All apps

Is Lindy safe with your data?

D
Lindy icon

Lindy

Lindy AI, Inc.

49/100

Weak disclosure · high confidence

Lindy earns a D (49/100) because it leaves much about its data practices unstated.

#148

of 177 apps ranked

49

score · Enterprise copilot avg 61

-12

vs category average

Grade scaleA · 85–100B · 70–84C · 55–69D · 40–54F · 0–39

Lindy publishes a complete boilerplate privacy notice with strong CCPA rights and a named subprocessor list, and it commits not to sell personal information. The notice does not say whether ordinary user inputs train AI models, its retention and security language is vague, and it names no breach-notification timeline, international-transfer safeguard, or certifications. The training gap and weak retention specifics keep the score in the D band.

What Lindy's privacy policy says about your data

No general training disclosure

The notice addresses only Google-API-sourced data, stating it will not use that Google-sourced data to train any artificial intelligence model. It says nothing about whether ordinary user inputs are used to train models, leaving the core training question open.

Does not sell personal data

The sharing section states the company does not sell personal information to third parties, and the CCPA section confirms no personal information was sold in the prior twelve months. Users can opt out of future selling, which the company will honor within fifteen days.

Named subprocessors

The notice lists specific third parties by name, including Digital Ocean, Azure, Google Cloud Platform, HoneyComb, DataDog, Stripe, Sentry, SendGrid, MessageBird and Twilio, grouped by service category, and confirms contracts are in place with them.

Vague retention and security

Retention is described only as as long as necessary, tied to account lifetime, and security is limited to appropriate and reasonable technical and organizational security measures. The notice names no specific controls, breach-notification timeframe, or certifications.

What the policy is silent or vague on

  • Not stated: keeping user inputs out of model training
  • Not stated: a way to opt out of training
  • Not stated: whether training use differs by plan
  • Not stated: your ownership of generated outputs

Lindy privacy rating

Training-data use0 of 4 disclosed
Keeps user inputs out of model training, or makes training opt-inSilent
Names a way to opt out of or into trainingSilent
Says whether training use differs by plan or tierSilent
Lets the user keep ownership of generated outputsSilent
Data-subject rights4 of 5 disclosed
Grants a right to access your dataDisclosed
Grants a right to delete your dataDisclosed
Offers data portability in a usable formatPartial
Grants a right to correct your dataDisclosed
Grants a way to object to or opt out of processingDisclosed
Retention and deletion1 of 3 disclosed
States a retention period for your dataPartial
States a deletion timeline after closure or requestPartial
Sets a shorter retention for AI conversation logsNot applicable
Commits to collecting only the data it needsDisclosed
Third-party sharing3 of 5 disclosed
Lists the categories of third parties it shares withDisclosed
References a sub-processor list or data processing agreementDisclosed
Does not sell or share data for advertising, or offers opt-outDisclosed
Names a safeguard for international data transfersSilent
States a standard for government and law-enforcement accessPartial
Transparency1 of 4 disclosed
Discloses that you are interacting with AISilent
Marks AI-generated or synthetic outputNot applicable
Enumerates the categories of data it collectsDisclosed
Maps processing purposes to legal basesPartial
Is versioned and dated, with change noticePartial
Sensitive data and children1 of 2 disclosed
Discloses automated decisions and a human-review pathNot applicable
Limits the use of special-category dataPartial
Governs biometric data specificallyNot applicable
States protections for children's dataDisclosed
Security and accountability0 of 3 disclosed
Describes its security safeguardsPartial
Commits to breach notificationSilent
Names a certification or a privacy contactSilent
DisclosedPartialSilentAdverseNot applicable

Details

Category
Enterprise copilot
Modalities
text
Processes biometrics
No
Policy last updated
2024-02-13
Region scored
Global / US-default
Assessed
2026-06-20
Read Lindy's privacy policy

Other enterprise copilot apps

Salesforce Einstein iconSalesforce EinsteinBSana iconSanaBGranola iconGranolaBDashworks iconDashworksC

Each grade reflects our analysis of what an app states in its public privacy policy and terms as of the assessment date. It measures the transparency of those documents, not the company's actual data practices, security, or compliance. Grades are our opinion, offered for general information. Full disclaimer.

Is Lindy safe with your data? Grade D | AI App Trust & Transparency Index