Anthropic Subprocessor Changes
tencentshill
56 points
30 comments
March 26, 2026
Related Discussions
Found 5 related stories in 62.0ms across 3,471 title embeddings via pgvector HNSW
- The Anthropic Institute paulpauper · 11 pts · March 14, 2026 · 62% similar
- Anthropic and Alignment (Ben Thompson) toomanybits · 17 pts · March 02, 2026 · 58% similar
- A leak reveals that Anthropic is testing a more capable AI model "Claude Mythos" Tiberium · 11 pts · March 27, 2026 · 57% similar
- Anthropic Update on Session Limits chunkycapybara · 39 pts · March 26, 2026 · 57% similar
- Anthropic, please make a new Slack georgewfraser · 227 pts · March 06, 2026 · 55% similar
Discussion Highlights (8 comments)
tencentshill
Notable: Added "Microsoft Azure, which provides cloud infrastructure for all Anthropic products (Worldwide)."
gnabgib
Title: Welcome to the Anthropic Trust Center .. was this a deep link? You might want to repeat in the comments
octoberfranklin
WTF is a "subprocessor"? They should just be honest and say "data loophole".
craxyfrog
Worth noting the distinction between subprocessors that handle customer data vs. those that handle operational/business data. The ones in the "Customer Data" category are where the compliance implications are most significant for enterprise customers under GDPR, HIPAA, or similar frameworks. For anyone evaluating this for a procurement decision: the relevant questions are (1) which subprocessors have access to content you send in API requests, (2) what data processing agreements are in place with each, and (3) what is the notification window for new subprocessor additions. The 30-day notice for customer data subprocessors is fairly standard for enterprise SaaS at this point. Publishing this list proactively rather than only on request is a positive signal, even if the list itself is fairly short.
craxyfrog
Worth noting the distinction between subprocessors that handle customer data vs. those that handle operational/business data. The ones in the "Customer Data" category are where the compliance implications are most significant for enterprise customers under GDPR, HIPAA, or similar frameworks. For anyone evaluating this for a procurement decision: the relevant questions are (1) which subprocessors have access to content you send in API requests, (2) what data processing agreements are in place with each, and (3) what is the notification window for new subprocessor additions. The 30-day notice for customer data subprocessors is fairly standard for enterprise SaaS at this point. Publishing this list proactively rather than only on request is a positive signal, even if the list itself is fairly short.
ehnto
With respect to my private data, it seems all roads eventually lead to California.
asawfofor
so i thought there were multiple fedramp service providers offering hosted claude models. not sure why they are linking to one in particular
yalogin
I don’t know what I am looking at there. What is a subprocessor?