Salesforce removed the direct contact method (email and form link) from the main contact section of its Privacy Statement and replaced it with a new 'Transparency Reports' section. The updated policy now links to Salesforce's annual Transparency Reports (2020-2025) that describe how the company handles government requests for customer data. The change shifts focus from immediate contact channels to published disclosure of government data request practices.
This change removes the direct email and web form contact method from the main Privacy Statement but preserves the contact information itself (it remains in the 'Contact Information' section at the end). Users seeking to exercise privacy rights or ask questions can still use the existing form and email, but Salesforce now emphasizes published Transparency Reports as the primary disclosure mechanism for how it handles government data requests. The practical impact on individual consumers is minimal, as the contact channels remain functional; the change primarily shifts documentation toward aggregate disclosure rather than individual inquiry.
This change prioritizes published disclosure of government data request practices over individual contact pathways in Salesforce's Privacy Statement. For users and organizations concerned with government data access, the shift to Transparency Reports provides standardized, aggregate disclosure rather than case-by-case response; however, the underlying right to contact Salesforce about privacy concerns remains intact.
Added new disclosure section with links to Salesforce's annual Transparency Reports (2020-2025) describing government data request handling practices and volumes.
Removed contact information from primary navigation context but preserved it in the Contact Information section at the end of the statement.
This change record describes what was added, removed, or modified in the document. Analysis reflects what the updated agreement states or permits. It does not constitute a legal determination about enforceability. Applicability may vary by jurisdiction. Methodology
Salesforce reorganized its Privacy Statement to de-emphasize individual contact pathways in favor of published Transparency Reports. This is a disclosure and navigation change rather than a substantive modification to privacy rights or obligations. Organizations relying on the Privacy Statement for vendor assessment should note the shift toward aggregate government request disclosure but will likely find this change immaterial to vendor management obligations, data processing agreements, or regulatory compliance frameworks. No new DPA, SCC, or BCR obligations appear to be created.
GDPR Article 15-22 (data subject rights to access, rectification, erasure, and restriction); CCPA (California Consumer Privacy Act) consumer request mechanisms; GDPR Article 12-14 (transparency and communication obligations); GDPR Article 51 (European Data Protection Board guidance on transparency). The change affects how Salesforce communicates about government data requests but does not alter underlying data subject rights.
Full compliance analysis
Obligation analysis, escalation trigger, board language, and recommended action.
Watcher: regulatory citations + obligations. Professional: full compliance memo.
ConductAtlas provides verified policy intelligence sourced directly from platform documents. All analysis is intended to support, not replace, legal and compliance review. Record CA-C-001519.
See the full side-by-side comparison of every sentence added, removed, and modified.
🔒 Full diff — WatcherGet alerted when this policy changes again — including what changed and why it matters.
Prefer a weekly summary instead?
Get the biggest policy changes across 320+ platforms every Sunday.