URL AnalyzerSoonAll Tools

Amplitude privacy review | PrivacyDrift

Amplitude

Analytics & TrackingLast updated: 2026-05-18

Amplitude is a product analytics platform, reviewed for event and profile data, sharing, tracking, retention, and customer controls.

Score Latest Finding Score Breakdown Source & Evidence Company Alternatives

Mixed

Weak

Mixed

Good

Overall Score

Mixed

AI Training:60

Mixed

Data Sharing:65

Mixed

Ads & Tracking:40

Weak

Data Retention:70

Mixed

User Control:80

Good

Overall Score

Mixed

AI Training:60

Mixed

Data Sharing:65

Mixed

Ads & Tracking:40

Weak

Data Retention:70

Mixed

User Control:80

Good

Latest Policy Findings: 2026-05-18

Amplitude gives teams strong controls, but identity resolution and event tracking still make it a high-surveillance analytics tool.

Strongest: User Control

80/100

Amplitude is strongest where admins can manage data rights, retention, exports, and access controls through one mature analytics surface.

Weakest: Ads & Tracking

40/100

Its weakest area is the product's core tracking model, where user journeys, events, and stitched identities can build very detailed profiles.

Recommended Action:

Keep event design lean instead of sending every possible user property into Amplitude.
Review identity resolution, retention, and integrations before launch or major changes.
Make sure deletion workflows remove users from downstream tools fed by Amplitude.

Score Breakdown:

AI Training

Mixed

The reviewed notice does not provide a clear no-AI-training promise for all behavioral event data.

-20Source [1]

Amplitude uses collected information to improve and create new products and features.

-20Source [2]

Amplitude publishes privacy notice coverage for personal data and product analytics services.

Data Sharing

Mixed

Ads & Tracking

Weak

Data Retention

Mixed

User Control

Good

Source & Evidence Links:

Sources:

Amplitude Privacy Page

Open: amplitude.com

Evidence:

1. AI Use

The reviewed notice does not provide a clear no-AI-training promise for all behavioral event data.

Open: amplitude.com

2. Amplitude Uses

Amplitude uses collected information to improve and create new products and features.

Open: amplitude.com

3. Tracking

Amplitude publishes privacy notice coverage for personal data and product analytics services.

Open: amplitude.com

4. Amplitude Distinguishes

Amplitude distinguishes customer end-user data submitted by customers to the product from some of Amplitude's own website and marketing data.

Open: amplitude.com

5. Customers Still

Customers still decide what events, identifiers, and properties they instrument.

Open: amplitude.com

Company Details:

Founded

Unknown

Founder

Unknown

Parent Company

Amplitude

Lifecycle

Active

Alternatives:

Once you delete a chat, you cannot recover it. Deleting a chat removes it both from your visible chat history and the system after the retention window.

Plausible

Analytics

Excellent

Matomo

Analytics

Excellent

PostHog

Analytics

Good

Hotjar

Analytics

Good

+20Source [3]

Amplitude distinguishes customer end-user data submitted by customers to the product from some of Amplitude's own website and marketing data.

+20Source [4]

Customers still decide what events, identifiers, and properties they instrument.

+20Source [5]

Mixed

Event and profile data can still flow through integrations, service providers, customer users, advertisers, and legal recipients.

-20Source [6]

Marketing and advertising partners add extra data-sharing paths outside core product analytics.

-15Source [7]

Amplitude documents privacy rights, processing purposes, and sharing categories.

+20Source [8]

Customer end-user data is treated separately from many of Amplitude's direct website and marketing interactions.

+15Source [9]

Customers can control what integrations and exported event flows are enabled.

+15Source [10]

Some payment and login integrations are clearly named rather than hidden.

+15Source [11]

Weak

Amplitude is designed to collect product usage, event, and profile analytics.

-35Source [12]

Amplitude uses cookies, web beacons, targeted-advertising cookies, and product interaction tracking.

-25Source [13]

Customers can govern what events and identifiers they send into Amplitude.

+15Source [14]

Account and product settings can limit some stored behavioral detail.

+15Source [15]

The privacy notice at least distinguishes targeted-advertising cookie use from other collection purposes.

+10Source [16]

Mixed

Retention still depends on customer configuration, contracts, exports, backups, and legal obligations.

-15Source [17]

Analytics exports and partner tools can preserve copies outside the main Amplitude workspace lifecycle.

-15Source [18]

Privacy rights and deletion request paths are documented.

+20Source [19]

Customers can manage retention and deletion workflows through the product and privacy processes.

+20Source [20]

Customer-controlled instrumentation means teams can reduce what ends up retained in the first place.

+15Source [21]

Amplitude says it will not use collected data for materially different purposes without notice and opportunity to opt out.

+15Source [22]

Good

Admins can manage access, projects, event data, integrations, and deletion workflows.

+25Source [23]

Customers control instrumentation and can avoid sending especially sensitive data.

+20Source [24]

Privacy rights are documented with request paths for several data-use contexts.

+20Source [25]

Integration and export choices are customer-governed instead of universally forced.

+15Source [26]

End-user privacy still depends on the customer's instrumentation and consent practices.

-10Source [27]

Targeted-advertising and website tracking controls are weaker than project-admin controls inside the product.

-10Source [28]