logoalt Hacker News

Anthropic Subprocessor Changes

108 pointsby tencentshillyesterday at 9:37 PM47 commentsview on HN

Comments

ehntotoday at 2:29 AM

With respect to my private data, it seems all roads eventually lead to California.

show 1 reply
tencentshillyesterday at 9:37 PM

Notable: Added "Microsoft Azure, which provides cloud infrastructure for all Anthropic products (Worldwide)."

show 5 replies
louiereedersontoday at 12:14 PM

They announced a $30b+ commitment with Azure back in November, so not really a surprise that Azure is now listed as one of their cloud providers. https://www.anthropic.com/news/microsoft-nvidia-anthropic-an...

ctmnttoday at 7:07 AM

To be clear, for those reading these comments and thinking “oh no Azure”, this is an addition to the list of cloud companies that provide “cloud infrastructure worldwide” for “all products”. Alongside GCP and AWS. This is not a GitHub style announcement that they’ve moved all operations to Azure.

show 1 reply
craxyfrogtoday at 1:57 AM

Worth noting the distinction between subprocessors that handle customer data vs. those that handle operational/business data. The ones in the "Customer Data" category are where the compliance implications are most significant for enterprise customers under GDPR, HIPAA, or similar frameworks.

For anyone evaluating this for a procurement decision: the relevant questions are (1) which subprocessors have access to content you send in API requests, (2) what data processing agreements are in place with each, and (3) what is the notification window for new subprocessor additions. The 30-day notice for customer data subprocessors is fairly standard for enterprise SaaS at this point.

Publishing this list proactively rather than only on request is a positive signal, even if the list itself is fairly short.

yalogintoday at 3:16 AM

I don’t know what I am looking at there. What is a subprocessor?

show 2 replies
asawfofortoday at 2:36 AM

so i thought there were multiple fedramp service providers offering hosted claude models. not sure why they are linking to one in particular

show 1 reply
motbus3today at 12:14 PM

The slopped page doesn't work properly on mobile chrome

craxyfrogtoday at 1:57 AM

Worth noting the distinction between subprocessors that handle customer data vs. those that handle operational/business data. The ones in the "Customer Data" category are where the compliance implications are most significant for enterprise customers under GDPR, HIPAA, or similar frameworks.

For anyone evaluating this for a procurement decision: the relevant questions are (1) which subprocessors have access to content you send in API requests, (2) what data processing agreements are in place with each, and (3) what is the notification window for new subprocessor additions. The 30-day notice for customer data subprocessors is fairly standard for enterprise SaaS at this point.

Publishing this list proactively rather than only on request is a positive signal, even if the list itself is fairly short.

gnabgibyesterday at 9:42 PM

Title: Welcome to the Anthropic Trust Center

.. was this a deep link? You might want to repeat in the comments

show 1 reply
rvzyesterday at 10:15 PM

[flagged]

show 1 reply
wewewedxfgdftoday at 1:48 AM

[flagged]

show 4 replies
octoberfranklinyesterday at 11:02 PM

WTF is a "subprocessor"?

They should just be honest and say "data loophole".

show 2 replies