What can I do about this clause?

{'method': 'WEB_FORM', 'recipient': 'https://www.glassdoor.com/member/profile/privacyCenter.htm', 'difficulty': 'MODERATE', 'action_type': 'DELETE_DATA', 'instructions': 'Log in to your Glassdoor account, navigate to Privacy Center or Account Settings, and submit a data deletion or access request. Review and remove any demographic information you have provided that you no longer wish Glassdoor to retain.', 'deadline_days': None, 'deadline_hours': None}

Which regulatory agencies enforce this type of clause?

{'agency': 'FTC', 'reason': 'The FTC has jurisdiction over unfair or deceptive privacy practices involving sensitive personal data for US users of Glassdoor.', 'complaint_url': 'https://reportfraud.ftc.gov/'}, {'agency': 'State_AG', 'reason': 'California, EU, and UK residents have specific rights regarding sensitive personal information and can escalate complaints through state or national authorities including the California AG and relevant DPAs.', 'complaint_url': 'https://www.naag.org/find-my-ag/'}

What is the severity of this clause?

ConductAtlas classifies this Sensitive Personal Information Collection clause as high severity. Severity reflects the magnitude of rights affected, the breadth of users impacted, and the degree of discretion the platform retains.

Do other platforms have similar clauses?

Yes. ConductAtlas has identified similar Sensitive Personal Information Collection clauses across approximately 8 other tracked platforms. You can compare how platforms differ on this clause type in the cross-platform comparison view.

Sensitive Personal Information Collection — Glassdoor

Share 𝕏 Share in Share 🔒 PDF

Monitor governance changes for Glassdoor Create a free account to receive the weekly governance digest and monitor one platform for governance changes.

Create free account No credit card required.

Document Record

What it is

Glassdoor collects highly sensitive personal details including your race, sexual orientation, disability status, and religion as part of its standard data collection practices.

ⓘ

This analysis describes what Glassdoor's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology

ConductAtlas Analysis

Why it matters (compliance & governance perspective)

This is among the most sensitive category of personal data under both GDPR and US state privacy laws, and its collection on a professional networking and job platform creates meaningful risk if data is misused or inadvertently disclosed to employers.

Recent Activity

This document changed recently

Medium Apr 23, 2026

The updated policy grants EU, UK, and Swiss residents explicit rights to request access to their personal data held by Glassdoor in the United States, and to correct, amend, or delete that data. Glas…

Consumer impact (what this means for users)

The collection of sensitive attributes including race/ethnicity, sexual orientation, disability, and religion means that users who provide this information face heightened privacy risk, particularly given that Glassdoor also shares data with employers and advertising partners.

What you can do

⚠️ These actions may provide transparency or partial mitigation but may not fully address the underlying issue. Effectiveness varies by jurisdiction and individual circumstances.

Delete Your Data

Log in to your Glassdoor account, navigate to Privacy Center or Account Settings, and submit a data deletion or access request. Review and remove any demographic information you have provided that you no longer wish Glassdoor to retain.

Cross-platform context

See how other platforms handle Sensitive Personal Information Collection and similar clauses.

Compare across platforms →

Monitoring

Glassdoor has changed this document before.

Receive same-day alerts, structured change summaries, and monitoring for up to 10 platforms.

Start Watcher free trial Or create a free account →

▸ View Original Clause Language DOCUMENT RECORD

"
Race/ethnicity, sexual orientation, disability, leading personality trait (e.g., introvert/extrovert), religion, marital status, parental status, veteran status. Special Category Data / Sensitive Personal Information. Characteristics of protected classifications under state or federal law. Health Data (disability status).

