Item: Anthropic Terms of Service
Rating: 72
Author: Sergei Tokmakov, Esq.

What should I do?

Skip to the checklist that fits you. Each list gives the exact steps inside Claude.ai, the Console, or the Anthropic Privacy Center. Menu paths change as Anthropic updates its product, so if a label below has moved, look for the nearest equivalent and confirm against the live setting before relying on it.

👤 Everyday user

Free or Pro plan, personal use

Check your training setting. In Claude.ai open Settings → Privacy and review the "Help improve Claude" style toggle. Anthropic moved to an opt-in model for consumer chat training in 2025, so confirm it reflects the choice you actually want.
Set your data retention. If a retention choice is offered (for example a standard versus extended window), pick the shorter one unless you need history.
Delete sensitive chats you no longer need. Open a conversation, use the conversation menu, and choose delete. Deleted chats leave Anthropic systems on the published schedule rather than instantly.
Do not paste passwords, full account numbers, medical records, or anyone else's confidential data into a free-tier chat.
Treat every answer as a draft. Verify facts, citations, numbers, and code before you rely on them.

💼 Business / professional user

Client work, regulated data, team use

Use the API, Team, or Enterprise tier, not the free consumer app, for any client or regulated data. Inputs and outputs on the commercial and API tiers are not used to train models by default.
Read the Commercial Terms and your DPA, not just the consumer terms. The agreement that governs you is the one tied to the product you actually bought.
In the Console set Settings → Privacy / Data controls and confirm zero-retention or your negotiated retention window if your use case requires it.
Keep a human in the loop. The terms place output verification on you, so build a review step before any Claude output reaches a client or the public.
If you hold government defense contracts or defense-adjacent work, review the government-use section below and confirm Claude's current federal availability against official guidance before you deploy.

⚠ Already affected

Banned, suspended, or data exposed

Read the notice you received. Anthropic usually cites the specific policy provision; identify whether it is an Acceptable Use Policy issue, a payment issue, or an automated flag.
Use the in-product or email appeal channel before doing anything else, and keep it factual. State what you were doing and why you believe the action was an error.
Export or screenshot anything you still need. If access is cut, request your data through the Privacy Center or by emailing Anthropic's privacy contact.
Preserve evidence: the ban message, your prompts, timestamps, and any paid-plan receipts. These matter if money or a business dependency is at stake.
If a suspension cost you real money or exposed confidential data, that is the point to get specific written advice rather than guessing.

✓ Relative Strengths

Anthropic's terms state that API and paid-plan inputs are not used for training by default. The data-handling documentation is, in my reading, clear, the privacy controls are straightforward, and the usage policies are more precisely defined than I find at several competitors.

Score Breakdown by Category

How Anthropic's terms rate across my evaluation categories.

🔒 Data & Privacy Rights (25%) 68/100

📝 Output Ownership (25%) 62/100

👁 Transparency & Notice (20%) 60/100

🛡 Liability & Indemnification (15%) 45/100

⚖ Dispute Resolution (15%) 50/100

Compare With Other AI Services

Anthropic vs OpenAI vs Gemini: terms side by side

The dimensions that decide real risk for a paying user. Each cell is my reading of the relevant vendor's published terms and policies under my methodology, not a statement of fact about what any vendor does in practice. "Best" marks the option I read as most user-protective on that row based on the published default terms, not the marketing. Each vendor's terms control over my summary, so confirm the live document before relying on any cell.

Dimension	Anthropic (Claude)	OpenAI (ChatGPT)	Google (Gemini)
Training on your data (default)	Anthropic's terms state API and paid-tier inputs are not used for training by default; consumer chat training is presented as a choice you set BEST	Read the OpenAI terms and data controls: API data is described as excluded from training, while consumer ChatGPT settings include a training control you should check	Read the Gemini and broader Google policies on data use, human review, and retention, and set the available controls; the defaults are spread across several documents
Output ownership	Anthropic's terms assign output ownership to you and permit commercial use BEST	OpenAI's terms likewise assign output ownership to the user and permit commercial use BEST	Check the Gemini and Google terms for how output use rights and any license back over submitted content are framed
Account suspension / termination	Policy-based and tied to a cited Acceptable Use Policy, with an appeal channel described in the terms BEST	Review the OpenAI terms for the scope of suspension discretion and what appeal process, if any, is described	Note that Gemini access is tied to your wider Google account; read the Google account terms for how a suspension may affect other services
Dispute terms	The terms include an arbitration clause and class-action waiver; check whether an opt-out window is offered and its deadline	The OpenAI terms likewise include an arbitration clause and class-action waiver; check for any opt-out window and deadline	Read the applicable Google terms for how disputes are handled in your jurisdiction, which I read as generally less arbitration-forward for many consumers BEST
Transparency of data handling	The terms and policies separate free, paid, and API handling in a way I find comparatively easy to follow BEST	In my reading, the controls have improved but still require navigating multiple settings	In my reading, the relevant terms are spread across several Google policies and are harder to isolate
My fairness score	72 / Grade B BEST	55 / Grade C+	48 / Grade C

