What are the institutional and regulatory implications of this document?

REGULATORY LANDSCAPE: This policy engages the California Consumer Privacy Act as amended by the California Privacy Rights Act (CCPA/CPRA), which grants California residents rights to access, delete, correct, and opt out of the sale or sharing of personal information, enforced by the California Privacy Protection Agency and the California Attorney General. The policy's disclosure of biometric data collection may also implicate the Illinois Biometric Information Privacy Act (BIPA) or similar stat…

How does Home Depot's Home Depot Privacy Policy affect users?

The policy establishes that Home Depot collects personal information including purchase history, precise location data, and browsing behavior, and permits disclosure of this information to third-party advertising and analytics partners for behavioral marketing. Users have the ability to opt out of the sale or sharing of personal information through the 'Do Not Sell or Share My Personal Information' link on Home Depot's website, with opt-out rights available to California residents and users in …

How often is Home Depot's Home Depot Privacy Policy updated?

ConductAtlas monitors this document daily and captures every version with cryptographic hashing and timestamp verification. Update frequency varies — see the change timeline on this page for complete version history.

Can I get alerted when Home Depot updates this document?

Yes. Monitor subscribers ($19/month) can add Home Depot to their watchlist and receive same-day email alerts whenever this document or any other Home Depot document changes.

CA-D-000621

Home Depot Privacy Policy

Home Depot

Last change detected June 5, 2026 Privacy policy

SHA-256: bb23a374fb3a69e98de… 2 versions captured 1 change documented

Create free account

Track 1 platform and get the weekly governance digest. No credit card required.

View original document at Home Depot ↗

This page describes what the document states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability may vary by jurisdiction. Methodology

8 Total

2 High severity

5 Medium severity

1 Low severity

Summary

This document establishes Home Depot's policies for collection, use, and disclosure of personal information obtained through online and in-store transactions. The policy authorizes collection of purchase history, precise geolocation, browsing behavior, and biometric information, with authorization to share such data with advertising and analytics partners for targeted marketing purposes. The policy provides for opt-out mechanisms available to California residents and users in certain other states through a designated link on Home Depot's website.

Technical / Legal Breakdown

This document is Home Depot's consumer-facing privacy policy governing the collection, use, sharing, and protection of personal information across its websites, mobile applications, stores, and related services. The policy states that Home Depot collects a broad range of personal data including identifiers, commercial information, geolocation data, biometric information, internet activity, audio and visual data, and inferences drawn from these categories, and asserts rights to use this data for advertising, analytics, personalization, and sharing with third-party partners and service providers. Notably, the policy discloses collection of biometric data and precise geolocation, and asserts the right to share personal information with advertising partners for cross-context behavioral advertising, though it also describes opt-out mechanisms for sale and sharing of personal data; the breadth of data categories collected and the scope of third-party sharing may warrant evaluation under applicable state privacy laws. The policy engages the California Consumer Privacy Act (CCPA) as amended by CPRA, as well as other U.S. state privacy frameworks, and references specific consumer rights including access, deletion, correction, and opt-out of sale or sharing; applicability of additional state frameworks depends on user jurisdiction. Material compliance considerations include the disclosure of biometric data collection, the adequacy of consent mechanisms for sensitive data categories, and the robustness of opt-out pathways for targeted advertising and data sale.

Institutional Analysis

Institutional analysis available with Compliance

Regulatory exposure by statute, material risk assessment, vendor due diligence action items, and enforcement precedent. Available on Compliance.

Start Compliance free trial

1 important change detected

2 versions captured · Last updated: June 2026

June 5, 2026

low

What changed Home Depot updated its privacy policy on June 5, 2026 to add explicit language stating: 'We will not disclose text messaging opt-in consent to third parties for their own marketing purposes.' This clarifies that when customers consent to receive text messages from Home Depot, that consent information itself will not be shared with third parties for those third parties' own marketing campaigns. The updated terms establish a boundary on consent data sharing that was not previously stated in the policy.

Why this matters The updated policy now explicitly states that Home Depot will not share your text message opt-in consent with third parties for their marketing purposes. This clarifies a boundary on how consent data is treated. You can review Home Depot's full privacy policy to understand other data collection and sharing practices.

View full change record →

Recent Provision Changes Jun 5, 2026

8 provisions unchanged.

View full change record →

High — 2 provisions

Biometric Information Collection Compare →

Home Depot states it may collect biometric data such as fingerprints, facial geometry, and voice recognition when you interact with them, including in physical stores.

Added May 11, 2026 Standard Seen across 284 platforms
Sensitive Personal Information Handling Compare →

Home Depot collects sensitive personal data categories including precise location, racial or ethnic origin, the contents of your messages, and biometric information, and states it uses this data only for permitted purposes.

Added May 11, 2026 Standard Seen across 284 platforms

Medium — 5 provisions

Precise Geolocation Data Collection Compare →

Home Depot may collect your precise physical location through its mobile app or website if you grant permission, as well as your general location from your IP address.

Added May 8, 2026 Standard Seen across 284 platforms
Third-Party Advertising Data Sharing Compare →

Home Depot shares your personal information with advertising networks, data analytics companies, and social media platforms so they can show you targeted ads based on your behavior and interests.

Added May 11, 2026 Standard Seen across 252 platforms
Opt-Out of Sale or Sharing of Personal Information Compare →

You can request that Home Depot stop selling or sharing your personal data for advertising purposes by clicking a specific link on their website or contacting them directly.

Added May 11, 2026 Standard Seen across 284 platforms
Consumer Privacy Rights Request Process Compare →

Depending on your state, you may have rights to access, delete, correct, or opt out of sharing of your personal data, and you can exercise these rights by visiting a web page or calling Home Depot.

Added May 11, 2026 Standard Seen across 284 platforms
Data Retention and Deletion Compare →

Home Depot keeps your personal data for as long as needed for business, legal, and operational purposes, and states it will delete or anonymize data when it is no longer needed.

Added May 11, 2026 Standard Seen across 284 platforms

Low — 1 provision

Children's Privacy Compare →

Home Depot states its services are not intended for children under 13 and that it does not knowingly collect their personal data, and will delete any such data if discovered.

Added May 11, 2026 Standard Seen across 284 platforms

Monitoring

Home Depot has updated this document before.

Monitor includes same-day alerts, structured change summaries, and monitoring for up to 25 platforms.

Start Monitor free trial Or create a free account →

Compliance Governance Intelligence

Need provision-level monitoring and regulatory mapping?

Compliance includes governance timelines, compliance memos, audit-ready analysis, and full provision tracking.

Start Compliance free trial

Cross-platform context

See how other platforms handle Biometric Information Collection and similar clauses.

Compare across platforms →