CoreWeave collects personal information from visitors and customers across its platforms, which may include contact details, account information, usage data, and billing information depending on how you interact with their services.
This analysis describes what Weights & Biases's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
Understanding what categories of personal data CoreWeave collects is the foundation for assessing your privacy exposure as a user or enterprise customer.
Interpretive note: The actual collection scope clause text was not available in the truncated document; this analysis is based on the policy's stated subject matter in the meta description.
The scope of personal data collection directly determines what information CoreWeave holds about you, including potentially sensitive usage logs and billing data tied to your identity.
Cross-platform context
See how other platforms handle Personal Information Collection Scope and similar clauses.
Compare across platforms →Monitoring
Weights & Biases has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 10 platforms.
(1) REGULATORY LANDSCAPE: The categories of personal information collected trigger disclosure obligations under CCPA (requiring enumeration of categories collected and purposes) and GDPR (requiring a lawful basis for each processing activity). The FTC Act applies to the accuracy of disclosures about collection practices. (2) GOVERNANCE EXPOSURE: Medium. The breadth of data categories collected from both website visitors and platform customers creates a wide data mapping surface that compliance teams must maintain and disclose accurately. Incomplete or inaccurate category disclosures are a common FTC and State AG enforcement area. (3) JURISDICTION FLAGS: California residents are entitled under CPRA to know the specific categories of personal information collected, the purposes for collection, and whether data is sold or shared. EU/EEA data subjects are entitled to the same under GDPR Articles 13 and 14. These disclosures must be present and specific in the full policy text. (4) CONTRACT AND VENDOR IMPLICATIONS: Enterprise customers using CoreWeave as infrastructure should determine whether personal data processed in their workloads falls under CoreWeave's collection scope or whether CoreWeave acts purely as a processor for that data, which would require separate contractual treatment. (5) COMPLIANCE CONSIDERATIONS: Compliance teams should perform a data mapping exercise against the categories disclosed in this policy, verify that retention periods are specified for each category, and confirm that the policy accurately reflects current collection practices given the truncated document text available for review.
Full compliance analysis
Regulatory citations, enforcement risk, and due diligence action items.
Free: track 1 platform + weekly digest. Watcher: 10 platforms + same-day alerts. No credit card required.
Professional Governance Intelligence
Need to monitor specific governance provisions?
Professional includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
Understanding what categories of personal data CoreWeave collects is the foundation for assessing your privacy exposure as a user or enterprise customer.
The scope of personal data collection directly determines what information CoreWeave holds about you, including potentially sensitive usage logs and billing data tied to your identity.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Weights & Biases.