This analysis describes what Heap's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
Customers bear the operational obligation to technically prevent unauthorized personal data from reaching Contentsquare, placing compliance responsibility on the customer.
You are required to implement technical measures, such as blocking Scripts, to stop non-permitted Visitor Personal Data from being sent to Contentsquare.
How other platforms handle this
Automatically collected data may be linked to other Personal Data such as user name, email address and phone number.
Category B: Personal information categories listed in the California Customer Records statute (Cal. Civ. Code § 1798.80(e))... bank account number, credit card number, debit card number, or any other financial information... Collected: Yes.
If you are an individual user, we collect, use, transfer, disclose and store any personal Data you provide to us in accordance with our privacy policy, (available on our website), and Applicable Privacy Laws.
Monitoring
Heap has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 25 platforms.
"Customer shall prevent the transfer of any Personal Data of Visitors (other than the Permitted Personal Data) to Contentsquare, including, but not limited to, by implementing the appropriate blocking Scripts...— Excerpt from Heap's Heap Terms of Service
Netflix updated its Privacy Statement on April 18, 2026, disclosing voice recording collection and expanded household ad profiling for the first time.
Google's Privacy Policy covers Search, Gmail, YouTube, Maps, and every site running Google Analytics. Here is what it actually authorizes.
Compliance Governance Intelligence
Need to monitor specific governance provisions?
Compliance includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
Customers bear the operational obligation to technically prevent unauthorized personal data from reaching Contentsquare, placing compliance responsibility on the customer.
You are required to implement technical measures, such as blocking Scripts, to stop non-permitted Visitor Personal Data from being sent to Contentsquare.
ConductAtlas has identified this type of provision across 300 platforms. See the full comparison.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Heap.