Poe collects your email address, phone number, the content of your messages, which bots you use, and technical information about your device and internet connection when you use the service.
This analysis describes what Poe's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
The policy discloses collection of message content alongside device identifiers and usage patterns, which together create a detailed profile of user behavior and communication that may be used for service improvement, analytics, or other stated purposes.
The terms authorize collection of email addresses, phone numbers, IP addresses, browser type, operating system, device identifiers, referring URLs, and records of bot interactions and messages, constituting a broad dataset of both account and behavioral information.
Cross-platform context
See how other platforms handle Data Collection: Account, Usage, and Device Information and similar clauses.
Compare across platforms →Monitoring
Poe has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 10 platforms.
"We collect information you provide directly to us, such as when you create an account, including your email address and phone number. We also collect information about how you use Poe, including the bots you interact with, the messages you send, and other features you use. We collect device and log information such as IP address, browser type, operating system, referring URLs, and device identifiers.— Excerpt from Poe's Poe Privacy Policy
1) REGULATORY LANDSCAPE: This data collection scope implicates GDPR Article 5 (data minimization and purpose limitation), CCPA Section 1798.100 (right to know categories of personal information collected), and FTC Act standards for transparent data collection. Collection of device identifiers and IP addresses may additionally engage the EU ePrivacy Directive where applicable to cookie or similar tracking technologies. 2) GOVERNANCE EXPOSURE: Medium. The collection categories are broadly consistent with those disclosed by comparable consumer technology platforms. The inclusion of message content as a collected data category is operationally significant given the potentially sensitive nature of AI chat interactions. 3) JURISDICTION FLAGS: EU/EEA and UK users are entitled under GDPR and UK GDPR to clear specification of the lawful basis for each processing activity. California residents under CCPA and CPRA have rights to know, delete, and opt out of sale or sharing. Illinois users should note that if Poe collects biometric identifiers, BIPA could apply, though this is not indicated in the accessible policy text. 4) CONTRACT AND VENDOR IMPLICATIONS: Data processing agreements with analytics and service provider vendors receiving this data should be reviewed. Device identifier collection used for advertising purposes may engage additional consent requirements under GDPR and Apple/Google platform policies. 5) COMPLIANCE CONSIDERATIONS: A data inventory mapping each collection category to its stated purpose and legal basis should be maintained. Retention schedules for message content, device data, and usage logs should be documented and reviewed for consistency with stated purposes and applicable regulatory minimums.
Full compliance analysis
Regulatory citations, enforcement risk, and due diligence action items.
Free: track 1 platform + weekly digest. Watcher: 10 platforms + same-day alerts. No credit card required.
Professional Governance Intelligence
Need to monitor specific governance provisions?
Professional includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
The policy discloses collection of message content alongside device identifiers and usage patterns, which together create a detailed profile of user behavior and communication that may be used for service improvement, analytics, or other stated purposes.
The terms authorize collection of email addresses, phone numbers, IP addresses, browser type, operating system, device identifiers, referring URLs, and records of bot interactions and messages, constituting a broad dataset of both account and behavioral information.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Poe.