All apps

Is Hebbia safe with your data?

B
Hebbia icon

Hebbia

Hebbia AI Inc.

60/100

Good disclosure · high confidence

Hebbia earns a B (60/100) because it discloses most of its data practices.

#50

of 211 apps ranked

60

score · Finance avg 36

+24

vs category average

Grade scaleA · 70–100B · 60–69C · 48–59D · 35–47F · 0–34

Hebbia does not train on customer inputs, permits opt-out for ad-sharing, grants GDPR-style deletion/access/correction/object rights, discloses subprocessor list and standard contractual clauses for transfers, and discloses AI interaction and data categories, but lacks named security controls, breach notification timeline, or government-request response standards.

What Hebbia's privacy policy and terms of service say about your data

No customer-data training

We do not use Personal Data contained in Customer Data to train or improve generalized or third-party artificial intelligence or machine learning models. To the extent we use Personal Data to improve our Services, such use is limited to internal purposes such as debugging, performance monitoring, and developing features.

Data deletion + portability

You may request that Hebbia erase that data or cease processing it. When technically feasible, Hebbia will, at your request, provide your personal data to you.

Standard contractual clauses + UK IDTA

Hebbia provides appropriate safeguards by entering into the European Commission's standard contractual clauses (2021). For transfers of personal data from the United Kingdom, Hebbia relies on the UK International Data Transfer Addendum.

Appointed Data Protection Officer

We have appointed a Data Protection Officer (DPO) to oversee our data protection compliance. If you have any questions about this notice or how we handle your personal data, including requests to exercise your rights, please contact our DPO at: Email: privacy@hebbia.ai

What the policy is silent or vague on

  • Not stated: whether training use differs by plan
  • Not stated: your ownership of generated outputs
  • Not stated: a deletion timeline after closure or request
  • Not stated: shorter retention for AI conversation logs

Hebbia privacy rating

Training-data use2 of 4 disclosed
Keeps user inputs out of model training, or makes training opt-inDisclosed
Names a way to opt out of or into trainingDisclosed
Says whether training use differs by plan or tierSilent
Lets the user keep ownership of generated outputsSilent
Data-subject rights4 of 5 disclosed
Grants a right to access your dataDisclosed
Grants a right to delete your dataDisclosed
Offers data portability in a usable formatPartial
Grants a right to correct your dataDisclosed
Grants a way to object to or opt out of processingDisclosed
Retention and deletion0 of 4 disclosed
States a retention period for your dataPartial
States a deletion timeline after closure or requestSilent
Sets a shorter retention for AI conversation logsSilent
Commits to collecting only the data it needsSilent
Third-party sharing3 of 5 disclosed
Lists the categories of third parties it shares withPartial
References a sub-processor list or data processing agreementDisclosed
Does not sell or share data for advertising, or offers opt-outDisclosed
Names a safeguard for international data transfersDisclosed
States a standard for government and law-enforcement accessSilent
Transparency3 of 4 disclosed
Discloses that you are interacting with AIDisclosed
Marks AI-generated or synthetic outputNot applicable
Enumerates the categories of data it collectsDisclosed
Maps processing purposes to legal basesDisclosed
Is versioned and dated, with change noticePartial
Sensitive data and children1 of 3 disclosed
Discloses automated decisions and a human-review pathPartial
Limits the use of special-category dataSilent
Governs biometric data specificallyNot applicable
States protections for children's dataDisclosed
Security and accountability1 of 3 disclosed
Describes its security safeguardsPartial
Commits to breach notificationSilent
Names a certification or a privacy contactDisclosed
DisclosedPartialSilentAdverseNot applicable

Details

Category
Finance
Modalities
text
Processes biometrics
No
Policy last updated
2026-05-08
Region scored
Global / US-default
Last assessed
2026-07-08

Documents examined

Each grade reflects our analysis of what an app states in its public privacy policy and terms as of the assessment date. It measures the transparency of those documents, not the company's actual data practices, security, or compliance. Grades are our opinion, offered for general information. Full disclaimer.

Is Hebbia safe with your data? Grade B | AI App Trust & Transparency Index