What can I do about this clause?

{'method': 'EMAIL', 'recipient': 'privacy@coursera.org', 'difficulty': 'EASY', 'action_type': 'DELETE_DATA', 'instructions': 'Email privacy@coursera.org with your account details to request deletion, access, or export of your personal data. Specify which right you are exercising and include your registered email address.', 'deadline_days': None, 'deadline_hours': None} {'method': 'IN_APP', 'recipient': 'https://www.coursera.org/account/settings', 'difficulty': 'EASY', 'action_type': 'EXPORT_DATA', 'instructions': 'Log into your Coursera account, go to Settings, and use the data download or privacy request feature to export a copy of your personal data.', 'deadline_days': None, 'deadline_hours': None}

Which regulatory agencies enforce this type of clause?

{'agency': 'FTC', 'reason': 'FTC has jurisdiction over deceptive privacy practices, including failure to honor stated privacy rights, under FTC Act Section 5.', 'complaint_url': 'https://reportfraud.ftc.gov/'}, {'agency': 'State_AG', 'reason': 'California Privacy Protection Agency and State AG enforce CCPA/CPRA data subject rights including access, deletion, and portability for California residents.', 'complaint_url': 'https://www.naag.org/find-my-ag/'}

What is the severity of this clause?

ConductAtlas classifies this User Rights — Access, Deletion, and Portability clause as medium severity. Severity reflects the magnitude of rights affected, the breadth of users impacted, and the degree of discretion the platform retains.

Do other platforms have similar clauses?

Yes. ConductAtlas has identified similar User Rights — Access, Deletion, and Portability clauses across approximately 2 other tracked platforms. You can compare how platforms differ on this clause type in the cross-platform comparison view.

User Rights — Access, Deletion, and Portability — Coursera

Share 𝕏 Share in Share 🔒 PDF

What it is

Depending on where you live, you may have the right to see, correct, delete, or download your personal data held by Coursera.

Consumer impact (what this means for users)

EU, UK, and California users can legally require Coursera to provide, correct, delete, or export their personal data — including learning records and profile data — and Coursera is obligated to respond within statutory deadlines (30 days under GDPR, 45 days under CCPA).

What you can do

⚠️ These actions may provide transparency or partial mitigation but may not fully address the underlying issue. Effectiveness varies by jurisdiction and individual circumstances.

Delete Your Data

Email privacy@coursera.org with your account details to request deletion, access, or export of your personal data. Specify which right you are exercising and include your registered email address.
Export Your Data

Log into your Coursera account, go to Settings, and use the data download or privacy request feature to export a copy of your personal data.

Cross-platform context

See how other platforms handle User Rights — Access, Deletion, and Portability and similar clauses.

Compare across platforms →

Need full compliance memos? See Professional →

Why it matters (compliance & risk perspective)

These rights are legally enforceable for EU/UK users under GDPR and for California residents under CCPA/CPRA, and Coursera must respond within statutory timeframes.

View original clause language

Depending on your location, you may have certain rights regarding your personal information, such as the right to request access to, update, or delete the personal information we hold about you, or the right to request that we restrict our processing of your personal information, or to object to our processing of your personal information, or the right to receive a copy of your personal information in a portable format.

Institutional analysis (Compliance & legal intelligence)

(1) REGULATORY FRAMEWORK: This provision directly implements GDPR Arts. 15 (access), 16 (rectification), 17 (erasure), 18 (restriction), 20 (portability), and 21 (objection); UK GDPR equivalent provisions; CCPA §§1798.100, 1798.105, 1798.110, 1798.115 and CPRA enhancements; and Brazil LGPD Arts. 18-22. Enforcement: EU DPAs, UK ICO, California Privacy Protection Agency, and potentially Brazil's ANPD. (2)

🔒

Compliance intelligence locked

Regulatory citations, enforcement risk, and due diligence action items.

Watcher $9.99/mo Professional $149/mo

Watcher: regulatory citations. Professional: full compliance memo.

Applicable agencies

FTC

FTC has jurisdiction over deceptive privacy practices, including failure to honor stated privacy rights, under FTC Act Section 5.
File a complaint →
State AG

California Privacy Protection Agency and State AG enforce CCPA/CPRA data subject rights including access, deletion, and portability for California residents.
File a complaint →

Provision details

Document information

Document

Coursera Privacy Notice

Entity

Coursera

Document last updated

April 29, 2026

Tracking information

First tracked

April 18, 2026

Last verified

April 18, 2026

Record ID

CA-P-002858

Document ID

CA-D-00158

Evidence Provenance

Source URL

https://www.coursera.org/about/privacy

Wayback Machine

View archived versions →

SHA-256

062caff3444fccccf0cccb271ab50fff394a5a3641a48727efc029ee14593866

Verified

✓ Snapshot stored ✓ Change verified

How to Cite

ConductAtlas Policy Archive
Entity: Coursera | Document: Coursera Privacy Notice | Record: CA-P-002858
Captured: 2026-04-18 10:17:08 UTC | SHA-256: 062caff3444fcccc…
URL: https://conductatlas.com/platform/coursera/coursera-privacy-notice/user-rights-access-deletion-and-portability/
Accessed: May 2, 2026

Classification

Severity

Medium

User Rights — Access, Deletion, and Portability