Privacy and Personal Data


We comply with international data privacy regulations, including GDPR and CCPA. Learn more about how we handle your personal data.  


We perform due diligence on all vendors that support the delivery of our products and services. A subprocessor is a vendor that DataRobot uses to process personal data on behalf of our customers. You can find a list of our subprocessors here.

Government Requests for Data

When DataRobot receives a request to disclose customer data from a government or law enforcement entity, we will respond in line with our Government Data Request Policy. Additionally, we will provide transparency reports on any requests we have received. DataRobot has not received a request from a governmental entity in the first half of 2021.

International Transfers of Personal Data

DataRobot has assessed all transfers of its customer’s personal data out of the EU and assembled this FAQ to answer common questions about how it is affected by the Schrems II ruling.


We currently do not sign BAAs as we do not allow sensitive personal data in the SaaS platform, but customers interested in modeling ePHI can inquire about our on-prem solution. 

Modeling Personal Data with DataRobot

Personal data can be modeled within the DataRobot product, but we limit certain sensitive personal data from being ingested into SaaS deployments. Learn more about using personal data for AI predictions. 

Would you like to learn more about our security and privacy practices at DataRobot?

Request access to our Trust Package, which contains our security and compliance documentation.