What can I do about this clause?

{'method': 'WEB_FORM', 'recipient': 'https://privacyportal.onetrust.com/webform/2b246c03-4c7b-479a-9ac6-a671c05f25b6/draft/e3c5c9cb-5e70-4073-b14e-5da0ae2ef640', 'difficulty': 'EASY', 'action_type': 'DELETE_DATA', 'instructions': 'Navigate to the Databricks OneTrust privacy portal, select the type of request (access, deletion, correction, or portability), complete the form with your contact details and submit. Alternatively, email privacy@databricks.com with your request and identity verification information.', 'deadline_days': None, 'deadline_hours': None} {'method': 'EMAIL', 'recipient': 'privacy@databricks.com', 'difficulty': 'EASY', 'action_type': 'EXPORT_DATA', 'instructions': 'Email privacy@databricks.com requesting a portable copy of your personal data. Databricks must respond within 45 days under CCPA or one month under GDPR.', 'deadline_days': None, 'deadline_hours': None}

Which regulatory agencies enforce this type of clause?

{'agency': 'FTC', 'reason': 'FTC enforces against deceptive or unfair practices in handling consumer data rights requests under FTC Act Section 5', 'complaint_url': 'https://reportfraud.ftc.gov/'}, {'agency': 'State_AG', 'reason': 'California AG and CPPA, as well as other state attorneys general, enforce statutory data subject rights under CCPA/CPRA and analogous state laws', 'complaint_url': 'https://www.naag.org/find-my-ag/'}

What is the severity of this clause?

ConductAtlas classifies this Data Subject Rights (Access, Deletion, Correction, Portability) clause as medium severity. Severity reflects the magnitude of rights affected, the breadth of users impacted, and the degree of discretion the platform retains.

Do other platforms have similar clauses?

Yes. ConductAtlas has identified similar Data Subject Rights (Access, Deletion, Correction, Portability) clauses across approximately 2 other tracked platforms. You can compare how platforms differ on this clause type in the cross-platform comparison view.

Data Subject Rights (Access, Deletion, Correction, Portability) — Databricks

Share 𝕏 Share in Share 🔒 PDF

What it is

Depending on where you live, you can ask Databricks to show you, correct, delete, or give you a copy of the personal data they hold about you, and they cannot punish you for making these requests.

Consumer impact (what this means for users)

You can request access to, deletion of, or a portable copy of your personal data held by Databricks by submitting a request via their OneTrust privacy portal or emailing privacy@databricks.com, and Databricks is prohibited from retaliating or discriminating against you for making such requests.

What you can do

⚠️ These actions may provide transparency or partial mitigation but may not fully address the underlying issue. Effectiveness varies by jurisdiction and individual circumstances.

Delete Your Data

Navigate to the Databricks OneTrust privacy portal, select the type of request (access, deletion, correction, or portability), complete the form with your contact details and submit. Alternatively, email privacy@databricks.com with your request and identity verification information.
Export Your Data

Email privacy@databricks.com requesting a portable copy of your personal data. Databricks must respond within 45 days under CCPA or one month under GDPR.

Cross-platform context

See how other platforms handle Data Subject Rights (Access, Deletion, Correction, Portability) and similar clauses.

Compare across platforms →

Need full compliance memos? See Professional →

Why it matters (compliance & risk perspective)

These rights are legally enforceable in California, the EU, and the UK, giving you real control over your personal information held by Databricks — but you must proactively submit a request to exercise them.

View original clause language

Depending on where you live, you may have certain rights regarding your personal information, such as the right to know what personal information we have collected about you, to correct inaccurate personal information, to request deletion of your personal information, to receive a copy of your personal information in a portable format, and to not be discriminated against for exercising your privacy rights. To submit a request, please visit our privacy portal or contact us at privacy@databricks.com.

Institutional analysis (Compliance & legal intelligence)

REGULATORY FRAMEWORK: This provision implements GDPR Arts. 15-20 (rights of access, rectification, erasure, restriction, portability, and objection), UK GDPR equivalent provisions, CCPA §1798.100 (right to know), §1798.105 (right to delete), §1798.106 (right to correct), §1798.110 (right to data portability), and §1798.125 (non-discrimination). Enforced by EU DPAs, UK ICO, California AG, and CPPA. Response timelines: GDPR requires response within one month (extendable to three); CCPA/CPRA requires response within 45 days (extendable to 90).

🔒

Compliance intelligence locked

Regulatory citations, enforcement risk, and due diligence action items.

Watcher $9.99/mo Professional $149/mo

Watcher: regulatory citations. Professional: full compliance memo.

Applicable agencies

FTC

FTC enforces against deceptive or unfair practices in handling consumer data rights requests under FTC Act Section 5
File a complaint →
State AG

California AG and CPPA, as well as other state attorneys general, enforce statutory data subject rights under CCPA/CPRA and analogous state laws
File a complaint →

Provision details

Document information

Document

Databricks Privacy Notice

Entity

Databricks

Document last updated

April 29, 2026

Tracking information

First tracked

April 30, 2026

Last verified

April 30, 2026

Record ID

CA-P-004409

Document ID

CA-D-00458

Evidence Provenance

Source URL

https://www.databricks.com/legal/privacynotice

Wayback Machine

View archived versions →

SHA-256

c2601098042d922e6c540b44624976b336394366f0003fd04e5ca853cfbadda2

Verified

✓ Snapshot stored ✓ Change verified

How to Cite

ConductAtlas Policy Archive
Entity: Databricks | Document: Databricks Privacy Notice | Record: CA-P-004409
Captured: 2026-04-30 10:03:00 UTC | SHA-256: c2601098042d922e…
URL: https://conductatlas.com/platform/databricks/databricks-privacy-notice/data-subject-rights-access-deletion-correction-portability/
Accessed: May 2, 2026

Classification

Severity

Medium

Data Subject Rights (Access, Deletion, Correction, Portability)