Hugging Face

Does not sell personal information

Section 3 states the company will not sell, rent or lease personal information except as provided by the policy. It also honors do-not-track signals and California opt-out requests, so the ad-sale indicator scores full. The separate disclosure of aggregated anonymous information to advertisers does not involve identifiable data, so it does not trigger an adverse reservation.

Named subprocessor list

Section 10 lists every third-party processor with its function and location, including AWS, Stripe, MongoDB Atlas, Google Cloud, OVHCloud and others. This earns full credit for sub-processor disclosure and third-party categories.

Vague retention with no deletion timeline

Retention is described only as for as long as necessary to deliver the Services and pursue legitimate interests, with no day count. Erasure is available on written request, but the policy gives no timeline for honoring it, so retention scores at the low end.

Silent on training and output ownership

The policy describes improving the Services and performing research. It never says whether user content trains AI models, offers no training opt-out, and grants no ownership of outputs. All four D1 indicators score zero as documented silence rather than an adverse reservation, so no perpetual-licence or train-by-default flag is raised.