Misrouted Email Handling Policy

Anthropic India (Anthropic Softwares Pvt Ltd)

Effective Date: 02 May 2026

1. Purpose & Background

Anthropic India (Anthropic Softwares Pvt Ltd) operates across India and international markets in Education, Cyber Security, Wi-Fi Monetisation, and Agent OS. Due to similarity between anthropic.in and anthropic.com, email misrouting has been consistently observed.

This creates risks including business loss, customer confusion, brand dilution, and potential exposure of confidential or sensitive data.

This policy is established as a proactive compliance and risk mitigation measure in accordance with:

Information Technology Act, 2000 (Sections 43A, 72, 72A, 79)
Information Technology Rules, 2011
Digital Personal Data Protection Act, 2023
Trade Marks Act, 1999 and passing off principles
Applicable international legal principles including U.S. unfair competition laws

This policy serves as documented evidence of due diligence, good faith, and reasonable security practices.

2. Good Faith & Ethical Commitment

Anthropic India (Anthropic Softwares Pvt Ltd) implements this policy strictly in good faith to prevent business disruption, customer confusion, and data risks.

Anthropic India (Anthropic Softwares Pvt Ltd) does not intend to access, analyse, use, retain, or derive any benefit from communications not intended for it.

Due diligence (Section 79 IT Act)
Confidentiality protection (Sections 72 & 72A)
Data minimisation (DPDP Act, 2023)

Minimum Necessary Access:
Only limited access required for identifying and redirecting misrouted emails. No content is used, stored, or exploited.

Any incidental exposure occurs without intent and without negligence.

3. Email Categorisation

Format: [TOWHOME]

ANTHROPIC_INDIA – Intended for anthropic.in
ANTHROPIC_PBC – Intended for anthropic.com

4. Handling of Misrouted Emails

Any email received at the anthropic.in domain that appears to be misrouted shall be forwarded to:

misrouted-legal-archives@anthropic.in

The original sender(s) and recipient(s) shall be retained without alteration to preserve the communication trail.

Upon identification, the email shall be categorized in accordance with the Email Categorisation System defined in this policy. The subject line shall be updated to reflect the categorisation, for example:

“Misrouting Red Alert – ANTHROPIC_PBC – ENQ”

As part of due diligence, a reply-all communication may be initiated including:

Original sender(s) and recipient(s);
Relevant support and sales email addresses of Anthropic PBC (if not already included);
Appropriate leadership or responsible contacts, to the extent reasonably identifiable.

This process is undertaken solely to notify relevant parties, ensure timely correction, and mitigate risks arising from misrouting.

5. Internal Mandatory Procedure (In Case of Misrouting of Emails Intended for Anthropic India)

Immediate Communication:
Where an email is identified as intended for Anthropic India (Anthropic Softwares Pvt Ltd), the concerned team shall take reasonable steps to contact the sender and clarify the correct domain (anthropic.in) to prevent recurrence.
Handling of Sensitive Information:
If the email contains sensitive or confidential information, it shall be immediately isolated and reported to the appropriate internal authority for risk mitigation.
Mandatory Archival:
All misrouted emails shall be forwarded to misrouted-legal-archives@anthropic.in and handled strictly in accordance with this policy.

6. Legal Positioning & Data Responsibility

Email misrouting is a foreseeable risk due to domain similarity.

All stakeholders are deemed to have constructive notice of this risk.

Anthropic India (Anthropic Softwares Pvt Ltd) acts as a Data Fiduciary under the DPDP Act, 2023.

Purpose limitation
Data minimisation
Security safeguards

Controlled Access Principle: Only minimal necessary access is performed.

This supports protection under Section 79 (Safe Harbour) of the IT Act.

7. Reservation of Rights

Anthropic India (Anthropic Softwares Pvt Ltd) reserves all rights relating to:

Brand protection
Prevention of passing off
Business losses arising from misrouting
Trademark enforcement

No delay or omission shall be treated as waiver of rights.

8. Limitation of Responsibility

Anthropic India (Anthropic Softwares Pvt Ltd) is not responsible for misrouting caused by third parties.

Sending emails to multiple domains is at sender’s own risk.

9. Legal Clarification

This policy is a preventive compliance measure and does not constitute admission of liability.

All rights are expressly reserved.

10. Use of Misrouting Records for Legal and Regulatory Purposes

Anthropic India (Anthropic Softwares Pvt Ltd) maintains limited records of misrouted communications strictly for the purposes of compliance, audit, risk mitigation, and legal protection.

Such records may be preserved and, where required, disclosed to:

Courts of law, judicial authorities, or regulatory bodies;
Law enforcement agencies or competent authorities;
Legal advisors for the purpose of obtaining professional advice or enforcing legal rights.

Any such use or disclosure shall be carried out strictly in accordance with applicable laws, including the Information Technology Act, 2000 and the Digital Personal Data Protection Act, 2023, and shall be limited to what is reasonably necessary for the relevant legal or regulatory purpose.

        Anthropic India does not use or disclose misrouted communications for any commercial, competitive, or unrelated purposes. Any reliance on such records is strictly for lawful protection of rights, compliance, and evidentiary requirements.
    

11. Limitation of Liability in Context of Proactive Risk Mitigation

Anthropic India (Anthropic Softwares Pvt Ltd) has proactively identified and addressed the risk of email misrouting arising from domain similarity, recognising that such misrouting may potentially result in serious and irreversible consequences, including exposure of sensitive or confidential information relating to intellectual property, financial data, commercial transactions, or other protected information.

In response, Anthropic India (Anthropic Softwares Pvt Ltd) has implemented documented procedures, technical safeguards, and operational protocols under this policy to prevent, detect, and mitigate such risks in a timely and responsible manner.

