising Partners and similar clauses.

Compare across platforms →

Mapped Governance Frameworks

CCPA/CPRA
California, USA
View official text ↗
FTC Act Section 5
United States Federal
View official text ↗
GDPR
European Union
View official text ↗
Archival ProvenanceSource & Archival Record
Last Captured June 26, 2026 00:52 UTC
Capture Method Automated scheduled archival capture
Document ID CA-D-000450
Version ID CA-V-004251
SHA-256 eed7390bf5638f8dd1ac51be95086c0a2a53fee33c2e0f2756a227e216e444ba
✓ Snapshot stored ✓ Text extracted ✓ Change verified ✓ Hash verified

Governance Monitoring

Monitor governance changes across the platforms you rely on.

Structured alerts for policy changes, governance events, and provision updates across 318+ platforms.

Create free account Compare plans