LastPass is a password manager, reviewed for zero-knowledge vault claims, privacy rights, sharing, tracking, retention, and account controls.
80
Good
80
Good
LastPass pairs heavy tracking with clearer limits on model training.
LastPass is strongest where it sets guardrails around AI training, with better limits on how prompts, uploads, or workspace data feed models.
LastPass is weakest on ads and tracking because cookie-based tracking remains part of the product or marketing site.
90
Excellent
LastPass says vault data is encrypted using a zero-knowledge security model.
The reviewed privacy notice does not provide a dedicated AI-training control for all account/support data.
80
Good
65
Mixed
75
Good
90
Excellent
Lastpass Privacy Page
Open: lastpass.com1. Encryption
LastPass says vault data is encrypted using a zero-knowledge security model.
2. AI Use
The reviewed privacy notice does not provide a dedicated AI-training control for all account/support data.
Founded
Unknown
Founder
Unknown
Parent Company
LastPass
Lifecycle
Active
Category
Security & Privacy
CEO
Unknown
Security Team
In house
Date Added
04-22-2026
Once you delete a chat, you cannot recover it. Deleting a chat removes it both from your visible chat history and the system after the retention window.
80
Good
LastPass states it strives to limit collected personal data to what is necessary.
Service, support, marketing, and cookie data may be shared with processors and partners.
65
Mixed
Third-party cookies may be considered sale/sharing under some U.S. state privacy laws.
Privacy rights and choices are documented through LastPass privacy channels.
75
Good
Users can submit access, deletion, and other privacy rights requests through LastPass channels.
Retention varies based on legal, security, service, and fraud-prevention needs.
90
Excellent
Users can export vault data and exercise privacy rights through the rights portal.
Enterprise and managed accounts may be governed by administrator policies.
