Is Hugging Face safe with your data?
Hugging Face
Weak disclosure · high confidence
Hugging Face earns a D (43/100) because it leaves much about its data practices unstated.
#137
of 211 apps ranked
43
score · Productivity avg 56
-13
vs category average
Hugging Face policy provides explicit deletion timelines and access mechanisms, named sub-processors, and no-sell commitments, but lacks transparency on input training, retention specifics, and named security controls.
What Hugging Face's privacy policy and terms of service say about your data
Deletion timeline
we will use commercially reasonable efforts to delete your information and Content of your own Repositories, whether public or private, within 90 days
No-sell clause
The Company will not sell, rent or lease your Personal Information
Sub-processor list
Discourse | Forum | United States; AWS SES | Emails | United States; Amazon Web Services, Inc. | Hosting/Infrastructure | United States; [plus 8 more listed]
Security vagueness
The Company follows generally accepted industry standards, including the use of appropriate administrative, physical and technical safeguards
What the policy is silent or vague on
- Not stated: keeping user inputs out of model training
- Not stated: a way to opt out of training
- Not stated: whether training use differs by plan
- Not stated: data portability
Hugging Face privacy rating
Details
- Category
- Productivity
- Modalities
- text
- Processes biometrics
- No
- Policy last updated
- 2023-03-28
- Region scored
- Global / US-default
- Last assessed
- 2026-07-08
Documents examined
Other productivity apps
Each grade reflects our analysis of what an app states in its public privacy policy and terms as of the assessment date. It measures the transparency of those documents, not the company's actual data practices, security, or compliance. Grades are our opinion, offered for general information. Full disclaimer.