This is a print-friendly report. Click Print and choose “Save as PDF” in the destination dropdown to download.
SaaSGuard Risk Report
Notion
notion.so
Generated May 4, 2026
Grade A
Score: 91 / 100
Executive summary
We analyzed Notion’s Terms of Service across 8 risk dimensions and found 0 flagged clauses across 0 categories. 1 material change detected in the recent crawl history.
Recent material changes
9/2/2024 · severity 4
Notion added OpenAI and Anthropic as sub-processors and quietly removed the EU-only residency guarantee for workspaces using AI features. EU customer data now routes to US-based AI providers regardless of the workspace's stated region.
EU companies on Notion paying for the AI add-on (or using free AI features) — their data is now flowing to US sub-processors, putting GDPR Schrems II compliance at risk.
Flagged clauses by category
No flagged clauses found. This vendor scores cleanly on every risk dimension.
Methodology
SaaSGuard uses an automated pipeline: a daily Playwright crawler captures each vendor’s public Terms of Service, Privacy Policy, and DPA. Google’s Gemini 2.5 Flash classifies each clause into one of 8 risk categories with a severity score (1–5). Clauses are cross-referenced against a curated database of real lawsuits and FTC actions via embedding-based similarity matching. Grades are computed from per-category max severity; full source code is available on request.