Calm's privacy policy explains what personal information the app collects about you — including your name, usage habits, mood check-ins, sleep data, and device details — and how it may be shared with advertisers and other companies. Your data may be used to show you targeted ads on other platforms, and some of this activity counts as 'selling' your data under privacy law. You have the right to access, correct, or delete your data, and you can opt out of targeted advertising.
Calm's Privacy Policy (last updated December 12, 2024) governs the collection, use, and disclosure of personal data by Calm.com, Inc. across its websites, mobile applications, and related services. The policy details extensive data collection practices including identifiers, usage data, inferred characteristics (e.g., age, gender), health app data, and communications recordings. It discloses data sharing with service providers, advertising partners, and third parties, and acknowledges that certain activities (behavioral advertising, cookies) may constitute 'sales' or 'sharing' under applicable privacy laws. The policy provides rights frameworks for California residents (CCPA), EEA/UK/Switzerland residents (GDPR/UK GDPR), and all users globally, including rights to access, correct, delete, and opt out of targeted advertising. Standard Contractual Clauses are used for cross-border data transfers.
This policy engages primarily with CCPA (as amended by CPRA), GDPR, and UK GDPR, including explicit legal basis disclosures for each processing activity — a positive compliance indicator. Key risk ar…
This policy engages primarily with CCPA (as amended by CPRA), GDPR, and UK GDPR, including explicit legal basis disclosures for each processing activity — a positive compliance indicator. Key risk areas include the collection of health-adjacent data (sleep habits, mood check-ins, HealthKit/Google H…
Compliance intelligence locked
Regulatory exposure, material risk, and due diligence action items.