Anthropic Updates Privacy Policy: Claude Users Need ID Verify

Anthropic has updated its privacy policy for Claude, now explicitly allowing the company to perform age and identity verification on consumer users.

The change signals a tighter security and compliance stance across Claude Free, Pro, and Max plans. It is scheduled to take effect on July 8, 2026.

In the revised policy, Anthropic states that it may ask users to verify their age or identity to help keep its services “safe and secure.”

The document now includes a dedicated Verification data category, outlining the types of information that may be collected during this process and how that information may be used.

While the exact verification workflow is not fully detailed in the policy itself, the new language formally authorizes Anthropic to introduce ID and age checks for certain users or use cases.

Anthropic Updates Privacy Policy

Anthropic positions this as part of a broader refresh of its consumer privacy documentation rather than a narrow, standalone change.

Alongside identity verification, the update adds more detail on how the company handles multi-step tasks, connected applications, user research or studies, and data-sharing scenarios.

Importantly, Anthropic clarifies that these changes apply only to consumer accounts and explicitly exclude customers on the Claude Team, Enterprise, and Developer Platform, which are covered by separate terms and policies.

For privacy- and security-conscious users, the key questions now center on scope and retention.

Identity verification processes for AI services typically rely on signals such as government-issued IDs, selfies, or other proof-of-identity attributes, often processed via specialized third-party providers.

Even when a company frames this data collection as limited to safety, fraud prevention, or legal obligations, it raises concerns about how long such data is retained, who can access it, and how it is protected from misuse or breach.

Anthropic attempts to differentiate itself by reiterating several constraints on its data practices in the updated policy.

The company states that it does not sell user data and that Claude remains ad-free, thereby reducing the incentive to repurpose personal information for advertising.

It also maintains an opt-out model for using user conversations to improve its models, giving individuals control over whether their chat content can be used for training.

Notably, the policy language draws a clear line between verification data and model training data, indicating that identity-related information is not intended to feed back into Claude’s learning process.

From a cybersecurity and governance perspective, Anthropic’s move reflects a broader industry trend. AI providers are steadily adding stronger age and identity controls as they respond to abuse, regulatory pressure, and the risks posed by increasingly capable models.

For security practitioners and privacy advocates, these policy shifts are important early signals. They often appear before larger product-level enforcement becomes visible, hinting at upcoming requirements for users who want to access advanced features or higher-risk workflows on platforms like Claude.

Disclaimer: HackersRadar reports on cybersecurity threats and incidents for informational and awareness purposes only. We do not engage in hacking activities, data exfiltration, or the hosting or distribution of stolen or leaked information. All content is based on publicly available sources.