FanDuel collects your exact GPS location from your phone and shares it with outside companies for advertising, analytics, and legal compliance purposes.
Consumer impact (what this means for users)
Your real-time GPS coordinates are collected and shared with third-party vendors and entities listed in Section 4.10, including gaming regulators and advertising partners, meaning your physical movements may be tracked and disclosed without granular consent.
What you can do
⚠️ These actions may provide transparency or partial mitigation but may not fully address the underlying issue. Effectiveness varies by jurisdiction and individual circumstances.
Opt Out of Arbitration
Visit privacy.fanduel.com/dont_sell on each browser and device you use to access FanDuel. Complete the opt-out form to stop the sharing of your personal information, including location data, for targeted advertising purposes.
Cross-platform context
See how other platforms handle Precise Geolocation Data Sharing and similar clauses.
Precise GPS location is among the most sensitive categories of personal data, and its disclosure to multiple third parties for advertising purposes goes beyond what many consumers expect when using a fantasy sports app.
View original clause language
Our Services use precise location-based services (e.g., location collected through GPS technology) in order to locate you so we may verify your location, process payments, perform analytics, deliver you relevant content and ads based on your location, share your location with our vendors as part of the location-based services we offer, and for purposes of legal and regulatory compliance. We also collect non-precise geolocation data (i.e., the city and state in which your device is located based on its IP address). Both precise and non-precise geolocation may be disclosed to third party entities pursuant to Section 4.10 below.
REGULATORY FRAMEWORK: Precise geolocation data is classified as sensitive personal information under CPRA (Cal. Civ. Code §1798.121), triggering enhanced consumer rights including the right to limit use and disclosure. GDPR Article 9 and Recital 51 treat location data as potentially revealing sensitive characteristics. Illinois BIPA (740 ILCS 14) may be implicated if geolocation is used for biometric-adjacent identification. FTC Act Section 5 enforcement has specifically targeted deceptive geolocation practices (see FTC v. X-Mode Social, 2024). The FTC is the primary federal enforcement authority; CPPA enforces CPRA.
🔒
Compliance intelligence locked
Regulatory citations, enforcement risk, and due diligence action items.
Watcher: regulatory citations. Professional: full compliance memo.
Applicable agencies
FTC
The FTC has enforcement authority over deceptive and unfair data practices under FTC Act Section 5, including undisclosed or overbroad geolocation data sharing by consumer-facing platforms.
California's CPPA and state attorneys general in states with comprehensive privacy laws (Virginia, Colorado, Connecticut) have enforcement authority over sensitive geolocation data processing.