Accordingly, Anthropic India (Anthropic Softwares Pvt Ltd) has exercised reasonable security practices, due diligence, and good-faith conduct as required under applicable laws, including the Information Technology Act, 2000 and the Digital Personal Data Protection Act, 2023.

In light of the above, any unintended receipt, limited handling, or incidental exposure to misrouted communications shall be deemed to occur despite the implementation of reasonable safeguards and not as a result of negligence, wilful misconduct, or unlawful intent on the part of Anthropic India (Anthropic Softwares Pvt Ltd).

        To the extent permitted under applicable law, Anthropic India (Anthropic Softwares Pvt Ltd) shall not be held liable for any loss, damage, or consequence arising solely from misrouting of communications caused by third-party actions, domain similarity, or incorrect addressing, where such events occur despite the implementation of this policy and reasonable safeguards.
    

This clause shall be read in conjunction with applicable statutory protections, including safe harbour provisions under Section 79 of the Information Technology Act, 2000.

12. Comprehensive Legal Framework & Statutory Support

This policy is implemented and interpreted in accordance with applicable Indian laws, supported by relevant international legal principles, to ensure lawful handling of misrouted communications, protection of data, and prevention of consumer confusion.

Primary Indian Legal Framework:

Information Technology Act, 2000:
- Section 43A – reasonable security practices and compensation for failure to protect data;
- Sections 72 & 72A – protection of confidentiality and prevention of unauthorised disclosure;
- Section 79 – safe harbour protection where due diligence and good-faith actions are demonstrated.
Information Technology Rules, 2011 – mandating documented security practices and procedures for handling sensitive information.
Digital Personal Data Protection Act, 2023 – including obligations of a Data Fiduciary such as purpose limitation, data minimisation, and implementation of appropriate safeguards.
Trade Marks Act, 1999 – including protection against deceptive similarity, likelihood of confusion, and passing off arising from similar domain names and brand identifiers.
Common Law Principles of Passing Off – protecting goodwill and preventing misrepresentation leading to confusion among customers and stakeholders.

Supporting International Legal Principles (where applicable):

Lanham Act (United States) – relating to trademark infringement, false designation of origin, and likelihood of confusion in cross-border commercial interactions;
General Data Protection Regulation (GDPR – European Union) – specifically principles of data minimisation, purpose limitation, and lawful processing, as internationally recognised standards;
Global Best Practices – including industry-recognised standards for responsible handling of unintended or misdirected communications.

        This policy demonstrates that Anthropic India (Anthropic Softwares Pvt Ltd) has adopted a multi-layered legal compliance approach, combining statutory obligations, judicial principles, and international best practices to ensure responsible handling of misrouted communications and protection against liability.
    

All actions undertaken under this policy shall be interpreted in light of the above legal framework, reinforcing that Anthropic India (Anthropic Softwares Pvt Ltd) acts with due diligence, in good faith, and in compliance with applicable laws.

13. Scope, Applicability & Implementation

This policy shall apply to all email communications received at or processed through the anthropic.in domain, including but not limited to:

sales@anthropic.in
support@anthropic.in
legal@anthropic.in
and any other official email accounts operated under the anthropic.in domain.

This policy shall apply to:

All existing and previously received emails (retrospective application); and
All future incoming and outgoing email communications.

The retrospective application of this policy is implemented solely for the purposes of compliance, audit, risk identification, and mitigation, and to ensure consistent handling of misrouted communications.

This policy is issued under the direction of management of Anthropic India (Anthropic Softwares Pvt Ltd), and all relevant personnel, systems, and processes are required to adhere to and implement this policy with immediate effect.

        All teams and authorised personnel shall ensure that misrouted email handling, classification, archiving, and redirection processes are carried out in accordance with this policy for both historical and future communications.
    

This policy shall be treated as a binding internal compliance framework and shall be followed in conjunction with applicable laws and organisational procedures.

5. Automated Processing & Restricted Access

To ensure data integrity and compliance with the DPDP Act 2023, Anthropic India manages misrouted communications through a strict technical protocol:

Automated Handling: Incoming communications to sales@, support@, and legal@anthropic.in identified as misdirected are processed exclusively by an automated system.
Restricted Access Policy: While technical access to the misrouted-legal-archives@anthropic.in mailbox exists for system administration, Anthropic India enforces a strict No-Read Policy prohibiting the manual review of email content by any employee or director. Any unauthorized access is subject to strict disciplinary action.
Purpose-Bound Archiving: Access is limited strictly to the Data Protection Officer (DPO) or legal counsel only when required for court-mandated evidence of trademark confusion.

6. Content Deletion & Data Disposal (90-Day Retention)

In accordance with the Data Minimisation principle of the DPDP Act, 2023:

90-Day Verification Cycle: Substantive content, including email bodies and attachments, is retained for a maximum of 30 calendar days from the date of receipt. This window is essential for monthly technical audits and to ensure the integrity of our automated misrouting detection systems.
Automated Permanent Purge: Following the 90-Day cycle, all substantive content is automatically and permanently purged. Anthropic India maintains no long-term storage of third-party private communications.
Litigation Metadata Hold: Non-sensitive metadata (Sender, Timestamp, and Subject Line) is extracted and retained in a secure legal archive. This data serves as objective evidence of market confusion for the duration of the ongoing trademark litigation.
Confidentiality Safeguard: During the 90-Day window, access is restricted to the Data Protection Officer (DPO) and substantive content is strictly excluded from any analytical, commercial, or AI-training processes.

Disclaimer: Anthropic India (Anthropic Softwares Pvt Ltd) is an independent entity and is not affiliated with or related to Anthropic PBC or anthropic.com. This policy is published solely to address operational email misrouting and ensure proper communication handling.