Replit is a cloud development workspace, reviewed for code/workspace data, AI coding workflows, sharing, tracking, retention, and controls.
60
Mixed
60
Mixed
Replit mixes collaborative coding, AI assistance, and public publishing, so privacy depends on workspace visibility and secrets hygiene.
Replit gives users meaningful control through workspace visibility, account settings, and project-level access choices.
Privacy weakens quickly once repls are public, shared widely, or connected to AI features that can see code, logs, and workspace context.
55
Weak
The reviewed policy does not give a simple no-AI-training promise for all code, prompts, or workspace data.
AI coding workflows and service-improvement processing can still involve user code and workspace context.
65
Mixed
45
Weak
60
Mixed
70
Mixed
Replit Privacy Page
Open: replit.com1. AI Use
The reviewed policy does not give a simple no-AI-training promise for all code, prompts, or workspace data.
2. AI Use
AI coding workflows and service-improvement processing can still involve user code and workspace context.
3. Replit Publishes
Replit publishes privacy coverage for its website and related services instead of hiding code-workspace processing entirely.
4. Can Choose
Users can choose repl visibility and secrets-handling behavior to reduce unnecessary workspace exposure.
5. State Privacy
State privacy rights and request paths provide some leverage over how service data is handled.
Founded
Unknown
Founder
Unknown
Parent Company
Replit
Lifecycle
Active
Category
AI Developer Tools
CEO
Unknown
Security Team
In house
Date Added
05-18-2026
Once you delete a chat, you cannot recover it. Deleting a chat removes it both from your visible chat history and the system after the retention window.
Replit publishes privacy coverage for its website and related services instead of hiding code-workspace processing entirely.
Users can choose repl visibility and secrets-handling behavior to reduce unnecessary workspace exposure.
State privacy rights and request paths provide some leverage over how service data is handled.
65
Mixed
Code and workspace data can still be exposed through public repls, collaborators, AI features, integrations, and service providers.
Third-party payment processors and linked-service connections add more recipients beyond the basic coding workspace.
Replit says it does not sell personal information under several state-law definitions.
The privacy policy documents access, deletion, anonymization, objection, and portability rights.
Users control whether repls are public or private and who collaborates on them.
45
Weak
Replit still collects device, software, IP, identifier, and service-interaction information.
The policy allows marketing, advertising, and personalization processing around the service and website.
The policy distinguishes strictly necessary cookies from broader tracking and marketing uses.
Users have privacy-rights channels that can reduce some ongoing data use.
Replit is a developer tool, not a consumer social feed built around behavioral advertising.
60
Mixed
Retention varies by account state, service needs, logs, legal obligations, and public content.
Public repls, backups, and collaborative workflows can preserve content outside one deletion request.
Users can request access, correction, anonymization, deletion, and portability of data maintained about them.
Several state-specific access and deletion request paths are documented explicitly.
Users can also improve retention outcomes by making repls private and minimizing shared secrets or public content.
70
Mixed
Public repls, leaked secrets, and AI coding workflows require active hygiene from the user or admin.
Controls do not remove every data-use path once code has already been shared, indexed, or connected to outside services.
Users can control repl visibility, collaborators, secrets, and core account settings.
The policy documents request channels for access, correction, portability, and deletion.
Third-party connections are optional rather than mandatory for every workspace.
80
Good
