Meta · Meta Business Tools Terms · View original document ↗

GDPR joint controllership for targeting and delivery Event Data

High severity Medium confidence Explicitdocumentlanguage Common · 277 of 352 platforms
Share 𝕏 Share in Share 🔒 PDF
Recent governance activity Meta recorded 14 documented changes in the last 30 days.
Start monitoring updates
Monitor governance changes for Meta Create a free account to receive the weekly governance digest and monitor one platform for governance changes.
Create free account No credit card required.

This analysis describes what Meta's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology

ConductAtlas Analysis

Why it matters (compliance & governance perspective)

Joint Controller status under Article 26 GDPR means both parties share legal responsibility for the processing, including obligations to data subjects, which expands the advertiser's GDPR liability beyond the Controller-Processor arrangement.

Interpretive note: The excerpt does not fully specify which 'certain Meta Business Tools' trigger joint controllership, introducing some uncertainty about scope. The canonical claim faithfully reproduces the excerpt's language of 'certain Meta Business Tools' without narrowing or broadening it.

Consumer impact (what this means for users)

Meta requires advertisers to accept shared GDPR legal responsibility with Meta Ireland for the collection and transmission of Personal Information through certain Meta Business Tools.

How other platforms handle this

ZipRecruiter Medium

We use information derived from cookies together with other Personal Data that you have already shared with us to deliver you information about employment opportunities that may interest you based on the job searches you made on the Website...

MyFitnessPal Medium

We use your personal information to send you newsletters and other promotional communications, including information about MyFitnessPal's new offerings, features, offers, events, webinars, and other information.

Lyft Medium

We may infer certain information from your interactions with the Lyft Platform and other personal information available to us. For example, if you frequently ride to or from airports, we may infer you are a frequent traveler.

See all platforms with this clause type →

Monitoring

Meta has changed this document before.

Receive same-day alerts, structured change summaries, and monitoring for up to 25 platforms.

Get Monitor Or create a free account →
▸ View Original Clause Language DOCUMENT RECORD
"
you and Meta Ireland acknowledge and agree to be Joint Controllers in accordance with Article 26 GDPR... The joint controllership extends to the collection of such Personal Information via certain Meta Business Tools and its subsequent transmission to Meta Ireland...

— Excerpt from Meta's Meta Business Tools Terms

Applicable regulations

EU AI Act
European Union
BIPA
Illinois, USA
CCPA/CPRA
California, USA
COPPA
United States Federal
Colorado AI Act
US-CO
CAN-SPAM
United States Federal
ePrivacy Directive
European Union
FTC Act Section 5
United States Federal
GDPR
European Union
TCPA
United States Federal
UK GDPR
United Kingdom

Provision details

Document information
Document
Meta Business Tools Terms
Entity
Meta
Document last updated
May 20, 2026
Tracking information
First tracked
May 20, 2026
Last verified
May 20, 2026
Record ID
CA-P-063811
Document ID
CA-D-00867
Evidence Provenance
Source URL
Wayback Machine
Content hash (SHA-256)
a2e18a7f5cfaba81936850309523138f4ae73c4ba5bf210fc9d0eee882258d7d
Analysis generated
May 20, 2026 23:35 UTC
Methodology
Evidence
✓ Snapshot stored   ✓ Hash verified
Citation Record
Entity: Meta
Document: Meta Business Tools Terms
Record ID: CA-P-063811
Captured: 2026-05-20 23:35:50 UTC
SHA-256: a2e18a7f5cfaba81…
URL: https://conductatlas.com/platform/meta/meta-business-tools-terms/provision/CA-P-063811/gdpr-joint-controllership-for-targeting-and-delivery-event-data/
Accessed: July 12, 2026
Permanent archival reference. Stable identifier suitable for legal filings, compliance documentation, and research citation.
Classification
Severity
High
Categories

Other risks in this policy

Related Analysis

Compliance Governance Intelligence

Need to monitor specific governance provisions?

Compliance includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.

Arbitration clauses AI governance Data rights Indemnification Retention policies
Get Compliance

Or start with Monitor →

Built from archived source documents, structured governance mappings, and historical version tracking.

Frequently Asked Questions

What does Meta's GDPR joint controllership for targeting and delivery Event Data clause do?

Joint Controller status under Article 26 GDPR means both parties share legal responsibility for the processing, including obligations to data subjects, which expands the advertiser's GDPR liability beyond the Controller-Processor arrangement.

How does this clause affect you?

Meta requires advertisers to accept shared GDPR legal responsibility with Meta Ireland for the collection and transmission of Personal Information through certain Meta Business Tools.

How many platforms have this type of clause?

ConductAtlas has identified this type of provision across 277 platforms. See the full comparison.

Is ConductAtlas affiliated with Meta?

No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Meta.