Glassdoor updated its privacy policy on April 23, 2026 to add specific rights for individuals whose data is transferred under the Data Privacy Framework, a U.S.-EU data transfer agreement. The new language confirms that EU, UK, and Swiss users can request access to their personal data, correct or delete it, and opt out of data sharing with third parties. The policy also clarifies complaint resolution procedures and response timelines for data deletion requests.
The updated policy grants EU, UK, and Swiss residents explicit rights to request access to their personal data held by Glassdoor in the United States, and to correct, amend, or delete that data. Glassdoor commits to responding to deletion requests within a reasonable timeframe and to obtaining explicit consent before sharing sensitive data with third parties or using data for purposes beyond the original collection. You can exercise these rights by following the instructions in the 'Controlling Your Personal Data' section of the policy.
The updated policy codifies individual rights to access, correct, and delete personal data that are required under the EU-U.S. Data Privacy Framework, giving EU, UK, and Swiss users explicit procedural pathways to exercise those rights. It also establishes that sensitive data sharing requires affirmative opt-in consent, strengthening control over how personal information is used and disclosed.
→ Review the 'Controlling Your Personal Data' section of Glassdoor's updated privacy policy to understand how to request access, correction, deletion, or limits on use of your personal data.
→ If you have concerns about your data or wish to exercise these rights, follow the instructions provided in that section or contact Glassdoor directly.
→ Without requesting access, you may not know what personal data Glassdoor holds about you or how it is being used.
→ If you do not opt out of sensitive data sharing, Glassdoor may share or use your sensitive information for purposes beyond its original collection without further notice.
Added explicit rights for EU, UK, and Swiss residents to access, correct, amend, or delete personal data held in the United States.
Glassdoor now requires opt-in consent before sharing sensitive data with third parties or using it for purposes other than original collection.
Glassdoor commits to resolving Data Privacy Framework-related complaints about privacy and data use according to the Principles.
This change record describes what was added, removed, or modified in the document. Analysis reflects what the updated agreement states or permits. It does not constitute a legal determination about enforceability. Applicability may vary by jurisdiction. Methodology
You can now formally ask Glassdoor for a copy of the information they hold about you.
You can ask Glassdoor to fix, update, or remove your personal data.
+ 4 more obligation changes. Full breakdown available with Watcher.
Track changes →Glassdoor added nine sentences to its privacy policy to implement operational procedures required under the EU-U.S. Data Privacy Framework (DPF), which governs the lawful transfer of personal data from the EU to the United States. The additions specify individual rights to access, correct, and delete personal data; commitments to obtain affirmative consent before sensitive data sharing; and dispute resolution mechanisms. Organizations that process Glassdoor user data or rely on Glassdoor as a data processor in their own privacy programs should review their Data Processing Agreements and privacy notices to ensure alignment with these commitments. The changes engage DPF compliance obligations but do not appear to create new downstream vendor obligations beyond standard DPA compliance.
EU-U.S. Data Privacy Framework; UK Extension to the Framework; Swiss-U.S. Data Privacy Framework; GDPR Article 5 (lawfulness, fairness, transparency); GDPR Article 12-22 (individual rights to access, rectification, erasure)
Full compliance analysis
Obligation analysis, escalation trigger, board language, and recommended action.
Watcher: regulatory citations + obligations. Professional: full compliance memo.
ConductAtlas provides verified policy intelligence sourced directly from platform documents. All analysis is intended to support, not replace, legal and compliance review. Record CA-C-001405.
See the full side-by-side comparison of every sentence added, removed, and modified.
🔒 Full diff — WatcherGet alerted when this policy changes again — including what changed and why it matters.
Prefer a weekly summary instead?
Get the biggest policy changes across 320+ platforms every Sunday.