Loading the catalogue…
Loading the catalogue…
Anthropic is a US-incorporated AI safety and research company headquartered in San Francisco, operating as a first-party inference provider via api.anthropic.com. Its Delaware incorporation subjects it — and all customer data transiting its API — to US CLOUD Act compulsory disclosure and FISA Section 702, regardless of where that data is physically stored; the Stav catalogue's current 'false' CLOUD Act flag is factually incorrect and must be corrected. On the positive side, Anthropic holds a strong compliance posture for EU regulated customers who execute a full commercial agreement: it has signed all three chapters of the EU GPAI Code of Practice, maintains a published DPA incorporating EU SCCs, holds SOC 2 Type II, ISO 27001:2022, ISO/IEC 42001:2023, and HIPAA-ready certifications, and operates Anthropic Ireland Limited as the EEA contracting entity. The principal ongoing risks for EU enterprise customers are the irresolvable jurisdictional exposure, active litigation over training data scraping practices (Reddit lawsuit), the unprecedented US Department of Defense 'supply-chain risk' designation (filed March 2026, partially enjoined, still litigated), and a September 2025 privacy-policy reversal that introduced opt-in model training with five-year data retention for consumer accounts.
Anthropic is Delaware-incorporated with US-hosted inference infrastructure. The CLOUD Act (18 U.S.C. § 2713) authorises US courts to compel disclosure of data held by US corporations regardless of where that data is physically stored. This exposure exists on both the training side (as creator) and the inference side (as first-party provider operating api.anthropic.com). EU direct-API deployments cannot achieve EU data residency; even AWS Bedrock EU and Google Vertex AI EU routing reduces but does not eliminate CLOUD Act exposure given the US parent.
FISA Section 702 exposure: as a US-incorporated operator of US communications infrastructure, Anthropic may receive compulsory national-security disclosure orders that cannot be disclosed to affected customers. No government transparency report has been published by Anthropic.
US Department of Defense supply-chain risk designation (effective March 3, 2026 — the first ever applied to a US company). Arose from Anthropic's refusal to remove contractual prohibitions on mass domestic surveillance and autonomous weapons from its Pentagon contract. DoD designated Anthropic a risk to national security; all federal agencies directed to cease using Claude with a six-month phase-out. Anthropic filed federal lawsuits March 9, 2026; preliminary injunction granted in California March 2026 but appeals court denied a stay April 8, 2026. Litigation ongoing and outcome uncertain.
September/October 2025 privacy policy reversal: consumer accounts (Free/Pro/Max) shifted to opt-in model training by default with up to 5-year data retention. This represents a significant departure from prior privacy-first positioning and has been characterised as a dark-pattern UI change by privacy advocates. No formal regulatory enforcement action has been taken as of June 2026, but this is under scrutiny. Enterprise customers on DPA-covered plans are not affected.
Reddit lawsuit (filed June 2025): Reddit alleges Anthropic scraped over 100,000 user posts including deleted content for Claude training without authorisation, in breach of Reddit's Terms of Service. Case transferred to San Francisco Superior Court March 2026; in active litigation. Outcome could establish precedent for AI training data liability and may require changes to Anthropic's training data practices.
Stav AI Act assessment
Editorial assessment, not legal advice. Stav's risk ratings, scores, and verdicts are our own analysis of publicly available information and may be incomplete or out of date. Verify independently before making compliance or procurement decisions.
The catalogue lists every family Stav knows about — including families we don’t yet host, so the picture stays authoritative.
Families served on Stav
Full signatory to the EU GPAI Code of Practice (all three chapters: Transparency, Copyright, Safety & Security) as of August 2025 — one of only 26 organisations globally to sign all chapters. This confers a rebuttable presumption of conformity with EU AI Act Articles 53 and 55.
Holds SOC 2 Type II (third-party audited over 12-month period), ISO 27001:2022, ISO/IEC 42001:2023 (world's first AI management system standard), HIPAA-ready (BAA available), CSA STAR Level 2, and NIST 800-171r3 attestation. All documentation available under NDA via trust.anthropic.com. Independently assessed as leading in AI-aligned safety controls versus peers.
Publishes comprehensive research on AI safety, interpretability, alignment, and societal impacts. Activated AI Safety Level 3 (ASL-3) protections for Claude Opus 4 (May 2025) and published the activation report publicly, with frontier red-teaming conducted by external partners. Responsible Scaling Policy is publicly available.