Scores are my editorial assessment under the published methodology, current as of the version dates shown. Vendor terms change often. Confirm the live agreement before you rely on any single cell. See the full OpenAI review and Gemini review.

Using Claude for business: the 5 controls I tell clients to set

A realistic scenario: a consulting firm wants to draft client deliverables and analyze contracts in Claude. The terms are favorable, but favorable terms do not configure themselves. Here is the scenario and the five controls that actually limit exposure.

📝 Scenario

You run a 6-person consultancy. You want to use Claude to summarize client documents, draft memos, and review vendor contracts. Some of those documents are covered by NDAs. One client is a regulated financial institution. You bill the output to clients as your work product.

1. Buy the right tier and read its agreement. Use API, Team, or Enterprise, where inputs are excluded from training by default, and govern the relationship with the Commercial Terms and a DPA rather than the consumer terms.
2. Turn on zero or minimal retention. In the Console data controls, set the shortest retention your workflow tolerates, and confirm it in writing if a regulator or client contract requires it.
3. Map your NDAs before you paste. Some client NDAs bar disclosing their confidential information to any third-party processor without consent. Using even a no-training tier can still breach that NDA if you never got permission. Check the NDA, not just Anthropic's terms.
4. Keep a documented human review step. The terms put output verification on you. Build a sign-off so no hallucinated citation, number, or clause reaches a client unchecked.
5. Disclose AI use where your duties require it. Depending on your profession and your client agreements, you may owe a disclosure or consent obligation before processing client material through an AI tool.

⚠ The trap most businesses miss

Anthropic's favorable training stance protects you from Anthropic. It does nothing about your obligations to your own clients. The NDA you signed and the privacy law that covers your client's data both apply regardless of how good the AI vendor's terms are.

Highest-stakes points

Where the real money and real risk sit, color-coded by severity.

✓ Strongest protection: no training on paid and API data by default

This is the single most valuable term for professional users. It is the reason I rate Anthropic above its peers. It only holds on the commercial and API tiers, so do not assume it covers the free consumer app.

⚠ Watch: you carry hallucination liability

If a Claude output is wrong and you act on it, the loss is yours under the terms. There is no vendor backstop for inaccurate answers. This is industry-standard, not unique to Anthropic, but it is the clause that turns into a malpractice or breach problem most often.

⛔ Highest stakes: policy-based suspension can halt a workflow

The terms reserve broad authority to suspend or terminate accounts for Acceptable Use Policy violations. That cuts both ways: it can be good for trust, and bad if your business depends on uninterrupted access and you trip a flag. Do not build a single point of failure on any one AI vendor. Keep an export and a fallback.

⚠ Key Clauses to Watch

Even with better terms, these provisions require attention.

Safety-Based Output Restrictions

Medium Risk

Claude's safety guardrails may refuse outputs that some other AI services would provide. For many users that is a feature, but it can limit creative, research, or edge-case use cases.

As I read the Acceptable Use Policy and usage guidelines, Claude may decline to produce content the policy treats as harmful, misleading, or otherwise restricted, even where it is technically possible. Read the current policy for the exact prohibited-use categories and how they are described. My reading of the Anthropic Acceptable Use Policy

Output Accuracy Disclaimer

Medium Risk

As with the major AI services generally, the terms disclaim responsibility for inaccurate or "hallucinated" output and place verification on the user before you rely on anything Claude produces.

As I read the terms, Anthropic disclaims that outputs are accurate, complete, or appropriate, and makes the user responsible for evaluating and verifying any output before use. Read the current terms for the exact disclaimer and "no warranty" language. My reading of the Anthropic Terms of Service

Rate Limits and Availability

Low Risk

Usage limits and service availability are not guaranteed. During high-demand periods, access may be throttled or temporarily unavailable.

