Terms governing developers building and distributing integrations using Notion APIs
Overall Score
Risk by Category
Notion's Developer Terms of Service is a legal agreement that outlines the rights, responsibilities, and restrictions for developers creating applications (Apps) that integrate with Notion's services via APIs. It covers acceptance of terms, allowed and disallowed uses, ownership and licensing of content, use of Notion's brand features, provision of feedback, termination rights, disclaimers of warranties, limitations of liability, indemnity obligations, dispute resolution, and general provisions. The policy emphasizes user control over integrations via OAuth, prohibits certain activities like data scraping or commercial exploitation of user content, and grants Notion a broad license to promote developer Apps. It references Notion's Privacy Policy for data handling details. Overall, it promotes a controlled ecosystem for integrations while protecting Notion's platform and user data.
Notion can suspend or terminate API access at any time without notice for any reason.
Prohibits reverse engineering, excessive API calls, illegal activities, or using Notion for spam/malware.
Upon termination, all access to user content ends, and data may be deleted.
Users explicitly grant scoped access to their Notion content via standard OAuth flows.
Notion promotes compliant Apps in their public template/integration gallery.
Developers can provide feedback, and Notion grants back a license for use.
Spotify collects the following categories of personal data. High Risk categories are used for advertising profiling or involve sensitive personal information.
Notion collects App metadata, API call logs, and error reports for monitoring and compliance.
Only data explicitly authorized by users via OAuth is accessible by developer Apps.
Your data serves the following purposes. Mandatory purposes cannot be disabled without canceling the service. Opt-out available purposes allow some user control.
Notion may collect usage data from developer Apps to improve services and enforce limits.
Developers access only content users explicitly share via OAuth scopes.
Spotify shares data with several categories of third parties. Sharing with advertising partners is extensive and represents the primary commercial use of your behavioral data.
Developers may use subprocessors but must ensure they comply with Notion terms and user privacy.
Prohibited to sell, rent, or share Notion user content with third parties without explicit permission.
The following rights may be available to you depending on your region. EU/EEA users have the broadest protections under GDPR. Non-EU users have more limited guarantees.
Users can revoke App access anytime through Notion settings, immediately stopping data access.
Integrations request granular permissions (e.g., read/write specific pages), not full account access.
Data is retained for different periods depending on category, and security disclosures vary in depth. The policy highlights the following retention and transparency points.
Retention Periods
Access to data ends upon integration revocation or termination; no specific retention stated.
API usage and violation logs retained as needed for legal/compliance purposes, duration unspecified.
Security & Transparency
Developers must use HTTPS, secure auth tokens, and comply with OAuth best practices.
API calls are rate-limited to prevent abuse; excessive use leads to throttling.
Source Text
You may not: reverse engineer APIs, make unauthorized copies, use for illegal purposes, or exceed rate limits.
Interpretation
Strict prohibitions protect platform integrity but limit flexibility for advanced uses.
Source Text
Users retain ownership; you get limited license via OAuth; Notion gets broad rights to your App for directory.
Interpretation
Balances user control with Notion's promotion needs; risky if App relies on exclusive content.
Source Text
Notion may terminate access immediately for violations or any reason; no liability.
Interpretation
High risk for dependency; developers should have fallback plans.
Source Text
Liability capped; no consequential damages even for gross negligence.
Interpretation
Standard but developer-unfriendly; limits recourse for outages or bans.
Yes, as long as you don't charge for access to Notion content itself or violate disallowed uses.