Claude Data Protection

Is your data safe with Claude?

The myths your IT and risk teams have heard about Claude, busted.

Does Claude train on our data or our documents?

No. On commercial terms (Enterprise, Team, or the API), Anthropic does not use your inputs or outputs to train its models. On consumer plans, chats are used for training only if the user allows it; that setting is chosen at signup or when prompted and can be changed at any time. Source.

Could our information reach another client, or the public?

No. Your data is not used to train the shared model, so it cannot resurface through the model in another customer's results, and it is not shared with other customers. The only access from outside your organisation is the limited Anthropic access described below. Source.

Can Anthropic staff read our conversations?

Not by default. Access is limited to specific cases, such as where you grant consent or where content is flagged by an automated safety check. There is no general employee access to client conversations. Source.

Is the client information we put in kept confidential?

Yes, within defined limits. You own everything you put in and get back, it is encrypted in transit and at rest, and as your data processor Anthropic neither trains on it nor shares it with other customers. The access that exists is narrow (your designated admins, plus the limited Anthropic access noted above), so the main thing to manage is your own setup: which account the data goes into, and how widely it is shared internally. Source.

Where is our data processed, and can it stay in Australia?

By default, overseas: the first-party Claude API runs inference in the US or routes globally, and stores data in the US. If you need it onshore, you can deploy Claude through AWS Bedrock in the Sydney region instead, which keeps inference and data within Australia, with AWS acting as the data processor, so prompts and responses do not leave the country. Anthropic's own Australian residency for the first-party API is expected to follow. Source.

How long is data kept, and can it be deleted?

By default, API inputs and outputs are deleted within 30 days. On Team and Enterprise, conversations are kept until you delete them, then purged within 30 days. Content flagged for a policy violation can be held longer, up to two years. Zero Data Retention, where inputs and outputs are not stored at all, is available for eligible API deployments. Source.

Is Anthropic independently audited?

Yes. SOC 2 Type I and II, ISO 27001:2022, ISO/IEC 42001:2023 for AI management, and HIPAA-ready with a Business Associate Agreement. The full SOC 2 report is available under NDA. trust.anthropic.com

Does using Claude make us compliant on its own?

No, and no vendor's tool does. The certifications cover Anthropic's own controls. What data is permitted, who has access, and review of outputs stay with you.

* These answers assume a Claude Enterprise or Team plan, or the API. The consumer plans behave differently. Details are current as of June 2026; verify against the sources below.

** Verify directly: Anthropic Trust Centre · Privacy and data handling · Model training policy · Regional compliance.

Where does responsibility lie?

Anthropic covers

  • Model and infrastructure security
  • No training on your commercial data
  • Independent certifications and audits
  • Data residency and retention options

Your organisation covers

  • The plan and signed agreement
  • What data is allowed in
  • Who can access each workspace
  • Reviewing what the AI produces

Rolling out Claude for your fund?

Get your team confident and productive on Claude with a Levercon AI education and training workshop.