Which regulatory agencies enforce this type of clause?

{'agency': 'FTC', 'reason': 'FTC has authority over deceptive data practices including unauthorized use of consumer or business data for AI training purposes.', 'complaint_url': 'https://reportfraud.ftc.gov/'}

What is the severity of this clause?

ConductAtlas classifies this AI/ML Training Data Prohibition clause as medium severity. Severity reflects the magnitude of rights affected, the breadth of users impacted, and the degree of discretion the platform retains.

AI/ML Training Data Prohibition — Palantir

Share 𝕏 Share in Share 🔒 PDF

What it is

Palantir commits that it will not use data uploaded by its enterprise customers to train its AI systems unless the customer explicitly agrees.

Consumer impact (what this means for users)

For enterprise clients whose employees or operations generate data processed by Palantir, this means their sensitive business or personal data cannot be repurposed to improve Palantir's AI models unless the client contractually agrees — a meaningful protection against covert AI training.

Cross-platform context

See how other platforms handle AI/ML Training Data Prohibition and similar clauses.

Compare across platforms →

Need full compliance memos? See Professional →

Why it matters (compliance & risk perspective)

This is a highly significant commitment given Palantir's AI platform products and the growing concern about AI companies training on client data without disclosure.

View original clause language

Palantir does not use Customer Data to train artificial intelligence or machine learning models without the explicit consent of the customer.

Institutional analysis (Compliance & legal intelligence)

REGULATORY FRAMEWORK: This provision implicates GDPR Art. 5(1)(b) (purpose limitation) and Art. 6 (lawful basis for processing), as using customer data for AI training would constitute a new purpose requiring a fresh legal basis. It also engages the EU AI Act (Regulation 2024/1689) provisions on training data transparency and high-risk AI systems. CCPA/CPRA purpose limitation principles apply to California-resident data. In healthcare contexts, HIPAA 45 CFR §164.502 restricts use of PHI for purposes beyond treatment, payment, or operations.

🔒

Compliance intelligence locked

Regulatory citations, enforcement risk, and due diligence action items.

Watcher $9.99/mo Professional $149/mo

Watcher: regulatory citations. Professional: full compliance memo.

Applicable agencies

FTC

FTC has authority over deceptive data practices including unauthorized use of consumer or business data for AI training purposes.
File a complaint →

Provision details

Document information

Document

Palantir Privacy Statement

Entity

Palantir

Document last updated

April 29, 2026

Tracking information

First tracked

April 30, 2026

Last verified

April 30, 2026

Record ID

CA-P-004239

Document ID

CA-D-00496

Evidence Provenance

Source URL

https://www.palantir.com/privacy-and-security/

Wayback Machine

View archived versions →

SHA-256

eb927d9bd1bc02713391ebd4577b404a2136eba1e135746456110bc968e6e635

Verified

✓ Snapshot stored ✓ Change verified

How to Cite

ConductAtlas Policy Archive
Entity: Palantir | Document: Palantir Privacy Statement | Record: CA-P-004239
Captured: 2026-04-30 07:23:49 UTC | SHA-256: eb927d9bd1bc0271…
URL: https://conductatlas.com/platform/palantir/palantir-privacy-statement/aiml-training-data-prohibition/
Accessed: May 2, 2026

Classification

Severity

Medium

AI/ML Training Data Prohibition