Zendesk's Privacy Policy navigation was updated on July 1, 2026 to add a new section titled 'Tax Governance and Disclosures' to the policy directory. This addition appears in the document's table of contents or navigation structure rather than modifying substantive privacy protections or data handling practices. The effective date of the privacy notice itself remains May 6, 2026.
This change updates the navigation and organization of Zendesk's policy documentation by adding a 'Tax Governance and Disclosures' section to the policy index. The substantive privacy notice itself remains unchanged with an effective date of May 6, 2026. This appears to be a structural reorganization of policy documentation rather than a modification of privacy practices or rights.
This change updates how Zendesk organizes and indexes its policy documentation by introducing a new 'Tax Governance and Disclosures' section. However, the substantive privacy notice and data handling practices remain unchanged; the underlying privacy terms retain their May 6, 2026 effective date.
Added 'Tax Governance and Disclosures' section to policy index without modification to substantive privacy terms.
This change record describes what was added, removed, or modified in the document. Analysis reflects what the updated agreement states or permits. It does not constitute a legal determination about enforceability. Applicability may vary by jurisdiction. Methodology
This change is a navigation and organizational update to Zendesk's policy documentation structure. It adds a reference to 'Tax Governance and Disclosures' in the policy directory but does not modify the substantive privacy notice or data handling practices. No new compliance obligations are created by this change.
Full compliance analysis
Obligation analysis, escalation trigger, board language, and recommended action.
Monitor: regulatory citations + obligations. Compliance: full compliance memo.
ConductAtlas provides verified policy intelligence sourced directly from platform documents. All analysis is intended to support, not replace, legal and compliance review. Record CA-C-003392.
This new provision provides specific enumeration of personal data categories collected, enhancing transparency about Zendesk's data collection practices.
This new provision explicitly addresses marketing communications and provides clear opt-out mechanisms, improving user control over marketing use of their data.
This new provision addresses compliance with child protection regulations and establishes a mechanism for parents/guardians to report unauthorized data collection from minors.
This detailed provision on advertising/analytics sharing was consolidated into the broader 'Data Sharing with Third Parties' section in the current version, reducing specific transparency about advertising practices.
This standalone M&A-specific provision was absorbed into the consolidated 'Data Sharing with Third Parties' provision, making this scenario less prominent in the policy structure.
This geographically-specific GDPR provision was replaced with a location-agnostic 'Data Subject Rights' provision, potentially reducing explicit references to GDPR compliance and automated decision-making protections.
Current version explicitly identifies Zendesk's dual role as both controller and processor, introduces 'Service Data' terminology, and shifts emphasis to customer responsibility for legal basis rather than directing end-users to contact customers directly.
Current version removes specific mention of Data Privacy Framework compliance and broadens scope from EU/UK/Switzerland to any international transfer, adding reference to 'other legally recognized transfer mechanisms' beyond SCCs.
Current version restructures third-party sharing into categorized circumstances, adds explicit mentions of affiliates, subprocessors, legal requirements, and removes focus on tracking technologies within this provision.
Current version adds 'pixels' to tracking technologies, explicitly mentions third-party partners and email use, provides specific examples of collected data types (browser type, OS, pages visited, referring URL), and removes user control language about browser refusal.
Current version broadens data subject rights from EU/UK/Switzerland-specific to location-agnostic 'depending on where you are located', adds explicit right to withdraw consent, removes automated decision-making provision, and adds mechanism for exercising rights.
Current version removes specific backup archive example and deletion/anonymization procedures, replacing them with detailed retention period factors (data sensitivity, risk of harm, achievement of purposes through alternatives).
Current version reformats rights into simpler bullet-point language, adds non-discrimination right, removes 'subject to certain exceptions' language, and adds request submission mechanism.
Cross-platform context
See how other platforms handle similar provisions across the ConductAtlas archive.
See the full side-by-side comparison of every sentence added, removed, and modified.
🔒 Full diff — MonitorZendesk updated its Privacy Policy on May 11, 2026, repositioning itself as an AI-first service platform. The company revised its …
Zendesk's Privacy Policy was updated on May 5, 2026 to add references to two new documents in its governance framework: …
Ad personalization controls removed. Contact scanning added. Advertiser data partnerships quietly dropped. A timeline of every change.
Get alerted when this policy changes again — including what changed and why it matters.
Prefer a weekly summary instead?
Get the biggest policy changes across 320+ platforms every Sunday.