Meta · Meta Privacy Policy · View original document ↗

Location Data Collection

Medium severity High confidence Explicitdocumentlanguage Uncommon · 20 of 352 platforms
Share 𝕏 Share in Share 🔒 PDF
Recent governance activity Meta recorded 9 documented changes in the last 30 days.
Start monitoring updates
Monitor governance changes for Meta Create a free account to receive the weekly governance digest and monitor one platform for governance changes.
Create free account No credit card required.
Document Record

What it is

The policy states that Meta collects location data including precise device location (where permitted), IP-based location, and location inferred from user activity such as check-ins and events, and uses this data across the purposes described in the policy including advertising.

This analysis describes what Meta's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology

ConductAtlas Analysis

Why it matters (compliance & governance perspective)

This provision establishes that Meta collects multiple categories of location data, ranging from precise GPS-level device location to inferred location from social activity, and applies this data to advertising and personalization purposes across Meta's products.

Recent Activity

This document changed recently

Medium Apr 21, 2026

The updated Privacy Policy no longer explicitly directs US residents to the United States Regional Privacy Notice, which previously provided details about consumer privacy rights available under state laws like the California Consumer Privacy Act and similar regulations. This removal does not eliminate those rights themselves, but it makes the Privacy Policy less clear about where consumers can find information on how to exercise those rights. Consumers can still locate the Regional Privacy Notice through Meta's website or by searching for it directly, but the removal reduces the accessibility and prominence of that guidance within the primary policy document.

View change record →

Clause Stability Stable

0
Changes
4
Months Monitored
Apr 3, 2026
First Seen
May 22, 2026
Last Seen
This clause type exists across 3350 other provisions on other platforms.

Consumer impact (what this means for users)

Under this clause, Meta collects precise device location data when users grant permission, as well as IP-based and activity-inferred location data, and uses these location signals for purposes including targeted advertising, content personalization, and safety features.

What you can do

⚠️ These actions may provide transparency or partial mitigation but may not fully address the underlying issue. Effectiveness varies by jurisdiction and individual circumstances.
  • Opt Out of Arbitration
    To revoke precise location access, go to your device's operating system settings, find the Facebook or Instagram app permissions, and set location access to 'Never' or 'While using the app' as appropriate for your preference.

How other platforms handle this

Threads Medium

We collect information about your location, such as data from your device's GPS or IP address, when you use our products.

Ledger Medium

At Ledger, earning and maintaining our users' trust is a top priority. That's why we are deeply committed not only to protecting your privacy and securing your personal data, but also to being fully transparent about how we handle it.

Strava Medium

If we collect health information from these integrations (such as heart rate), we will not sell or use it for advertising or other similar purposes; we do not disclose it to third parties without your prior consent; and we will only use it for the specific purposes described in this Policy.

See all platforms with this clause type →

Monitoring

Meta has changed this document before.

Receive same-day alerts, structured change summaries, and monitoring for up to 25 platforms.

Get Monitor Or create a free account →
▸ View Original Clause Language DOCUMENT RECORD
"
Location-related information: We use location-related information – such as your current location, where you live, the places you go, and the businesses and people near you – for the purposes described below. Location-related information can be based on things like precise device location (if you've allowed us to collect it), IP addresses, and information from your and others' use of Meta Products (such as check-ins or events you attend).

— Excerpt from Meta's Meta Privacy Policy

ConductAtlas Analysis

Institutional analysis (Compliance & governance intelligence)

