Glassdoor has formally designated legal entities to represent it under GDPR for users in the UK and EU, meaning those users have specific data rights they can exercise against these named entities.
This analysis describes what Glassdoor's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
Naming specific GDPR representatives means EU and UK users have clear entities to contact with data rights requests, complaints, or regulatory concerns, which is a meaningful compliance commitment.
The updated policy grants EU, UK, and Swiss residents explicit rights to request access to their personal data held by Glassdoor in the United States, and to correct, amend, or delete that data. Glassdoor commits to responding to deletion requests within a reasonable timeframe and to obtaining explicit consent before sharing sensitive data with third parties or using data for purposes beyond the original collection. You can exercise these rights by following the instructions in the 'Controlling Your Personal Data' section of the policy.
View change record →The updated privacy policy removes explicit language granting users the right to correct, amend, or delete personal information held by Glassdoor. It also eliminates the documented right to opt-out before data is shared with third parties or used for purposes beyond the original collection. Previously, users could request limits on data use and disclosure; this right is no longer stated in the policy. Instead, the updated terms establish binding arbitration as the mechanism for resolving privacy complaints. Under the revised policy, users who have unresolved privacy concerns may invoke binding arbitration through TrustArc, but they no longer have contractually documented access to data correction, deletion, opt-out, or use-limitation mechanisms.
View change record →EU users can direct GDPR data rights requests (access, deletion, portability, objection) to Glassdoor Hiring Solutions Ireland Ltd., and UK users can direct requests to Glassdoor Global Ltd., giving users specific and named points of contact for data rights enforcement.
How other platforms handle this
If you are located in the European Economic Area, Switzerland, or the United Kingdom, you have the right to access, correct, or erase your personal data; the right to restrict or object to our processing of your personal data; the right to data portability; and, where our processing is based on your...
At Ledger, earning and maintaining our users' trust is a top priority. That's why we are deeply committed not only to protecting your privacy and securing your personal data, but also to being fully transparent about how we handle it.
We use information to enhance the quality, reliability, and/or accuracy of our AI Features by creating, developing, training, testing, improving, and maintaining AI and ML models run by Strava or our service providers. We use aggregated, de-identified data for this purpose. We also use personal info...
Monitoring
Glassdoor has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 25 platforms.
"Glassdoor LLC is the data controller for our services. Our representative in the UK for GDPR: Glassdoor Global Ltd. Our representative in the EU for GDPR: Glassdoor Hiring Solutions Ireland Ltd.— Excerpt from Glassdoor's Glassdoor Privacy Policy
(1) REGULATORY LANDSCAPE: GDPR Article 27 requires non-EU/UK established controllers with EU/UK processing activities to designate a representative in each jurisdiction. The designation of Glassdoor Global Ltd. (UK) and Glassdoor Hiring Solutions Ireland Ltd. (EU) fulfills this requirement on the face of the policy. The UK ICO and EU Data Protection Authorities (led by the Irish DPC given the Irish entity) are the primary enforcement authorities. GDPR Articles 15-22 govern the data subject rights these representatives must facilitate. (2) GOVERNANCE EXPOSURE: Medium. The designation itself is standard compliance practice, but the operational effectiveness depends on whether these entities are properly resourced to handle data subject requests within GDPR timeframes (generally one month under Article 12). The Irish DPC's jurisdiction over Glassdoor's EU operations means it is the lead supervisory authority for cross-border processing matters. (3) JURISDICTION FLAGS: EU/EEA users have the right to lodge complaints with their local DPA even when the lead authority is the Irish DPC. UK users can file complaints with the ICO. Post-Brexit UK GDPR applies separately from EU GDPR, meaning two distinct compliance frameworks apply. (4) CONTRACT AND VENDOR IMPLICATIONS: The representative entities must be formally authorized under GDPR Article 27 and should have documented mandates. Legal teams should confirm that these entities are empowered to respond to regulatory inquiries on behalf of Glassdoor LLC. (5) COMPLIANCE CONSIDERATIONS: Data subject request workflows should be mapped to each representative entity and tested for timeliness and completeness. Complaint escalation paths to relevant DPAs should be clearly documented in internal procedures.
Full compliance analysis
Regulatory citations, enforcement risk, and due diligence action items.
Free: track 1 platform + weekly digest. Monitor: 25 platforms + same-day alerts. No credit card required.
Ad personalization controls removed. Contact scanning added. Advertiser data partnerships quietly dropped. A timeline of every change.
Compliance Governance Intelligence
Need to monitor specific governance provisions?
Compliance includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
Naming specific GDPR representatives means EU and UK users have clear entities to contact with data rights requests, complaints, or regulatory concerns, which is a meaningful compliance commitment.
EU users can direct GDPR data rights requests (access, deletion, portability, objection) to Glassdoor Hiring Solutions Ireland Ltd., and UK users can direct requests to Glassdoor Global Ltd., giving users specific and named points of contact for data rights enforcement.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Glassdoor.