As I read the terms, Anthropic reserves the right to impose rate limits and usage quotas and to manage or limit access to maintain service capacity. Read the current terms for the exact availability and rate-limit language. My reading of the Anthropic Terms of Service

Free Tier Data for Safety

Low Risk

Free-tier conversations may be handled differently from paid and API usage, including for safety and model-improvement purposes. Paid and API tiers have distinct, generally more protective data-handling terms.

As I read the privacy and data-handling policies, free-tier conversations may be used to improve safety systems and model capabilities, while API and paid-plan usage is governed by different data-handling terms. Read the current privacy policy and data-usage documentation for the exact treatment of each tier. My reading of the Anthropic privacy and data-handling policies

⚠ Government Use & AUP Enforcement

In early 2026 the Department of Defense designated Anthropic a “supply chain risk” under 10 U.S.C. § 3252 and the administration directed federal agencies to pause use of Claude, after Anthropic declined updated Pentagon contract terms over its limits on mass-surveillance and autonomous-weapons use (Axios, Mayer Brown). Anthropic sued, and on March 26, 2026 a federal court for the Northern District of California preliminarily enjoined the designation. The litigation is ongoing. If you have defense or defense-adjacent business, confirm Claude’s current federal availability against official guidance. Below is the framework I use to think about what a dispute like this means for enterprise customers evaluating AI vendor commitments.

When an AUP is actually tested

Anthropic’s Acceptable Use Policy describes categories of prohibited use, and the reporting suggests the company declined to carve exceptions into that policy for a major government customer. If that holds up, it is meaningful: the strongest signal that a vendor’s stated policies are enforced rather than aspirational is watching what the vendor does when enforcing them is expensive. Read the current Acceptable Use Policy for the actual prohibited-use categories.

A government-access restriction, if it stands

The Department of Defense made a designation that would restrict government and defense-sector access to Claude, and a federal court preliminarily blocked it in March 2026. The legal basis and scope are being litigated, so I do not treat the long-term outcome as settled. If you have defense or defense-adjacent business, the practical point holds: treat federal availability of Claude as an open question and confirm it against current official guidance.

Enterprise implications: evaluating vendor commitment

A dispute like this is a useful stress test for vendor policy commitments. When evaluating AI providers, the question I would ask is: would this vendor enforce its stated policies even against an important customer? Companies with government defense contracts or subcontracts should review their AI vendor relationships, because a federal access restriction, if it applies, can reach any organization with defense-adjacent business.

The deeper issue: who controls the guardrails

In my view the interesting question in a dispute like this is rarely whether a given safety restriction is reasonable. It is who gets to set and override the guardrails: the AI vendor through its own acceptable-use policy, or the customer through contract terms that can override it. That allocation of control is what enterprise buyers should actually be diligencing in any AI vendor relationship.

Current status

As of June 2026, a federal court (N.D. Cal.) has preliminarily enjoined the supply-chain-risk designation, finding Anthropic likely to succeed on First Amendment, due-process, and Administrative Procedure Act claims (FindLaw). The litigation continues, and the outcome could shape whether AI vendors can keep independent acceptable use policies when government customers want exceptions. I am following it and will update this review as it develops.

Read my fuller analysis of the dispute →

Business-user FAQ

The questions I actually get from clients deciding whether to put real work through Claude.

Is my data safe if I use Claude for client work?

On the API, Team, and Enterprise tiers, your inputs and outputs are not used to train models by default, which is the safest posture among the major providers. The free consumer app is a different story, so keep regulated or NDA-covered material off it. "Safe from Anthropic" is not the same as "compliant with your own client and privacy obligations," which you still have to satisfy separately.

Can I be banned for policy reasons, and is that likely?

Yes. The terms reserve broad authority to suspend or terminate accounts for Acceptable Use Policy violations, and the recent reporting around a government-access dispute suggests Anthropic takes its policy seriously. For ordinary business use you are unlikely to trip it, but automated flags happen, so do not run a mission-critical workflow with no export and no fallback provider.

Can I audit how Anthropic handles my data?

To a degree. Enterprise and API customers can request a Data Processing Addendum and documentation of data handling, and zero-retention options exist for qualifying use cases. Full third-party audit rights are a negotiation point at the enterprise level, not an automatic feature of the standard terms, so ask before you assume.

Do I actually own what Claude writes, and can I sell it?

