When you apply for jobs through Glassdoor, the company collects your resume and all associated application data, which may include sensitive personal information.
This analysis describes what Glassdoor's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
Job application data is among the most personal information a user can provide, and its classification as both Sensitive Personal Information and professional data means it carries heightened protection obligations under GDPR and CCPA/CPRA.
The updated policy grants EU, UK, and Swiss residents explicit rights to request access to their personal data held by Glassdoor in the United States, and to correct, amend, or delete that data. Glassdoor commits to responding to deletion requests within a reasonable timeframe and to obtaining explicit consent before sharing sensitive data with third parties or using data for purposes beyond the original collection. You can exercise these rights by following the instructions in the 'Controlling Your Personal Data' section of the policy.
View change record →The updated privacy policy removes explicit language granting users the right to correct, amend, or delete personal information held by Glassdoor. It also eliminates the documented right to opt-out before data is shared with third parties or used for purposes beyond the original collection. Previously, users could request limits on data use and disclosure; this right is no longer stated in the policy. Instead, the updated terms establish binding arbitration as the mechanism for resolving privacy complaints. Under the revised policy, users who have unresolved privacy concerns may invoke binding arbitration through TrustArc, but they no longer have contractually documented access to data correction, deletion, opt-out, or use-limitation mechanisms.
View change record →If you apply for jobs through Glassdoor, your resume and application data including any sensitive personal information it contains are collected and may be shared with employers and potentially other parties, which users should factor into their decision to apply through the platform.
How other platforms handle this
At Ledger, earning and maintaining our users' trust is a top priority. That's why we are deeply committed not only to protecting your privacy and securing your personal data, but also to being fully transparent about how we handle it.
If we collect health information from these integrations (such as heart rate), we will not sell or use it for advertising or other similar purposes; we do not disclose it to third parties without your prior consent; and we will only use it for the specific purposes described in this Policy.
We collect your personal data when you use our Services, create a new eBay account, provide us with information via a web form, add or update information in your eBay account, participate in online community discussions or otherwise interact with us.
Monitoring
Glassdoor has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 25 platforms.
"Jobs you've applied to and associated interactions, including the resumes and other data you supply during the application process. Special Category Data / Sensitive Personal Information. Professional or employment-related information.— Excerpt from Glassdoor's Glassdoor Privacy Policy
(1) REGULATORY LANDSCAPE: Job application data containing Special Category information (e.g., disability disclosures, veteran status) is subject to GDPR Article 9 heightened processing requirements. CCPA/CPRA classifies professional and employment-related information as personal information and sensitive data categories may trigger additional obligations. Employment anti-discrimination law in the US (Title VII, ADA, VEVRAA) may intersect with data collection practices if sensitive attributes are visible to employers. (2) GOVERNANCE EXPOSURE: High. The combination of resume data, sensitive personal information, and employer data sharing creates meaningful anti-discrimination and privacy risk. If employers receive application data that includes sensitive attributes, this creates potential exposure under employment law in addition to privacy law. (3) JURISDICTION FLAGS: EU/UK applicants have GDPR Article 9 protections for sensitive data in job applications. California applicants have CPRA Sensitive Personal Information rights. US federal and state employment law may impose additional constraints on how application data containing protected characteristics is handled and disclosed. (4) CONTRACT AND VENDOR IMPLICATIONS: Employer-facing terms should clearly limit the use of application data to recruitment purposes and prohibit discriminatory use of sensitive attributes. Data processing agreements with employers receiving application data should be reviewed for scope and purpose limitations. (5) COMPLIANCE CONSIDERATIONS: Glassdoor should ensure that resumes and application data containing sensitive personal information are not transmitted to employers in formats that expose protected characteristics unnecessarily. Internal data handling procedures for job application data should be reviewed for GDPR Article 9 compliance and CPRA Sensitive Personal Information limitations.
Full compliance analysis
Regulatory citations, enforcement risk, and due diligence action items.
Free: track 1 platform + weekly digest. Monitor: 25 platforms + same-day alerts. No credit card required.
Ad personalization controls removed. Contact scanning added. Advertiser data partnerships quietly dropped. A timeline of every change.
Compliance Governance Intelligence
Need to monitor specific governance provisions?
Compliance includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
Job application data is among the most personal information a user can provide, and its classification as both Sensitive Personal Information and professional data means it carries heightened protection obligations under GDPR and CCPA/CPRA.
If you apply for jobs through Glassdoor, your resume and application data including any sensitive personal information it contains are collected and may be shared with employers and potentially other parties, which users should factor into their decision to apply through the platform.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Glassdoor.