Is Grok safe with your data?
Grok
xAI
Weak disclosure · high confidence
Grok earns a D (43/100) because it leaves much about its data practices unstated.
Dealbreaker flag
- D1.4: irrevocable, perpetual, transferable, sublicensable, royalty-free, and worldwide right to xAI to use, copy, store, modify, distribute, reproduce, publish, display in public forums, list information regarding, make derivative works of
#136
of 211 apps ranked
43
score · Assistant avg 49
-6
vs category average
Grok offers opt-out from training and 30-day deletion for Private Chat, but grants xAI broad perpetual sublicensable rights to outputs and uses indefinite default retention for non-opted data.
What Grok's privacy policy and terms of service say about your data
D1.2 downgrade: no named mechanism
The policy states users can "select" whether to consent to training but provides no details on HOW or WHERE to opt-out. The snapshot does not quote specific UI, settings location, or process. Downgraded from half to zero (SILENT).
D3.1 retention ladder downgrade: indefinite default
General retention policy is vague: "We retain your personal information where we have an ongoing legitimate business need to do so." No time limit specified. The 30-day deletion only applies to Private Chat or after explicit deletion request. Default retention is indefinite. Ladder downgraded from 0.5 to 0.2.
D4.3 downgrade: no opt-out for ad targeting
Policy states cookies are used to "deliver relevant content and targeted advertising" but does NOT disclose an opt-out mechanism. Downgraded from half to zero (sells/shares for ads with no stated opt-out = silent).
D1.4 & D4.3 adverse findings confirmed
D1.4 correctly flags perpetual, sublicensable licence as adverse. D4.3 silent on ad-targeting opt-out, hence zero.
What the policy is silent or vague on
- Not stated: a way to opt out of training
- Not stated: whether training use differs by plan
- Not stated: your ownership of generated outputs
- Not stated: data portability
Grok privacy rating
Details
- Category
- Assistant
- Modalities
- text, image
- Processes biometrics
- No
- Policy last updated
- 2026-04-04
- Region scored
- Global / US-default
- Last assessed
- 2026-07-08
Documents examined
Other assistant apps
Each grade reflects our analysis of what an app states in its public privacy policy and terms as of the assessment date. It measures the transparency of those documents, not the company's actual data practices, security, or compliance. Grades are our opinion, offered for general information. Full disclaimer.