What can I do about this clause?

{'method': 'EMAIL', 'recipient': 'privacy@coreweave.com', 'difficulty': 'MODERATE', 'action_type': 'EXPORT_DATA', 'instructions': "Email CoreWeave's privacy team to request a copy of all personal information they hold about you. Identify yourself as a GDPR or CCPA data subject and specify the categories of data you wish to receive.", 'deadline_days': None, 'deadline_hours': None}

Which regulatory agencies enforce this type of clause?

{'agency': 'FTC', 'reason': 'The FTC has enforcement authority over unfair or deceptive data collection practices under Section 5 of the FTC Act.', 'complaint_url': 'https://reportfraud.ftc.gov/'}

What is the severity of this clause?

ConductAtlas classifies this Personal Information Collection clause as medium severity. Severity reflects the magnitude of rights affected, the breadth of users impacted, and the degree of discretion the platform retains.

Personal Information Collection — Weights & Biases

Share 𝕏 Share in Share 🔒 PDF

What it is

CoreWeave collects personal information such as your name, email address, account credentials, and technical usage data when you register for and use their cloud services.

Consumer impact (what this means for users)

Your account information, usage patterns, and technical identifiers are collected by CoreWeave when you use its GPU cloud infrastructure, which may include sensitive business or development activity data.

What you can do

⚠️ These actions may provide transparency or partial mitigation but may not fully address the underlying issue. Effectiveness varies by jurisdiction and individual circumstances.

Export Your Data

Email CoreWeave's privacy team to request a copy of all personal information they hold about you. Identify yourself as a GDPR or CCPA data subject and specify the categories of data you wish to receive.

Cross-platform context

See how other platforms handle Personal Information Collection and similar clauses.

Compare across platforms →

Need full compliance memos? See Professional →

Why it matters (compliance & risk perspective)

Understanding what data CoreWeave collects is fundamental to assessing your privacy exposure as a user or enterprise customer.

Institutional analysis (Compliance & legal intelligence)

(1) REGULATORY FRAMEWORK: Collection of personal data implicates GDPR Art. 5 (data minimization, purpose limitation), Art. 6 (lawful basis for processing), and Art. 13/14 (transparency obligations); CCPA §1798.100 and §1798.110 (right to know categories of personal information collected); FTC Act Section 5 (unfair or deceptive practices if collection exceeds disclosed scope). Enforced by EU DPAs, California Privacy Protection Agency (CPPA), and FTC respectively. (2)

🔒

Compliance intelligence locked

Regulatory citations, enforcement risk, and due diligence action items.

Watcher $9.99/mo Professional $149/mo

Watcher: regulatory citations. Professional: full compliance memo.

Applicable agencies

FTC

The FTC has enforcement authority over unfair or deceptive data collection practices under Section 5 of the FTC Act.
File a complaint →

Provision details

Document information

Document

Weights & Biases Privacy Policy

Entity

Weights & Biases

Document last updated

April 29, 2026

Tracking information

First tracked

April 30, 2026

Last verified

April 30, 2026

Record ID

CA-P-004025

Document ID

CA-D-00494

Evidence Provenance

Source URL

https://wandb.ai/site/privacy

Wayback Machine

View archived versions →

SHA-256

d22dfd2783d85c7762f7d1c8bc9218e673b92d92ddc4211e1ac86525625d3354

Verified

✓ Snapshot stored ✓ Change verified

How to Cite

ConductAtlas Policy Archive
Entity: Weights & Biases | Document: Weights & Biases Privacy Policy | Record: CA-P-004025
Captured: 2026-04-30 05:25:00 UTC | SHA-256: d22dfd2783d85c77…
URL: https://conductatlas.com/platform/weights-biases/weights-biases-privacy-policy/personal-information-collection/
Accessed: May 2, 2026

Classification

Severity

Medium

Personal Information Collection