Boston Dynamics · Boston Dynamics Privacy Policy · View original document ↗

EU/EEA/UK GDPR Data Subject Rights

Medium severity Low confidence Inferredfromcontext Unique · 0 of 352 platforms
Share 𝕏 Share in Share 🔒 PDF
Monitor governance changes for Boston Dynamics Create a free account to receive the weekly governance digest and monitor one platform for governance changes.
Create free account No credit card required.
Document Record

What it is

The policy references applicability to EU/EEA/UK users and the existence of GDPR data subject rights including access, rectification, erasure, restriction of processing, data portability, and the right to object. The specific legal bases for processing and the mechanisms for exercising these rights are disclosed in the full policy text, which was truncated in the provided document.

This analysis describes what Boston Dynamics's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology

ConductAtlas Analysis

Why it matters (compliance & governance perspective)

This provision establishes that EU, EEA, and UK users have GDPR-derived rights over their personal data processed by Boston Dynamics, including through HubSpot and Google Tag Manager. The absence of explicit legal basis disclosures in the truncated document text may represent a gap relative to GDPR Article 13 requirements.

Interpretive note: The full GDPR disclosure text, including enumerated legal bases for processing and cross-border transfer mechanisms, was not available in the truncated document and cannot be assessed from the provided text.

Consumer impact (what this means for users)

Under these terms, EU/EEA/UK users may exercise rights including access, deletion, portability, and objection with respect to personal data processed by Boston Dynamics and its service providers. The agreement establishes that these rights are available to users in these jurisdictions.

What you can do

⚠️ These actions may provide transparency or partial mitigation but may not fully address the underlying issue. Effectiveness varies by jurisdiction and individual circumstances.
  • Delete Your Data
    EU/EEA/UK residents can submit data subject requests (access, deletion, portability, objection) using the contact mechanism specified in the Boston Dynamics privacy policy. The policy should specify the designated contact for GDPR requests.

Cross-platform context

See how other platforms handle EU/EEA/UK GDPR Data Subject Rights and similar clauses.

Compare across platforms →

Monitoring

Boston Dynamics has changed this document before.

Receive same-day alerts, structured change summaries, and monitoring for up to 25 platforms.

Get Monitor Or create a free account →
ConductAtlas Analysis

Institutional analysis (Compliance & governance intelligence)

1. REGULATORY LANDSCAPE: This provision engages GDPR Articles 13, 15-22 (transparency and data subject rights), Article 28 (processor requirements), and Article 46 (cross-border transfer mechanisms). The relevant enforcement authorities are EU/EEA national Data Protection Authorities and the UK ICO. The policy's use of US-based processors (HubSpot, Google) requires valid cross-border transfer mechanisms under GDPR Article 46, such as Standard Contractual Clauses or reliance on the EU-US Data Privacy Framework. 2. GOVERNANCE EXPOSURE: Medium. The truncated document does not explicitly enumerate the legal bases for processing personal data of EU/EEA/UK users, which would be required under GDPR Article 13. If the policy lacks this disclosure in the full text, this creates a compliance gap relative to GDPR transparency requirements. The right to object to processing based on legitimate interests (Article 21) and the right to withdraw consent are operationally significant given the cookie-based tracking architecture. 3. JURISDICTION FLAGS: This provision applies to EU/EEA and UK users. Organizations in the EU/EEA operating Boston Dynamics robots or engaging with the company's website should assess whether their employees' data is subject to GDPR obligations when interacting with Boston Dynamics' digital infrastructure. Post-Brexit UK GDPR obligations apply separately to UK users. 4. CONTRACT AND VENDOR IMPLICATIONS: Data processing agreements with HubSpot and Google must include GDPR Article 28-compliant terms, and cross-border transfer documentation must be maintained. If Boston Dynamics appoints a European Data Protection Representative (required for controllers not established in the EU that process EU personal data), this should be disclosed in the policy. 5. COMPLIANCE CONSIDERATIONS: Compliance teams should confirm that the full privacy policy includes explicit legal basis disclosures for each processing activity involving EU/EEA/UK personal data, that a data subject request workflow capable of responding within GDPR's 30-day timeline is in place, and that cross-border transfer mechanisms with HubSpot and Google are documented and current.

Full compliance analysis

Regulatory citations, enforcement risk, and due diligence action items.

Track 3 platforms — free Get Monitor

Free: track 3 platforms + weekly digest. Monitor: 25 platforms + same-day alerts. No credit card required.

Applicable agencies

  • FTC
    The FTC has authority over privacy representations made to EU/EEA users, particularly in the context of the EU-US Data Privacy Framework and cross-border data transfers.
    File a complaint →

Provision details

Document information
Document
Boston Dynamics Privacy Policy
Entity
Boston Dynamics
Document last updated
July 5, 2026
Tracking information
First tracked
July 5, 2026
Last verified
July 5, 2026
Record ID
CA-P-013292
Document ID
CA-D-00909
Evidence Provenance
Source URL
Wayback Machine
Content hash (SHA-256)
290db66cc5763c5c60f0b2e7a6144c08290863553def326d80f357cfb236f340
Analysis generated
July 5, 2026 02:31 UTC
Methodology
Evidence
✓ Snapshot stored   ✓ Hash verified
Citation Record
Entity: Boston Dynamics
Document: Boston Dynamics Privacy Policy
Record ID: CA-P-013292
Captured: 2026-07-05 02:31:38 UTC
SHA-256: 290db66cc5763c5c…
URL: https://conductatlas.com/platform/boston-dynamics/boston-dynamics-privacy-policy/eueeauk-gdpr-data-subject-rights/
Accessed: July 5, 2026
Permanent archival reference. Stable identifier suitable for legal filings, compliance documentation, and research citation.
Classification
Severity
Medium
Categories

Other risks in this policy

Compliance Governance Intelligence

Need to monitor specific governance provisions?

Compliance includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.

Arbitration clauses AI governance Data rights Indemnification Retention policies
Get Compliance

Or start with Monitor →

Built from archived source documents, structured governance mappings, and historical version tracking.

Frequently Asked Questions

What does Boston Dynamics's EU/EEA/UK GDPR Data Subject Rights clause do?

This provision establishes that EU, EEA, and UK users have GDPR-derived rights over their personal data processed by Boston Dynamics, including through HubSpot and Google Tag Manager. The absence of explicit legal basis disclosures in the truncated document text may represent a gap relative to GDPR Article 13 requirements.

How does this clause affect you?

Under these terms, EU/EEA/UK users may exercise rights including access, deletion, portability, and objection with respect to personal data processed by Boston Dynamics and its service providers. The agreement establishes that these rights are available to users in these jurisdictions.

Is ConductAtlas affiliated with Boston Dynamics?

No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Boston Dynamics.