Long-Term Benefit Trust (LTBT) governance structure with independent trustees (Neil Buddy Shah, Richard Fontaine, Mariano-Florentino Cuéllar) holding Class T shares with board election authority provides a structural check on purely commercial decision-making. Board includes independent members Reed Hastings, Vas Narasimhan, and Chris Liddell.
Anthropic held firm contractual red lines against enabling mass domestic surveillance and fully autonomous weapons in its Pentagon contract, at significant commercial cost (DoD supply-chain designation, lost federal revenue). This demonstrates that its Acceptable Use Policy is not merely aspirational.
Commercial DPA with EU SCCs (Modules 2 and 3) automatically incorporated into Commercial Terms of Service; Anthropic Ireland Limited is the EEA contracting entity; UK GDPR Addendum and Swiss Addendum included. Enterprise customers can negotiate zero-data-retention agreements.
Creator profile
Anthropic is a US-incorporated AI safety and research company, headquartered in San Francisco, whose Claude models are fully proprietary and subject to CLOUD Act and FISA Section 702 compelled-disclosure risk. Its public-benefit-corporation structure and independent Long-Term Benefit Trust provide governance protections against investor capture, and its July 2025 commitment to the EU GPAI Code of Practice (covering mandatory safety and transparency frameworks) is the strongest EU AI Act compliance signal available from a frontier US lab. However, EU regulated customers must weigh active US political risk — specifically an ongoing legal dispute with the Trump administration's Pentagon over autonomous weapons and surveillance usage restrictions — alongside confirmed security certifications (SOC 2 Type II, ISO 27001:2022, ISO/IEC 42001:2023), a published privacy policy with opt-out training controls, and an unresolved copyright lawsuit relating to training data practices.
Stav editorial summary
Anthropic is a United States entity. Training data and weights produced under United States-jurisdiction are covered by the CLOUD Act.
Exposed on training. Inference is unaffected when hosted on Stav infrastructure inside the EEA.
Stav compliance has not yet scored Anthropic. Scores are published once the policy review and infrastructure assessment complete.
Findings
Citations gathered when the Compliance Curator last reviewed this creator’s public-facing documents. Grouped by source so the picture stays auditable.
“As outlined previously, Anthropic believes the frontier AI industry needs robust transparency frameworks that hold companies accountable for documenti...”
“The bug bounty program incentivizes several useful behaviors. First, it encourages the · responsible discovery and reporting of novel jailbreaks and p...”
[[9]](./Anthropic#cite_note-9) Anthropic was founded in 2021 by former members of [OpenAI](https://en.wikipedia.org/wiki/OpenAI), including siblings [...
On July 21, 2025, Anthropic announced its intention to sign the EU's General-Purpose AI Code of Practice, followed by OpenAI's similar commi...
August 2025: 26 major AI providers signed GPAI Code of Practice including Microsoft, Google, Amazon, OpenAI, Anthropic. Meta refuses, faces enhanced s...
It provides operational guidance for providers of general-purpose AI models, particularly in relation to Articles 53 [[2]](./General-Purpose_AI_Code_o...
This mirrors existing ‘frontier AI safety policies’ that developers like OpenAI, and Anthropic have already drawn up, but adds specificity, such as pr...
Anthropic is committed to the safety and security of our users' information and maintains the following compliance credentials: HIPAA-ready configurat...
Anthropic has announced that the Claude API has received both SOC 2 Type II and ISO 27001 certifications, completing audits conducted by independent t...
In 2021, Anthropic was founded by a group of former OpenAI researchers, including siblings Dario Amodei, the company’s chief executive officer, and Da...
The Long-Term Benefit Trust (LTBT) is a governance body holding special voting rights over Anthropic's board. Composed of independent trustees focused...
Security Certifications: SOC 2 Type II, ISO 27001:2022, and ISO/IEC 42001:2023 certified · Employee Access: Staff cannot view your conversations by de...
On July 21, 2025, Anthropic announced its intention to sign the EU's General-Purpose AI Code of Practice, followed by OpenAI's similar commitment.
These are obligations that apply to the providers of the most advanced models on the EU market, such as OpenAI's o3, Anthropic's Claude 4 Opus, and Go...
As outlined previously, Anthropic believes the frontier AI industry needs robust transparency frameworks that hold companies accountable for documenti...