(1) REGULATORY LANDSCAPE: Precise location data collection and use for advertising engages GDPR Article 6 lawful basis requirements and may implicate ePrivacy Directive provisions on terminal equipment data in EU jurisdictions. The FTC has issued enforcement guidance on deceptive location data practices under Section 5 of the FTC Act. CCPA/CPRA classifies precise geolocation as sensitive personal information subject to opt-out and use limitation rights for California users. Illinois and other states have enacted location privacy protections that may impose additional constraints. (2) GOVERNANCE EXPOSURE: Medium. Location data collection is subject to increasing regulatory focus globally, particularly for advertising use cases. The collection of precise location requires explicit device-level permission, but IP and activity-based location collection occurs without a separate permission step, which may warrant review in privacy-sensitive contexts. (3) JURISDICTION FLAGS: California (CPRA sensitive personal information provisions), the EU and EEA (GDPR and ePrivacy Directive), and Illinois represent heightened exposure jurisdictions for location data practices. The combination of precise and inferred location data may require evaluation under applicable sensitive data frameworks. (4) CONTRACT AND VENDOR IMPLICATIONS: Advertisers using location-based targeting on Meta's platform should assess whether their use of location-targeted audiences is consistent with their own user consent frameworks and applicable state location privacy laws. (5) COMPLIANCE CONSIDERATIONS: Compliance teams should assess whether the collection of IP-based and activity-inferred location data falls within the scope of sensitive personal information under CPRA and whether appropriate opt-out mechanisms are surfaced to California users. EU DPOs should evaluate whether location data processing for advertising satisfies the necessity and proportionality requirements under GDPR Article 5.

Full compliance analysis

Regulatory citations, enforcement risk, and due diligence action items.

Track 3 platforms — free Get Monitor

Free: track 3 platforms + weekly digest. Monitor: 25 platforms + same-day alerts. No credit card required.

Applicable agencies

  • FTC
    The FTC has enforcement authority over deceptive or unfair location data collection and use practices under Section 5 of the FTC Act.
    File a complaint →

Applicable regulations

EU AI Act
European Union
BIPA
Illinois, USA
CCPA/CPRA
California, USA
COPPA
United States Federal
Colorado AI Act
US-CO
Connecticut Data Privacy Act Amendments
US-CT
CAN-SPAM
United States Federal
FTC Act Section 5
United States Federal
GDPR
European Union
Indiana Consumer Data Protection Act
US-IN
Kentucky Consumer Data Protection Act
US-KY
TCPA
United States Federal
UK GDPR
United Kingdom
Universal Opt-Out Mechanism Expansion 2026
US
VPPA
United States Federal

Provision details

Document information
Document
Meta Privacy Policy
Entity
Meta
Document last updated
July 5, 2026
Tracking information
First tracked
May 20, 2026
Last verified
May 20, 2026
Record ID
CA-P-000188
Document ID
CA-D-00021
Evidence Provenance
Source URL
Wayback Machine
Content hash (SHA-256)
85a8ac13c75e9fa527c230acaa1f83ad701c5f90b31397701c7ada5c66e1e196
Analysis generated
May 20, 2026 21:21 UTC
Methodology
Evidence
✓ Snapshot stored   ✓ Hash verified
Citation Record
Entity: Meta
Document: Meta Privacy Policy
Record ID: CA-P-000188
Captured: 2026-05-20 21:21:08 UTC
SHA-256: 85a8ac13c75e9fa5…
URL: https://conductatlas.com/platform/meta/meta-privacy-policy/location-data-collection/
Accessed: July 5, 2026
Permanent archival reference. Stable identifier suitable for legal filings, compliance documentation, and research citation.
Classification
Severity
Medium
Categories

Other risks in this policy

Related Analysis

Compliance Governance Intelligence

Need to monitor specific governance provisions?

Compliance includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.

Arbitration clauses AI governance Data rights Indemnification Retention policies
Get Compliance

Or start with Monitor →

Built from archived source documents, structured governance mappings, and historical version tracking.

Frequently Asked Questions

What does Meta's Location Data Collection clause do?

This provision establishes that Meta collects multiple categories of location data, ranging from precise GPS-level device location to inferred location from social activity, and applies this data to advertising and personalization purposes across Meta's products.

How does this clause affect you?

Under this clause, Meta collects precise device location data when users grant permission, as well as IP-based and activity-inferred location data, and uses these location signals for purposes including targeted advertising, content personalization, and safety features.

How many platforms have this type of clause?

ConductAtlas has identified this type of provision across 20 platforms. See the full comparison.

Is ConductAtlas affiliated with Meta?

No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Meta.