All apps

Is Corti safe with your data?

B
Corti icon

Corti

Corti ApS

62/100

Good disclosure · medium confidence

Corti earns a B (62/100) because it discloses most of its data practices.

Dealbreaker flag

  • D1.4: with the right to grant sublicenses, to reproduce, execute, use, store, archive, modify, perform, display and distribute Your Data

#38

of 211 apps ranked

62

score · Healthcare avg 37

+25

vs category average

Grade scaleA · 70–100B · 60–69C · 48–59D · 35–47F · 0–34

Corti's privacy policy discloses retention timelines, data subject rights, and named security certifications, but lacks explicit training-data optionality and contains ambiguous security boilerplate on several indicators.

What Corti's privacy policy and terms of service say about your data

D1.4 DOWNGRADED: Adverse license grant

The quote "with the right to grant sublicenses, to reproduce, execute, use, store, archive, modify, perform, display and distribute Your Data" explicitly grants Corti a sublicensable, perpetual licence over user data. This is a reserved-harm clause meeting the adverse criterion. Award downgraded from half to zero.

D4.1 DOWNGRADED: Vague recipient categories

The quote "These third parties may include service providers such as IT support, cloud storage and data analytics" is illustrative boilerplate listing only examples. No named processor list, DPA references, or defined scope. This is half, not full.

D4.3 UPGRADED: Explicit no-sale disclosure

The policy explicitly states "we do not currently sell your personal information as sales are defined in Nevada Revised Statutes Chapter 603A." This is a named, concrete disavowal of a harmful practice, meeting full criteria. Upgraded from zero (silent) to full.

D6.2 UPGRADED: Named special categories with explicit consent requirement

The policy explicitly requires opt-in consent for sensitive data and enumerates categories: "health conditions, racial or ethnic origin, political opinions, and more." This is named, specific, and mechanism-explicit. Upgraded from half to full.

What the policy is silent or vague on

  • Not stated: keeping user inputs out of model training
  • Not stated: whether training use differs by plan
  • Not stated: your ownership of generated outputs
  • Not stated: shorter retention for AI conversation logs

Corti privacy rating

Training-data use0 of 4 disclosed
Keeps user inputs out of model training, or makes training opt-inSilent
Names a way to opt out of or into trainingPartial
Says whether training use differs by plan or tierSilent
Lets the user keep ownership of generated outputsAdverse
Data-subject rights4 of 5 disclosed
Grants a right to access your dataDisclosed
Grants a right to delete your dataDisclosed
Offers data portability in a usable formatDisclosed
Grants a right to correct your dataDisclosed
Grants a way to object to or opt out of processingPartial
Retention and deletion2 of 4 disclosed
States a retention period for your dataDisclosed
States a deletion timeline after closure or requestDisclosed
Sets a shorter retention for AI conversation logsSilent
Commits to collecting only the data it needsPartial
Third-party sharing3 of 5 disclosed
Lists the categories of third parties it shares withPartial
References a sub-processor list or data processing agreementDisclosed
Does not sell or share data for advertising, or offers opt-outDisclosed
Names a safeguard for international data transfersDisclosed
States a standard for government and law-enforcement accessPartial
Transparency3 of 5 disclosed
Discloses that you are interacting with AISilent
Marks AI-generated or synthetic outputSilent
Enumerates the categories of data it collectsDisclosed
Maps processing purposes to legal basesDisclosed
Is versioned and dated, with change noticeDisclosed
Sensitive data and children2 of 3 disclosed
Discloses automated decisions and a human-review pathSilent
Limits the use of special-category dataDisclosed
Governs biometric data specificallyNot applicable
States protections for children's dataDisclosed
Security and accountability2 of 3 disclosed
Describes its security safeguardsPartial
Commits to breach notificationDisclosed
Names a certification or a privacy contactDisclosed
DisclosedPartialSilentAdverseNot applicable

Details

Category
Healthcare
Modalities
text, audio
Processes biometrics
No
Policy last updated
2026-06-16
Region scored
Global / US-default
Last assessed
2026-07-08

Documents examined

Each grade reflects our analysis of what an app states in its public privacy policy and terms as of the assessment date. It measures the transparency of those documents, not the company's actual data practices, security, or compliance. Grades are our opinion, offered for general information. Full disclaimer.

Is Corti safe with your data? Grade B | AI App Trust & Transparency Index