This page covers the Claude API (api.anthropic.com), Claude Platform on AWS, and Claude in Microsoft Foundry, where Anthropic is the data processor. On Amazon Bedrock and Google Cloud's Agent Platform, the cloud provider is the data processor; refer to those platforms' data retention and compliance documentation for their equivalent controls.
Anthropic offers two data handling arrangements for the Claude API: zero data retention (ZDR) and HIPAA readiness. The feature eligibility table lists which API features each arrangement covers. For Anthropic's standard retention policies outside these arrangements, see the commercial data retention policy and the consumer data retention policy.
Different APIs and features have different storage needs. Where a feature does not require storage of customer prompts or responses, it may be eligible for ZDR. Where a feature necessarily requires storage, Anthropic designs for the smallest possible retention footprint under the following commitments:
Several retention models sit outside the ZDR and HIPAA arrangements described on this page. Data accessible through the Compliance API follows its own retention model, the Activity Feed retains data for 6 years, and chat, file, and project content from claude.ai follows your organization's retention policy set in claude.ai > Organization settings > Data and privacy.
Under a ZDR arrangement, Anthropic does not store customer prompts or responses at rest after the API response is returned. To request ZDR for your organization, contact the Anthropic sales team. ZDR is enabled per organization; each new organization requires ZDR to be enabled separately by your account team, and enablement does not automatically extend to other organizations under the same account.
/v1/messages but are marked "No" in the table (such as code execution) are not covered.For the most up-to-date information on which products and features are ZDR-eligible, refer to your contract terms or contact your Anthropic account representative.
The Claude API supports HIPAA-ready integrations for organizations that handle protected health information (PHI). With a signed BAA and a HIPAA-enabled organization, you can use supported API features to process PHI while supporting your organization's HIPAA compliance. Eligible organizations can review and execute the BAA and enable HIPAA readiness directly from the Claude Console. HIPAA readiness applies a broader set of privacy and security safeguards than ZDR (encryption, access controls, and audit logging that protect PHI throughout its lifecycle) rather than requiring immediate deletion. If your organization handles PHI, HIPAA readiness is the arrangement to use; you do not also need ZDR. See the feature eligibility table for which features each arrangement covers.
This page covers HIPAA readiness for the Claude API. For the full HIPAA Implementation Guide covering Claude Enterprise and configuration requirements, see the Anthropic Trust Center.
api.anthropic.com) for eligible features listed in the feature eligibility table.Protected health information (PHI) includes any individually identifiable health information. In the context of the Claude API, PHI typically appears in message content (prompts and Claude's responses), attached files (images, PDFs), and file names or metadata associated with message content. The following fields are not expected to contain PHI under the BAA: workspace names, user information (name, email, phone number), billing data, and support tickets.
When using structured outputs or tools with strict: true, the API compiles JSON schemas into grammars that are cached separately from message content. These cached schemas do not receive the same PHI protections as prompts and responses. Do not include PHI in JSON schema definitions. This restriction applies to schema property names, enum values, const values, and pattern regular expressions. Patient-specific information should appear only in message content, where it is protected under HIPAA safeguards.
Your signed BAA is the official source of truth for which features are covered. The API also enforces these restrictions automatically. When a HIPAA-enabled organization sends a request that includes a non-eligible feature, the API returns a 400 error to prevent accidental use of features not covered by your BAA:
{
"type": "error",
"error": {
"type": "invalid_request_error",
"message": "The requested features are not available for HIPAA-regulated organizations without Zero Data Retention: code_execution."
}
}The error message lists the non-eligible features detected in the request; remove them and retry. The phrase "without Zero Data Retention" is the API's own wording and does not change the resolution.
There are two ways to set up HIPAA-ready API access. Most organizations can enable it directly in the Claude Console with Anthropic's standard BAA; organizations that require a negotiated BAA should work with their account team.
Open your organization's privacy settings
In Claude Console > Settings > Privacy, organization admins with the HIPAA management permission see a HIPAA compliance card. If your organization is eligible but you don't see the option to enable, ask an organization admin to complete these steps.
