Skip to content

Notion

The host behind a shared Notion page. Notion holds the page and everything on it — text, tables, files you upload — plus the usual account details (your name, email, billing, usage). For sharing a page this is usually fine, and on one question that trips up other hosts here Notion is unusually clean: it doesn't train AI on what you put in, on any plan, by default — and there's no toggle to police, because it just doesn't happen.

Last verified: 2026-06-07 · Confidence: high on the no-training stance, the retention/deletion windows, and the US-default / EU-Enterprise residency split (all from Notion's own Help Center); the "not an ad business" framing and the survives-deletion line are reasoned, not quoted.

Does it train AI on what you put in?

This is the standout: no, by default, on every plan — and Notion contractually binds the AI companies it uses to the same. [confirmed]

  • No training, stated plainly. "By default, Notion and its AI Subprocessors do not use Customer Data to train any models. We specifically have contractual agreements in place with our AI Subprocessors that prohibit the use of Customer Data to train their models." [confirmed]
  • The AI companies behind it are Anthropic and OpenAI (plus models Notion runs itself) — Notion's terms cover them, so your page contents aren't feeding their training either. [confirmed]
  • The prompt is held only briefly, then dropped. For non-Enterprise plans the AI providers "only retain Customer Data for 30 days or fewer before deletion"; on Enterprise they use zero data retention, so "no data is stored with LLM providers." [confirmed]

There's no "stop training" setting — because there's nothing to switch off. The Notion AI panel (Settings → Notion AI, any plan) controls features — web search, connectors, personalization — not a training opt-out. And in practice most free users barely touch the AI anyway: full Notion AI is a Business/Enterprise feature, and "Users on the Free and Plus Plans get a limited number of complimentary AI responses" to try it. [confirmed]

Keeping and deleting your data

  • Your content is yours. "You own your Customer Data, including any content you submit or upload to the Notion Service." [confirmed]
  • Delete a page → 30 days in the trash, then gone. The default trash window is 30 days; once a page passes it, "workspace owners will also be unable to access or restore it." [confirmed]
  • Delete your account → 30-day grace, then permanent. Notion keeps backups that let it "restore a snapshot of your content in the past 30 days if you need it"; after that "the action is permanent" — export anything you want to keep first. [confirmed]
  • A copy someone already made stays theirs. If a recipient duplicated your public page into their own workspace, deleting your original never reaches their copy. [estimate]

What a paid / Team / Enterprise tier changes

For an individual sharing a page, the free tier is genuinely fine — Notion is a subscription product, not an ad business, so it has no reason to mine your page. [estimate] The paid tiers earn the paperwork a compliance review asks for:

  • A signed data agreement (DPA). Notion's DPA processes your personal data "on Customer's behalf" (the processor role) and "incorporates both the EU and UK Standard Contractual Clauses" for transfers out of the EEA/UK. [confirmed]
  • Tunable retention, Enterprise-only. Enterprise workspace owners can set the trash-retention window anywhere "between one day and 10 years," rather than the fixed 30-day default. [confirmed]
  • Zero data retention on AI (Enterprise) and the EU data region (below). [confirmed]

Where your data lives (matters under GDPR)

  • US by default. "By default, your data will continue to reside in the United States." Under GDPR that's a US transfer — covered on paper by the SCCs above, and usually fine, but name it if a grant or DPA restricts where data may sit. [confirmed]
  • An EU region exists, but it's Enterprise-only. Data can be pinned to Frankfurt (with an Ireland backup), set in the Organization Console → Data & Compliance → Data Residency; migrating existing data needs a sales-assisted Enterprise plan and your account team. [confirmed]
  • No UK-specific region as of 2026-06 — the choices are US, EU (Frankfurt/Ireland), or Asia-Pacific. The EU region is the closest GDPR-aligned option. [confirmed]

The short version: fine for sharing a page or an internal wiki, even with EU/UK readers, in the everyday case. If a funder or DPA forbids personal data leaving the EU/UK, that's an Enterprise conversation — there's no EU pinning on the free or Plus tiers, and no UK region at all.

Sources

  • Notion AI security & privacy practices — no training on Customer Data, AI subprocessors (Anthropic/OpenAI), zero-retention for Enterprise vs ≤30 days for non-Enterprise.
  • Notion AI FAQs — AI gated to Business/Enterprise (Free/Plus get trial responses), Settings → Notion AI panel, feedback not used for training.
  • Privacy practices — "You own your Customer Data," Customer Data vs Account Information.
  • Custom data retention settings — 30-day default trash window, Enterprise 1-day–10-year custom range, purge is non-restorable.
  • Delete your account — 30-day backup/restore window, then permanent; export first.
  • Data residency for Notion — US default, EU (Frankfurt/Ireland) and APAC regions, Enterprise-only migration, Organization Console path.
  • GDPR at Notion — DPA incorporated, processes data on Customer's behalf, EU/UK SCCs, Schrems II safeguards.