When you apply for jobs through Glassdoor, the company collects your resume and all associated application data, which may include sensitive personal information.
This analysis describes what Glassdoor's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
Job application data is among the most personal information a user can provide, and its classification as both Sensitive Personal Information and professional data means it carries heightened protection obligations under GDPR and CCPA/CPRA.
The updated policy grants EU, UK, and Swiss residents explicit rights to request access to their personal data held by Glassdoor in the United States, and to correct, amend, or delete that data. Glas…
If you apply for jobs through Glassdoor, your resume and application data including any sensitive personal information it contains are collected and may be shared with employers and potentially other parties, which users should factor into their decision to apply through the platform.
How other platforms handle this
When you visit the Careers portion of our websites, we collect the information that you provide to us in connection with your job application. This includes but is not limited to business and personal contact information, professional credentials and skills, educational and work history and other in...
American does not knowingly collect personal information directly from children – persons under the age of 13, or another age if required by applicable law – other than when required to comply with the law or for safety and security reasons. Due to the nature of our Services, we may collect travel i...
We may collect information about your location, including precise geolocation information, when you use our Services. We use this information to provide location-based services, such as showing you products available in your area, and for other purposes described in this Privacy Policy.
Monitoring
Glassdoor has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 10 platforms.
"Jobs you've applied to and associated interactions, including the resumes and other data you supply during the application process. Special Category Data / Sensitive Personal Information. Professional or employment-related information.— Excerpt from Glassdoor's Glassdoor Privacy Policy
(1) REGULATORY LANDSCAPE: Job application data containing Special Category information (e.g., disability disclosures, veteran status) is subject to GDPR Article 9 heightened processing requirements. CCPA/CPRA classifies professional and employment-related information as personal information and sensitive data categories may trigger additional obligations. Employment anti-discrimination law in the US (Title VII, ADA, VEVRAA) may intersect with data collection practices if sensitive attributes are visible to employers. (2) GOVERNANCE EXPOSURE: High. The combination of resume data, sensitive personal information, and employer data sharing creates meaningful anti-discrimination and privacy risk. If employers receive application data that includes sensitive attributes, this creates potential exposure under employment law in addition to privacy law. (3) JURISDICTION FLAGS: EU/UK applicants have GDPR Article 9 protections for sensitive data in job applications. California applicants have CPRA Sensitive Personal Information rights. US federal and state employment law may impose additional constraints on how application data containing protected characteristics is handled and disclosed. (4) CONTRACT AND VENDOR IMPLICATIONS: Employer-facing terms should clearly limit the use of application data to recruitment purposes and prohibit discriminatory use of sensitive attributes. Data processing agreements with employers receiving application data should be reviewed for scope and purpose limitations. (5) COMPLIANCE CONSIDERATIONS: Glassdoor should ensure that resumes and application data containing sensitive personal information are not transmitted to employers in formats that expose protected characteristics unnecessarily. Internal data handling procedures for job application data should be reviewed for GDPR Article 9 compliance and CPRA Sensitive Personal Information limitations.
Full compliance analysis
Regulatory citations, enforcement risk, and due diligence action items.
Free: track 1 platform + weekly digest. Watcher: 10 platforms + same-day alerts. No credit card required.
Netflix updated its Privacy Statement on April 18, 2026, disclosing voice recording collection and expanded household ad profiling for the first time.
Google's Privacy Policy covers Search, Gmail, YouTube, Maps, and every site running Google Analytics. Here is what it actually authorizes.
Professional Governance Intelligence
Need to monitor specific governance provisions?
Professional includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
Job application data is among the most personal information a user can provide, and its classification as both Sensitive Personal Information and professional data means it carries heightened protection obligations under GDPR and CCPA/CPRA.
If you apply for jobs through Glassdoor, your resume and application data including any sensitive personal information it contains are collected and may be shared with employers and potentially other parties, which users should factor into their decision to apply through the platform.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Glassdoor.