Review and execute the BAA
Download the Business Associate Agreement and the HIPAA Implementation Guide, then accept the agreement as an authorized legal representative of your organization. Each step becomes available after you download the prior document, and your enablement is bound to the exact BAA version you downloaded.
Enablement takes effect immediately
HIPAA readiness controls are applied to your organization as soon as you accept. Once HIPAA readiness is enabled for your organization, the configuration is permanent and cannot be disabled by an administrator. The API automatically enforces feature restrictions, returning an error for requests that use non-eligible features. See HIPAA error handling.
If your organization requires a negotiated or custom BAA, or if self-serve enablement isn't available for your organization, contact the Anthropic sales team. Anthropic will execute the BAA and enable HIPAA readiness for your organization.
Whichever path you use, confirm which features are supported in the feature eligibility table and review the PHI handling guidelines for features that restrict where PHI can appear. For detailed configuration and compliance requirements, refer to the HIPAA Implementation Guide.
HIPAA readiness is enforced at the organization level. If you need both HIPAA-ready and general-purpose API access, use separate organizations for each.
Claude Fable 5 and Claude Mythos 5 are designated Covered Models (see the Covered Models support article) and require 30-day data retention; ZDR is therefore not available for either model. On the Claude API, requests to Claude Fable 5 from an organization whose data retention configuration does not meet this requirement return a 400 invalid_request_error:
{
"type": "error",
"error": {
"type": "invalid_request_error",
"message": "In order to access this model, your organization or workspace must have data retention enabled."
}
}The 30-day data retention requirement applies wherever Covered Models are offered. On the Claude API (including Claude Platform on AWS), Anthropic handles retained data. On Amazon Bedrock and Google Cloud's Agent Platform, retained data stays within your cloud provider's environment; review each platform's documentation for enablement steps.
Organizations with a ZDR arrangement can make Claude Fable 5 and Claude Mythos 5 available in a specific workspace by enabling 30-day retention for that workspace only. Other workspaces in the organization keep zero data retention.
Open the workspace's privacy controls
In Claude Console > Settings > Workspaces, select the workspace and open its Privacy controls tab.
Turn on 30-day data retention
Enable the 30-day data retention setting for the workspace.
Verify
Requests to Claude Fable 5 and Claude Mythos 5 from this workspace now succeed. Workspaces without an override continue to follow the organization default.
The following table lists which Claude API features are eligible for ZDR and HIPAA readiness arrangements.
Each eligibility column uses three values:
400 error. Under ZDR, the API does not block these features; using one is a choice to step outside your ZDR arrangement for that specific data, and the feature's own documented retention policy applies. Features marked "No" for ZDR are typically stateful (they store jobs, files, or container state), which is why they cannot be zero-retention.| Feature | Endpoint | ZDR eligible | HIPAA eligible | Details |
|---|---|---|---|---|
| 1M token context window | /v1/messages | Yes | Yes | |
| Adaptive thinking | /v1/messages | Yes | Yes | |
| Advisor tool | /v1/messages (with advisor tool) | Yes | No | Advisor model output is returned in the API response; nothing is stored server-side after the response. |
| Agent skills | /v1/messages (with skills) / /v1/skills | No | No | Skill data retained per standard policy. See Agent skills. |
| Bash tool | /v1/messages (with bash tool) | Yes | Yes | Client-side tool executed in your environment. |
| Batch processing | /v1/messages/batches | No | No | 29-day retention; async storage required. See Batch processing. |
| Cache diagnostics | /v1/messages (with diagnostics) | Yes (qualified) | No | Your prompts and Claude's outputs are not stored. A fingerprint of cryptographic hashes and token-count estimates is retained briefly to enable comparison against the next request. See Cache diagnostics. |
