All apps

Is Pigment safe with your data?

D
Pigment icon

Pigment

Pigment SAS

46/100

Weak disclosure · medium confidence

Pigment earns a D (46/100) because it leaves much about its data practices unstated.

#120

of 211 apps ranked

46

score · Finance avg 37

+9

vs category average

Grade scaleA · 70–100B · 60–69C · 48–59D · 35–47F · 0–34

Pigment's privacy policy discloses data inputs used for model training with no named opt-out, grants users standard GDPR rights, retains data for mixed periods (3 years or contract duration), shares with named service provider categories under standard contractual clauses, enumerates data categories and legal bases in a table, and implements named security controls including ISO 27001 with a named DPO contact.

What Pigment's privacy policy and terms of service say about your data

Model Training , No Opt-Out

Policy states data used 'to provide, develop and improve our Pigment AI Features' and 'training our models' with no explicit opt-out mechanism disclosed in the privacy policy itself.

Full GDPR Rights Enumerated

Access, erasure, rectification, portability, and objection rights are all explicitly listed in the 'Your rights?' section without procedural complexity.

Named ISO 27001 + DPO

Security section cites ISO 27001 and SOC 1 & SOC 2 Type 2 certifications; Data Protection Officer contact explicitly provided at dpo@pigment.com.

Purposes-to-Legal-Bases Table

Policy includes explicit table mapping data purposes (marketing, service improvement, billing) to legal bases and retention periods, supporting full transparency on D5.4.

What the policy is silent or vague on

  • Not stated: a way to opt out of training
  • Not stated: whether training use differs by plan
  • Not stated: a deletion timeline after closure or request
  • Not stated: shorter retention for AI conversation logs

Pigment privacy rating

Training-data use0 of 4 disclosed
Keeps user inputs out of model training, or makes training opt-inPartial
Names a way to opt out of or into trainingSilent
Says whether training use differs by plan or tierSilent
Lets the user keep ownership of generated outputsPartial
Data-subject rights5 of 5 disclosed
Grants a right to access your dataDisclosed
Grants a right to delete your dataDisclosed
Offers data portability in a usable formatDisclosed
Grants a right to correct your dataDisclosed
Grants a way to object to or opt out of processingDisclosed
Retention and deletion1 of 4 disclosed
States a retention period for your dataDisclosed
States a deletion timeline after closure or requestSilent
Sets a shorter retention for AI conversation logsSilent
Commits to collecting only the data it needsSilent
Third-party sharing0 of 5 disclosed
Lists the categories of third parties it shares withPartial
References a sub-processor list or data processing agreementSilent
Does not sell or share data for advertising, or offers opt-outSilent
Names a safeguard for international data transfersPartial
States a standard for government and law-enforcement accessSilent
Transparency2 of 4 disclosed
Discloses that you are interacting with AISilent
Marks AI-generated or synthetic outputNot applicable
Enumerates the categories of data it collectsDisclosed
Maps processing purposes to legal basesDisclosed
Is versioned and dated, with change noticePartial
Sensitive data and children0 of 3 disclosed
Discloses automated decisions and a human-review pathSilent
Limits the use of special-category dataSilent
Governs biometric data specificallyNot applicable
States protections for children's dataSilent
Security and accountability1 of 3 disclosed
Describes its security safeguardsPartial
Commits to breach notificationSilent
Names a certification or a privacy contactDisclosed
DisclosedPartialSilentAdverseNot applicable

Details

Category
Finance
Modalities
text
Processes biometrics
No
Policy last updated
2026-06-01
Region scored
Global / US-default
Last assessed
2026-07-08

Documents examined

Each grade reflects our analysis of what an app states in its public privacy policy and terms as of the assessment date. It measures the transparency of those documents, not the company's actual data practices, security, or compliance. Grades are our opinion, offered for general information. Full disclaimer.

Is Pigment safe with your data? Grade D | AI App Trust & Transparency Index