The bug bounty program incentivizes several useful behaviors. First, it encourages the · responsible discovery and reporting of novel jailbreaks and p...
Consumer accounts (Free/Pro/Max) do not include a Data Processing Agreement; content may be reviewed by human staff; 30-day (or 5-year if training enabled) retention applies. EU customers using free consumer tiers receive materially weaker data protection than enterprise customers. Regulated-sector EU customers must ensure they are on a commercial plan with a signed DPA.
November 2025: Chinese government-sponsored hackers bypassed Anthropic's safeguards to use Claude for automated cyberattacks against approximately 30 global organisations. While Anthropic disclosed this publicly (a positive transparency signal), it demonstrates that Claude's safety controls can be circumvented by sophisticated state actors, and that Anthropic's models may be used as attack infrastructure against EU-based organisations.
No named Data Protection Officer publicly identified, despite Anthropic processing significant volumes of EU personal data. GDPR Article 37 may require DPO appointment depending on the scale and nature of processing. Privacy contact is privacy@anthropic.com; no DPO register entry independently verified.
No government-request transparency reports published. US national security law prohibits Anthropic from disclosing FISA Section 702 orders. EU customers cannot independently verify the frequency or scope of US government data access requests directed at Anthropic.
Model compliance cards
HackerOne bug bounty programme launched May 2025, targeting safety-relevant jailbreaks and red-teaming of real-time classifier systems — a transparent approach to adversarial security research not universally adopted by frontier AI labs.
Model Context Protocol (MCP) open-sourced and donated to the Linux Foundation's Agentic AI Foundation (AAIF) in December 2025, contributing to open industry infrastructure. Claude for Open Source programme provides free access to eligible open-source maintainers.
Active model release cadence with 10 Claude models currently active in the Stav catalogue (Haiku 4.5, Sonnet 4.5/4.6, Opus 4 through 4.8); Claude generally available on AWS Bedrock, Google Vertex AI, and Azure AI Foundry as of January 2026. Well-capitalised with major strategic investors (Amazon, Google) providing distribution infrastructure stability.
Published safeguards & certifications
Privacy policy review
“The Department of Defense has officially informed Anthropic's leadership that the company and its products have been designated a supply chain ri...”
“Michael M. Santiago | Getty Images · A federal appeals court in Washington, D.C., on Wednesday denied Anthropic's request to temporarily block the Dep...”
“Security Certifications: SOC 2 Type II, ISO 27001:2022, and ISO/IEC 42001:2023 certified · Employee Access: Staff cannot view your conversations by de...”
“In 2021, Anthropic was founded by a group of former OpenAI researchers, including siblings Dario Amodei, the company’s chief executive officer, and Da...”
“... A federal judge in California has indefinitely blocked the Pentagon’s effort to “punish” Anthropic by labeling it a supply chain risk and attempti...”
“These are obligations that apply to the providers of the most advanced models on the EU market, such as OpenAI's o3, Anthropic's Claude 4 Opus, and Go...”
“On July 21, 2025, Anthropic announced its intention to sign the EU's General-Purpose AI Code of Practice, followed by OpenAI's similar commitment. ”
“In August 2024, a class-action lawsuit was filed against Anthropic in California for alleged copyright infringement. The suit claims Anthropic fed its...”
“The Long-Term Benefit Trust (LTBT) is a governance body holding special voting rights over Anthropic's board. Composed of independent trustees focused...”
Anthropic leads in AI-aligned safety controls, especially around prompt injection mitigation and model governance.
The dispute arose after Anthropic maintained two firm red lines in its contract negotiations with the Department of Defense: it would not allow its Cl...
Through letters dated March 3, 2026, the United States Department of War (DoW) formally notified Anthropic that it has been designated a supply chain ...
Late last month, a judge in San Francisco federal court granted Anthropic a preliminary injunction in a separate case that bars the Trump administrati...
The Department of Defense has officially informed Anthropic's leadership that the company and its products have been designated a supply chain ri...
... A federal judge in California has indefinitely blocked the Pentagon’s effort to “punish” Anthropic by labeling it a supply chain risk and attempti...
Michael M. Santiago | Getty Images · A federal appeals court in Washington, D.C., on Wednesday denied Anthropic's request to temporarily block the Dep...
In August 2024, a class-action lawsuit was filed against Anthropic in California for alleged copyright infringement. The suit claims Anthropic fed its...