Compare data retention governance provisions between Uber and DoorDash. Provisions are extracted from monitored governance documents and classified by severity.
This clause operationalizes data subject rights by defining the mechanism and scope of individual data access and deletion requests. The provision also establishes Uber's retention authority for data needed to satisfy legal obligations and specified operational functions, which defines the boundaries of deletion requests under the agreement.
Consumer impact
Drivers and delivery people may exercise data access and deletion rights through designated channels, though Uber maintains authority to retain specified categories of data for legal compliance, fraud prevention, and safety purposes. The availability of these rights operates concurrently with Uber's stated retention obligations.
Opt-out available
No opt-out available
Actual clause text
Uber provides drivers and delivery people the ability to access, correct, or delete personal data through the Uber app or through Uber's privacy portal at privacy.uber.com. Drivers and delivery people may also submit requests to receive their data in a portable format. Certain data may be retained by Uber even after a deletion request where required by law or for legitimate business purposes, including fraud prevention, safety, and legal compliance.
AI-extracted from source document. Verify against original for legal use.
The clause creates an operational standard for data lifecycle management by tying retention duration to specific, enumerated purposes rather than indefinite retention. It establishes that data destruction or de-identification is the default outcome when retention purposes are satisfied, subject to legal hold or litigation defense requirements.
Consumer impact
Users' personal information is subject to retention only while serving defined purposes, with a stated obligation for deletion or de-identification once those purposes conclude. The provision does not authorize indefinite retention but permits retention when required for legal, accounting, fraud prevention, or litigation defense purposes.
Opt-out available
No opt-out available
Actual clause text
We retain personal information for as long as necessary to fulfill the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements, to establish or defend legal claims, or for fraud prevention purposes. When we no longer need personal information, we will securely delete or destroy it, or de-identify it so that it can no longer be associated with you.
AI-extracted from source document. Verify against original for legal use.
DoorDash removed the header line identifying the document's country and language jurisdiction (Coun…
AI Difference AnalysisProfessional
Stripe's arbitration clause is narrower than Amazon's in one key respect: it includes a small claims court carve-out that Amazon's clause does not. PayPal's clause is the most aggressive of the three, explicitly waiving jury trial rights in addition to class action rights. From a compliance perspective, Amazon presents the lowest risk for B2B contracts while PayPal creates the highest exposure for consumer-facing applications subject to CFPB oversight.