Anthropic's terms assign output ownership to you and permit commercial use, which is favorable. The practical caveat is copyright law itself: purely AI-generated material may have thin or no copyright protection regardless of what the vendor terms say, so heavily AI-generated work product can be harder to protect against copying.

Can I move my outputs and history to another tool?

Outputs are yours, so you can copy, export, and reuse them. There is no deep lock-in on the content itself. There is no rich one-click portability of your full conversation history and settings into a competitor, so if continuity matters, keep your own exports rather than relying on the platform to carry everything over.

Who is liable if Claude hallucinates and I rely on it?

Under the terms, you are. The agreement disclaims accuracy and puts verification on the user, and it caps Anthropic's liability. If a wrong output reaches your client and causes a loss, that is your exposure, not the vendor's, which is exactly why a documented human review step is non-negotiable for professional use.

Should I worry about the government-access dispute?

Only if you have defense-adjacent business. There has been reporting of a federal dispute that could restrict government and defense-sector access to Claude, but the specifics are still developing and may be subject to legal challenge, so confirm the current position against official guidance rather than relying on any single summary. If you hold or subcontract on government defense work, review your AI vendor relationships now. For ordinary commercial users, I am not aware of anything in this dispute that restricts your use.

Anthropic Terms Update History

How I understand Anthropic's terms and policies to have changed over time, and what each change means for your Claude usage and data rights. Dates and details are drawn from Anthropic's own published terms and announcements; confirm any specific date or setting against the current source before relying on it.

Late 2025

Consumer training presented as a choice

Anthropic's published updates moved consumer chat training toward a setting users select rather than a default, and introduced retention choices, with a window for existing users to make their selection. Check the current privacy settings and policy for the exact options, retention periods, and any deadline that applies to you.

2024

Terms of Service update

Anthropic updated its Terms of Service, including in the areas of acceptable use, content ownership, and API usage. Read the current terms for the operative language.

Earlier releases

Output ownership for users

As I read them, Anthropic's terms assign ownership of Claude's outputs to the user and permit commercial use without additional licensing from Anthropic. Note the separate point that copyright law may limit protection for purely AI-generated material regardless of what the vendor terms say.

View All ToS Updates →

Anthropic Terms Review Best in Category

What should I do?

👤 Everyday user

💼 Business / professional user

⚠ Already affected

✓ Relative Strengths

Score Breakdown by Category

Compare With Other AI Services

Anthropic vs OpenAI vs Gemini: terms side by side

Using Claude for business: the 5 controls I tell clients to set

📝 Scenario

⚠ The trap most businesses miss

Highest-stakes points

✓ Strongest protection: no training on paid and API data by default

⚠ Watch: you carry hallucination liability

⛔ Highest stakes: policy-based suspension can halt a workflow

🤖 AI Terms Questions?

⚠ Key Clauses to Watch

Safety-Based Output Restrictions

Output Accuracy Disclaimer

Rate Limits and Availability

Free Tier Data for Safety

⚠ Government Use & AUP Enforcement

When an AUP is actually tested

A government-access restriction, if it stands

Enterprise implications: evaluating vendor commitment

The deeper issue: who controls the guardrails

Current status

Analysis

Business-user FAQ

⚖ My take

Anthropic Terms Update History

Consumer training presented as a choice

Terms of Service update

Output ownership for users

Start with a written review

Anthropic Terms Review Best in Category

What should I do?

👤 Everyday user

💼 Business / professional user

⚠ Already affected

✓ Relative Strengths

Score Breakdown by Category

Compare With Other AI Services

Anthropic vs OpenAI vs Gemini: terms side by side

Using Claude for business: the 5 controls I tell clients to set

📝 Scenario

⚠ The trap most businesses miss

Highest-stakes points

✓ Strongest protection: no training on paid and API data by default

⚠ Watch: you carry hallucination liability

⛔ Highest stakes: policy-based suspension can halt a workflow

🤖 AI Terms Questions?

Related Resources

⚠ Key Clauses to Watch

Safety-Based Output Restrictions

Output Accuracy Disclaimer

Rate Limits and Availability

Free Tier Data for Safety

⚠ Government Use & AUP Enforcement

When an AUP is actually tested

A government-access restriction, if it stands

Enterprise implications: evaluating vendor commitment

The deeper issue: who controls the guardrails

Current status

Analysis

Business-user FAQ

⚖ My take

Anthropic Terms Update History

Consumer training presented as a choice

Terms of Service update

Output ownership for users

Start with a written review

Related Resources