— Excerpt from Glassdoor's Glassdoor Privacy Policy

ConductAtlas Analysis

Institutional analysis (Compliance & governance intelligence)

(1) REGULATORY LANDSCAPE: GDPR Article 9 prohibits processing Special Category Data absent explicit consent or another enumerated legal basis (such as employment law obligations or the data being manifestly made public by the subject). CCPA/CPRA classifies racial/ethnic origin, sexual orientation, health data, and religious beliefs as Sensitive Personal Information, triggering rights to limit use under California Civil Code Section 1798.121. The FTC may scrutinize practices involving sensitive data under its unfair or deceptive acts authority. Relevant enforcement authorities include EU Data Protection Authorities, the UK ICO, and the California Privacy Protection Agency. (2) GOVERNANCE EXPOSURE: High. The collection of GDPR Special Category Data requires documented lawful bases for each category, and the policy's visible text does not enumerate those bases with specificity. If explicit consent is the chosen basis, consent mechanisms must be granular, freely given, and withdrawable, which requires operational audit. CPRA's Sensitive Personal Information limitation right must be operationally implemented. (3) JURISDICTION FLAGS: EU/EEA and UK users have the highest exposure under GDPR Article 9. California users have CPRA Sensitive Personal Information rights. Users in Virginia, Colorado, and other states with enacted privacy laws may have additional rights depending on those frameworks. Illinois BIPA may be engaged if any biometric data is implicated. (4) CONTRACT AND VENDOR IMPLICATIONS: Any vendor or partner receiving Special Category Data must be assessed under GDPR Article 28 data processing agreements. Employer-facing data flows involving sensitive attributes require particular scrutiny for employment discrimination risk under applicable labor and anti-discrimination law. (5) COMPLIANCE CONSIDERATIONS: Compliance teams should map each sensitive data category to a documented GDPR Article 9 legal basis. CPRA Sensitive Personal Information opt-out mechanisms should be audited for functionality and accessibility. Data minimization principles should be applied to assess whether collection of each sensitive category is necessary for the stated service purpose.

Full compliance analysis

Regulatory citations, enforcement risk, and due diligence action items.

Track 1 platform — free Try Watcher free for 14 days

Free: track 1 platform + weekly digest. Watcher: 10 platforms + same-day alerts. No credit card required.

Applicable agencies

FTC

The FTC has jurisdiction over unfair or deceptive privacy practices involving sensitive personal data for US users of Glassdoor.
File a complaint →
State AG

California, EU, and UK residents have specific rights regarding sensitive personal information and can escalate complaints through state or national authorities including the California AG and relevant DPAs.
File a complaint →

Provision details

Document information

Document

Glassdoor Privacy Policy

Entity

Glassdoor

Document last updated

May 5, 2026

Tracking information

First tracked

May 9, 2026

Last verified

May 9, 2026

Record ID

CA-P-007146

Document ID

CA-D-00156

Evidence Provenance

Source URL

https://www.glassdoor.com/about/privacy.htm

Wayback Machine

View archived versions →

Content hash (SHA-256)

2329494347aff6e7bbcf6f8e7636d842732763f76f994262bac9365b89daa06f

Analysis generated

May 9, 2026 15:12 UTC

Methodology

summarize_document-v8

Evidence

✓ Snapshot stored ✓ Hash verified

Citation Record

Entity: Glassdoor
Document: Glassdoor Privacy Policy
Record ID: CA-P-007146
Captured: 2026-05-09 15:12:51 UTC
SHA-256: 2329494347aff6e7…
URL: https://conductatlas.com/platform/glassdoor/glassdoor-privacy-policy/sensitive-personal-information-collection/
Accessed: May 13, 2026

Permanent archival reference. Stable identifier suitable for legal filings, compliance documentation, and research citation.

Classification

Severity

High

Other risks in this policy

Data Sharing With Employers and Advertising Partners high
Affiliate Data Sharing (Indeed and Indeed Flex) medium
GDPR Data Controller and Representative Designation medium
Job Application Data Collection high
Communications Activity Tracking medium
Direct Messages Data Collection medium

Professional Governance Intelligence

Need to monitor specific governance provisions?

Professional includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.

Arbitration clauses AI governance Data rights Indemnification Retention policies

Start Professional free trial

Or start with Watcher →

Built from archived source documents, structured governance mappings, and historical version tracking.

Frequently Asked Questions

What does Glassdoor's Sensitive Personal Information Collection clause do?

How does this clause affect you?

How many platforms have this type of clause?

ConductAtlas has identified this type of provision across 8 platforms. See the full comparison.

Is ConductAtlas affiliated with Glassdoor?

No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Glassdoor.