All apps

Is Incode safe with your data?

C
Incode icon

Incode

55/100

Partial disclosure · medium confidence

Incode earns a C (55/100) because it discloses its data practices only in part.

Dealbreaker flag

  • D1.4: royalty-free, perpetual, sublicensable, irrevocable, and worldwide (line 533)

#73

of 211 apps ranked

55

score · Security & compliance avg 50

+5

vs category average

Grade scaleA · 70–100B · 60–69C · 48–59D · 35–47F · 0–34

Incode trains biometric data on ML models with no opt-out and sells personal data with only cookie-based opt-out; retains data indefinitely per contract, but provides comprehensive GDPR-aligned user rights (access, delete, object), SOC 2 certification, and explicit AI transparency disclosures.

What Incode's privacy policy and terms of service say about your data

Training adverse

to train the AI/ML models we use in operating and improving our Services (line 95-96, biometric with no opt-out)

Content sublicensable

royalty-free, perpetual, sublicensable, irrevocable, and worldwide (line 533)

GDPR rights full

Access, Deletion, Portability, Correction, Objection rights disclosed (lines 215-299)

Sales with opt-out

We sell and share personal data...You may opt out via Cookie preference center (lines 224-229)

What the policy is silent or vague on

  • Not stated: keeping user inputs out of model training
  • Not stated: a way to opt out of training
  • Not stated: whether training use differs by plan
  • Not stated: your ownership of generated outputs

Incode privacy rating

Training-data use0 of 4 disclosed
Keeps user inputs out of model training, or makes training opt-inAdverse
Names a way to opt out of or into trainingSilent
Says whether training use differs by plan or tierSilent
Lets the user keep ownership of generated outputsAdverse
Data-subject rights5 of 5 disclosed
Grants a right to access your dataDisclosed
Grants a right to delete your dataDisclosed
Offers data portability in a usable formatDisclosed
Grants a right to correct your dataDisclosed
Grants a way to object to or opt out of processingDisclosed
Retention and deletion0 of 4 disclosed
States a retention period for your dataPartial
States a deletion timeline after closure or requestPartial
Sets a shorter retention for AI conversation logsSilent
Commits to collecting only the data it needsSilent
Third-party sharing2 of 5 disclosed
Lists the categories of third parties it shares withDisclosed
References a sub-processor list or data processing agreementPartial
Does not sell or share data for advertising, or offers opt-outPartial
Names a safeguard for international data transfersDisclosed
States a standard for government and law-enforcement accessPartial
Transparency4 of 5 disclosed
Discloses that you are interacting with AIDisclosed
Marks AI-generated or synthetic outputSilent
Enumerates the categories of data it collectsDisclosed
Maps processing purposes to legal basesDisclosed
Is versioned and dated, with change noticeDisclosed
Sensitive data and children1 of 4 disclosed
Discloses automated decisions and a human-review pathSilent
Limits the use of special-category dataPartial
Governs biometric data specificallyDisclosed
States protections for children's dataPartial
Security and accountability2 of 3 disclosed
Describes its security safeguardsDisclosed
Commits to breach notificationSilent
Names a certification or a privacy contactDisclosed
DisclosedPartialSilentAdverseNot applicable

Details

Category
Security & compliance
Modalities
text, image
Processes biometrics
Yes
Policy last updated
2026-02-13
Region scored
Global / US-default
Last assessed
2026-07-08

Documents examined

Other security & compliance apps

Each grade reflects our analysis of what an app states in its public privacy policy and terms as of the assessment date. It measures the transparency of those documents, not the company's actual data practices, security, or compliance. Grades are our opinion, offered for general information. Full disclaimer.

Is Incode safe with your data? Grade C | AI App Trust & Transparency Index