What are the institutional and regulatory implications of this document?

(1) REGULATORY LANDSCAPE: The policy engages GDPR for EU/EEA users (requiring lawful basis, data subject rights fulfillment, and cross-border transfer mechanisms such as Standard Contractual Clauses), CCPA/CPRA for California residents (requiring disclosure of data sale or sharing for cross-context behavioral advertising and honoring deletion and opt-out rights), and the FTC Act's prohibition on unfair or deceptive practices, enforced by the FTC. The policy's assertion that query content may be…

How does Perplexity AI's Perplexity AI Privacy Policy affect users?

The policy permits Perplexity AI to collect search queries and conversation history and incorporate this data into model training and development processes alongside service delivery purposes. Users may request access to, correction of, or deletion of their personal data by submitting requests to privacy@perplexity.ai or through account settings, with specific rights available to EU and California residents under applicable data protection regulations.

How often is Perplexity AI's Perplexity AI Privacy Policy updated?

ConductAtlas monitors this document daily and captures every version with cryptographic hashing and timestamp verification. Update frequency varies — see the change timeline on this page for complete version history.

Can I get alerted when Perplexity AI updates this document?

Yes. Watcher subscribers ($9.99/month) can add Perplexity AI to their watchlist and receive same-day email alerts whenever this document or any other Perplexity AI document changes.

CA-D-000096

Perplexity AI Privacy Policy

Perplexity AI

Last change detected May 18, 2026 Privacy policy

SHA-256: 57e923c9fd9d9f2228a… 2 versions captured 1 change documented

Create free account

Track 1 platform and get the weekly governance digest. No credit card required.

View original document at Perplexity AI ↗

This page describes what the document states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability may vary by jurisdiction. Methodology

8 Total

0 High severity

6 Medium severity

2 Low severity

Summary

This document establishes Perplexity AI's data collection and use practices for its search and AI answer service. The policy authorizes collection of search queries, conversation history, device information, IP addresses, and account details, with provision for use of this data in AI model training and product improvement. Users in the EU and California are granted rights to request access, correction, or deletion of personal data through privacy@perplexity.ai.

Technical / Legal Breakdown

This document is Perplexity AI's Privacy Policy, governing the collection, use, storage, and sharing of personal data from users of the Perplexity AI search and answer platform, with an implicit legal basis in user consent and legitimate interest as articulated through its disclosed data practices. The policy states that Perplexity collects identifiers (name, email, IP address), device and usage data, query content (search inputs and conversation history), payment information, and data from third-party integrations, and the terms authorize use of this data for service improvement, product development, personalization, safety, and marketing communications. Notably, the policy permits Perplexity to use submitted query content and interaction data to train and improve its AI models, a practice that is functionally broad in scope given that user queries may contain sensitive personal or professional information entered in a search context where users may not anticipate model training use; the agreement asserts this right, though applicable law in certain jurisdictions may impose consent or opt-out requirements not fully addressed by the policy. The policy engages GDPR for EU/EEA users, CCPA/CPRA for California residents, and general FTC consumer protection frameworks, with Perplexity asserting standard data subject rights (access, deletion, correction, portability) but relying on a self-reported compliance posture without specifying the full technical and organizational measures supporting those claims. Compliance teams should note the policy's relatively limited specificity around data retention periods, AI training data governance, third-party sharing mechanisms, and cross-border data transfer safeguards, all of which create audit exposure under GDPR and CCPA enforcement frameworks.

Institutional Analysis

Institutional analysis available with Professional

Regulatory exposure by statute, material risk assessment, vendor due diligence action items, and enforcement precedent. Available on Professional.

Start Professional free trial

1 important change detected

2 versions captured · Last updated: May 2026

May 18, 2026

low

What changed Perplexity AI corrected a capitalization error in its privacy policy footer on May 18, 2026. The link text 'Linkedin' was changed to 'LinkedIn' to match standard branding. This is a formatting correction with no operational impact on privacy practices, data handling, or user rights.

Why this matters This change is a capitalization correction in the privacy policy footer and does not affect any substantive privacy practices, data collection, rights, or user obligations. The updated policy maintains the same operational terms as before.

View full change record →

Medium — 6 provisions

Query Content Used for AI Model Training Compare →

The questions and conversations you have with Perplexity AI may be used to train and improve the AI systems that power the service.

Added May 10, 2026 Common Seen across 104 platforms
Third-Party Data Sharing with Analytics and Advertising Partners Compare →

Perplexity shares your personal information with outside companies that help run its business, including analytics providers and marketing services.

Added May 10, 2026 Standard Seen across 246 platforms
Data Retention Without Specified Timeframes Compare →

Perplexity keeps your personal data for as long as it decides is necessary for its business purposes, with no specific timeframe disclosed.

Added May 10, 2026 Standard Seen across 223 platforms
California Resident Privacy Rights Compare →

California residents have specific legal rights under state law, including the right to see, delete, correct, and opt out of the sale of their personal data held by Perplexity.

Added May 10, 2026 Standard Seen across 262 platforms
Cross-Border Data Transfers Compare →

Perplexity may move your personal data to servers in other countries, including places with weaker privacy protections than your home country.

Added May 7, 2026 Common Seen across 122 platforms
Minors and Age Restriction Compare →

Perplexity's service is not intended for children under 13, and the company states it will delete data if it discovers it has been collected from a child under that age.

Added May 10, 2026 Standard Seen across 262 platforms

Low — 2 provisions

Collection of Device and Usage Data

Perplexity automatically collects technical data about your device, location, and how you use the service every time you visit, without you needing to enter any information.

Added May 10, 2026 Rare
Policy Updates and Notification Compare →

Perplexity can change its privacy policy at any time and considers posting the update on its website to be sufficient notice, placing the responsibility on users to check for changes.

Added May 10, 2026 Standard Seen across 178 platforms