DeepSeek V4 and privacy: what it may collect, and what not to share
The available sources do not support the claim that DeepSeek V4 steals data; they do show that DeepSeek may process personal data tied to its services and may collect prompts, uploaded files, feedback and chat history... DeepSeek’s terms say users are responsible for the Inputs they submit and must have the rights,...
DeepSeek V4 y privacidad: qué recopila y qué no debes compartirIlustración generada por IA sobre los riesgos de compartir datos sensibles en servicios de DeepSeek.
AI Prompt
Create a landscape editorial hero image for this Studio Global article: DeepSeek V4 y privacidad: qué recopila y qué no debes compartir. Article summary: No hay base en las fuentes disponibles para afirmar que DeepSeek V4 “robe” datos; sí consta que los servicios de DeepSeek pueden procesar datos personales y recoger prompts, archivos subidos, feedback e historial de c.... Topic tags: deepseek, ai, privacy, data security, ai safety. Reference image context from search candidates: Reference image 1: visual subject "Title: Qué sabemos sobre la seguridad de descargar DeepSeek, el chatbot de IA chino, y aceptar sus términos de privacidad - Factchequeado Esta inteligencia artificial, que funciona" source context "Qué sabemos sobre la seguridad de descargar DeepSeek, el chatbot de IA chino, y aceptar sus términos de privacidad - Fac" Reference image 2: visual subject "Title: Qué sabemos sobre
openai.com
Before using DeepSeek V4 with work documents, customer records or personal information, separate two questions. The sources available here do not establish that DeepSeek V4 steals data. They do show that DeepSeek can process personal data in connection with its services, and that some user-provided content may be collected .
There is also an important caveat: the sources cited here are not a standalone privacy policy written only for DeepSeek V4. DeepSeek’s broader privacy policy says it applies to personal data processed in connection with its apps, websites, software and related services that link to or reference that policy .
The short answer
Treat DeepSeek V4 like any external AI service. If you paste a password, an API key, a confidential contract or someone else’s personal information into the chat, the issue is not whether anyone steals it. You have already sent that information to an outside system that may process user content .
A good working rule is: do not enter anything you would not be comfortable sharing with an external provider.
What DeepSeek says it may collect
DeepSeek’s privacy policy covers personal data processed in connection with its services . A cited version of the policy lists specific categories that may be collected when people use the service . These include:
Studio Global AI
Search, cite, and publish your own answer
Use this topic as a starting point for a fresh source-backed answer, then compare citations before you share it.
What is the short answer to "DeepSeek V4 and privacy: what it may collect, and what not to share"?
The available sources do not support the claim that DeepSeek V4 steals data; they do show that DeepSeek may process personal data tied to its services and may collect prompts, uploaded files, feedback and chat history...
What are the key points to validate first?
The available sources do not support the claim that DeepSeek V4 steals data; they do show that DeepSeek may process personal data tied to its services and may collect prompts, uploaded files, feedback and chat history... DeepSeek’s terms say users are responsible for the Inputs they submit and must have the rights, licences and permissions needed to submit them [4].
What should I do next in practice?
DeepSeek says users can opt out of data use for model training and delete historical data, but you should verify those controls in the specific account, app, web service or API you use [7].
Account information, such as date of birth where applicable, username where applicable, email address or phone number, and password .
User inputs, including text input, prompts, uploaded files, feedback, chat history or other content provided to the model and services .
Information sent when contacting DeepSeek, such as details included in support messages or proof of identity .
For everyday use, the second category is the one to watch. Your prompts, attachments and chat history can be more sensitive than your sign-up details, especially if you copy in work material, customer data, internal system information or third-party personal data.
What you should not put into DeepSeek V4
Because prompts, uploaded files, feedback and chat history may be part of the user input collected by the service , avoid sending information that is secret, regulated, hard to revoke or belongs to someone else.
Do not paste or upload:
passwords, recovery codes, 2FA codes or session tokens;
API keys, cloud credentials, connection strings or infrastructure secrets;
internal documents, contracts, salary sheets, business plans or confidential material;
bank, tax, payment card or sensitive billing information;
medical information or health data;
names, emails, phone numbers, addresses, identifiers or personal data belonging to other people;
proprietary code, internal prompts, commercial strategies or trade secrets.
That does not mean DeepSeek will misuse the information. It means that once you send it, it is no longer only inside your own environment.
You are also responsible for what you submit
DeepSeek’s terms of use say users are responsible for all Inputs they submit to the services and for the corresponding Outputs. The terms also say that, by submitting Inputs, users represent that they have the necessary rights, licences and permissions to do so .
That matters in professional settings. Copying customer data, internal tickets, company documents, private code or personal information about other people into an AI tool may create privacy, compliance, contractual or internal-policy problems, even if your goal is only to get a summary, rewrite or quick fix.
Privacy controls worth checking
DeepSeek says in its document on model mechanisms and training methods that users can query basic service information, opt out of data usage for model training and delete historical data .
Still, do not assume every control works the same way everywhere. Before using DeepSeek V4 with anything even moderately sensitive, check the exact product and account you are using:
whether there is an option to exclude your data from model training;
whether that choice applies to future chats, past data or both;
whether you can delete chat history;
whether uploaded files are deleted along with the chat history;
whether the setting applies to the web app, mobile app, API or only part of the service.
The existence of general privacy controls is helpful, but it is not a substitute for checking the settings in the specific interface you use.
How to reduce risk in practice
The best privacy habit is minimisation: send only what the model truly needs to complete the task.
1. Anonymise before you paste
Replace names, email addresses, phone numbers, street addresses, internal IDs and company names with placeholders such as
Client A
,
Company B
or [email].
2. Use excerpts, not full documents
If you only need help with one clause, one paragraph or one code error, extract that section. Do not upload a whole file when a small sample is enough.
3. Clean files before attaching them
Create a copy without comments, metadata, edit history, internal paths or hidden data. Do not use the original document if it contains information that is not needed for the request.
4. Separate experiments from work
Avoid mixing personal tests, work material and sensitive data in the same account unless you have a clear reason. A test account using fictional data reduces the impact of mistakes.
5. Rotate credentials if you shared them by accident
If you pasted a password, token, API key or infrastructure secret, change or revoke it as soon as possible. Deleting a chat may help with historical data if that option is available, but it should not be your only response to an exposed credential .
What to do if you already sent something sensitive
Your response should match the type of information involved:
Password, token or API key: change, revoke or rotate it immediately.
Personal data about someone else: document what was shared and follow your organisation’s privacy process.
Internal or confidential document: notify security, legal or compliance teams if relevant.
Chat history: review deletion options, since DeepSeek says users can delete historical data .
Training use: look for the opt-out control that DeepSeek says it offers for use of data in model training .
Bottom line
There is no basis in the available sources to say that DeepSeek V4 will steal your data. There is a clear basis for a more practical warning: DeepSeek may process personal data connected with its services , and a cited privacy policy lists prompts, uploaded files, feedback and chat history as user inputs that may be collected .
Use DeepSeek V4 as you would any external AI provider. If the information is secret, personal, regulated, business-critical or difficult to revoke, do not put it in the prompt.