Duolingo updated their Duolingo Privacy Policy on May 27, 2026. Change detected: 1 sentence(s) removed, 3 sentence(s) modified. Document contained 221 sentences after update.
Impact assessment pending documentation review.
Institutional analysis pending. This change has been verified and documented.
This change record describes what was added, removed, or modified in the document. Analysis reflects what the updated agreement states or permits. It does not constitute a legal determination about enforceability. Applicability may vary by jurisdiction. Methodology
This provision establishes explicit categorization of what personal data Duolingo collects, providing users with detailed notice of data collection practices for both account creation and learning activity tracking.
This new provision explicitly discloses international data transfer practices and obtains user consent for processing in the U.S., with notice that users may have fewer protections than under local law.
This provision notifies users that their personal data may be shared or transferred in corporate transactions including mergers and acquisitions, a significant privacy scenario not previously disclosed.
This provision discloses that Duolingo accesses user data from third-party social login platforms, which is important for users to understand what personal information is shared upon social sign-up.
This new provision establishes Duolingo's commitment to notifying users of material privacy policy changes via email or website notice, supporting user transparency and informed consent.
Removal of explicit disclosure about voice data collection is significant as it previously provided clear notice about a sensitive form of biometric data collection used for speech recognition.
Removal of this provision eliminates explicit disclosure about tracking technologies and user control mechanisms, which is particularly important for transparency around targeted advertising practices.
Removal of specific account deletion and data portability procedures eliminates user-facing instructions for exercising important privacy rights, though these may have been moved to separate terms of service or support documentation.
Language broadened from specific advertising partners to general third-party vendors/service providers, and added qualifier 'consistent with your consent where required' for marketing purposes sharing.
Removed mention of separate experience for younger users and family features management, and added specific contact email (privacy@duolingo.com) for parental concerns instead of proactive deletion language.
Replaced 'right to non-discrimination for exercising your privacy rights' with 'right to limit the use and disclosure of sensitive personal information' and softened language from 'you have the right' to 'you have certain rights.'
Removed Switzerland from scope, removed 'update' right, changed 'data protection authority' to 'supervisory authority', and softened language from 'you have the right' to 'you have certain rights.'
Expanded to detail specific factors considered for retention (amount, nature, sensitivity, risk of harm) and added 'legal, accounting, or reporting requirements' but excerpt appears incomplete/truncated.
Cross-platform context
See how other platforms handle similar provisions across the ConductAtlas archive.
See the full side-by-side comparison of every sentence added, removed, and modified.
🔒 Full diff — MonitorDuolingo removed three sentences from its privacy policy on May 27, 2026. The removed language disclosed that the website uses …
Duolingo added explicit cookie disclosure language and a data-sharing notice to its Terms of Service as of May 5, 2026. …
Duolingo added three sentences to its privacy policy on May 5, 2026, disclosing that the website uses cookies to enhance …
Get alerted when this policy changes again — including what changed and why it matters.
Prefer a weekly summary instead?
Get the biggest policy changes across 320+ platforms every Sunday.