| Citations | /v1/messages | Yes | Yes | |
| Claude Managed Agents | /v1/agents, /v1/sessions, /v1/environments | No | No | Sessions are stateful resources; transcripts persist until you delete them. Applies to all Managed Agents sub-features, including Self-hosted sandboxes. |
| Code execution | /v1/messages (with code_execution tool) | No | No | Container data retained up to 30 days. See Code execution. |
| Computer use | /v1/messages (with computer tool) | Yes | No | Client-side tool where screenshots and files are captured and stored in your environment, not by Anthropic. See Computer use. |
| Context editing | /v1/messages (with context_management) | Yes | No | Context edits (tool use clearing and thinking clearing) are applied in real time. |
| Context management (compaction) | /v1/messages (with context_management) | Yes | No | Server-side compaction results are returned and round-tripped statelessly through the API response. |
| Data residency | /v1/messages (with inference_geo) | Yes | Yes | |
| Effort | /v1/messages (with effort) | Yes | Yes | |
| Extended thinking | /v1/messages (with thinking) | Yes | Yes | |
| Fast mode | /v1/messages (with speed: "fast") | Yes | Yes | Same Messages API endpoint with faster inference. ZDR applies regardless of speed setting. |
| Files API | /v1/files | No | No | Files retained until explicitly deleted. See Files API. |
| Fine-grained tool streaming | /v1/messages | Yes | Yes | |
| MCP connector | /v1/messages (with mcp_servers) | No | No | Data retained per standard policy. See MCP connector. |
| MCP tunnels | /v1/tunnels | No | No | Research preview. See MCP tunnels security for the data-flow boundary and subprocessor details. |
| Memory tool | /v1/messages (with memory tool) | Yes | Yes | Client-side memory storage where you control data retention. |
| Messages API | /v1/messages | Yes | Yes | Standard API calls for generating Claude responses. |
| Mid-conversation system messages | /v1/messages (with role: "system" messages) | Yes | Yes | Request-shape capability of the Messages API; mid-conversation system messages flow through the standard inference path and nothing is stored server-side after the response. |
| PDF support | /v1/messages | Yes | Yes | HIPAA eligibility applies to PDFs sent inline through the Messages API, not through the Files API. |
| Programmatic tool calling | /v1/messages (with code_execution tool) | No | No | Built on code execution containers; data retained up to 30 days. See Programmatic tool calling. |
| Prompt caching | /v1/messages | Yes | Yes | Your prompts and Claude's outputs are not stored. KV cache representations and cryptographic hashes are held in memory for the cache TTL and promptly deleted after expiry. See Prompt caching. |
| Search results | /v1/messages (with search_results source) | Yes | Yes | |
| Structured outputs | /v1/messages | Yes (qualified) | Yes | Your prompts and Claude's outputs are not stored. Only the JSON schema is cached, for up to 24 hours since last use. This also covers strict tool use (strict: true on tools), which uses the same grammar pipeline. PHI must not be included in JSON schema definitions; see PHI handling guidelines. See Structured outputs. |
| Text editor tool | /v1/messages (with text_editor tool) | Yes | Yes | Client-side tool executed in your environment. |
| Token counting | /v1/messages/count_tokens | Yes | Yes | Count tokens before sending requests. |
| Tool search | /v1/messages (with tool_search tool) | Yes | No | Server-side tool executed by Anthropic; the tool definitions in the request are searched in memory per call and nothing is stored after the response. |
| Web fetch | /v1/messages (with web_fetch tool) | Yes | No | Fetched web content returned in the API response. Dynamic filtering is not eligible for ZDR or HIPAA. Website publishers may retain request data (such as fetched URLs and request metadata) according to their own policies. |
| Web search | /v1/messages (with web_search tool) | Yes | Yes | Real-time web search results returned in the API response. Dynamic filtering is not eligible for ZDR or HIPAA. |
Even with ZDR or HIPAA arrangements in place, Anthropic may retain data where required by law or where it has been flagged by Anthropic's automated trust and safety systems. As a result, if a chat or session is flagged, Anthropic may retain inputs and outputs for up to 2 years.
Was this page helpful?