Noom Privacy Policy — Noom

8 Total

2 High severity

6 Medium severity

0 Low severity

Summary

Noom's privacy policy explains what personal information the app collects about you — including your weight, diet, health habits, and even mental health data — and how it uses and shares that information with advertisers and other companies. Noom may use your health data to personalize services and for marketing purposes, and shares data with third-party partners. You can request deletion of your data or opt out of certain data sharing by contacting Noom directly.

Technical Summary

Noom's Privacy Policy governs the collection, use, storage, and sharing of personal data across its websites, mobile applications, devices, and related health and wellness services. The policy discloses collection of sensitive health-related data including weight, food logs, exercise activity, biometric data, and mental health information, as well as device identifiers, location data, and behavioral analytics. Data is shared with third-party service providers, advertising partners, and analytics vendors, with limited sharing controls available to users. The policy provides opt-out mechanisms for certain data uses, including marketing communications and some third-party sharing, and includes state-specific rights for California, Virginia, Colorado, and other US residents under applicable consumer privacy laws. No explicit HIPAA compliance framework is asserted, which is notable given the sensitivity of health data collected.

Institutional Analysis

This policy engages primarily with the CCPA/CPRA (California), Virginia CDPA, Colorado CPA, and analogous state privacy frameworks, as well as GDPR and UK GDPR for international users. Compliance teams should note the absence of an explicit HIPAA compliance assertion despite collection of health an…

🔒

Compliance intelligence locked

Regulatory exposure, material risk, and due diligence action items.

Watcher $9.99/mo Professional $149/mo

Evidence Provenance

Captured April 3, 2026 05:37 UTC

Document ID CA-D-000397

Version ID CA-V-000442

Source URL https://www.noom.com/noom-privacy-policy/

Wayback Machine View archived versions →

SHA-256 856e9488bfa3d40641f1ae190834271fb92cfb6adfcc66dbe3da6f187d36180b

✓ Snapshot stored ✓ Text extracted ✓ Change verified ✓ Cryptographically signed

Change Timeline

April 3, 2026 — Document updated low

Noom added short 'Summary' sections at the top of key parts of their privacy policy on April 3, 2026, giving users a quick overview of what each section covers before diving into details. The policy now includes brief plain-language summaries explaining what data is collected, how it's used, and how it's shared. This is a transparency improvement that makes it easier for everyday users to understand their data rights without reading the full legal text.

24 added · 12 modified
View changes → View record →
856e9488…
March 24, 2026 — Initial capture

First snapshot archived

6206ebec…

Analyzed Changes

1 change analyzed since monitoring began.

Updated April 3, 2026

low

What changed Noom updated their Noom Privacy Policy on April 03, 2026. Change detected: 24 sentence(s) added, 12 sentence(s) modified. Document contained 176 sentences after update.

Consumer impact Noom added concise plain-language summaries to the data collection, data use, and data sharing sections of their privacy policy, making it easier for users to quickly understand how their information is handled. These summaries do not change the underlying data practices but improve transparency and readability for all users. You can review the updated policy on Noom's website to see a clearer breakdown of what data is collected and how it is used.

Why it matters Noom now provides plain-language summaries at the top of key policy sections, making it easier for users to understand how their health and personal data is collected, used, and shared without reading dense legal text. This improves transparency but does not change any underlying data practices.

High Severity — 2 provisions

Collection of Sensitive Health Data
Noom collects highly personal health information including your weight, food logs, exercise habits, biometric data, and mental health information when you use the app.

Added March 24, 2026
Sharing Data with Advertising and Analytics Partners
Noom shares your personal data — including behavioral and usage data — with third-party advertising networks and analytics companies to personalize ads and measure marketing effectiveness.

Added March 24, 2026

Medium Severity — 6 provisions

Do Not Sell or Share My Personal Information (CCPA/CPRA Opt-Out)
California residents and users in certain other states have the right to opt out of the sale or sharing of their personal information with third parties, including advertising partners.

Added March 24, 2026
Data Retention Policy
Noom retains your personal data for as long as your account is active or as needed to provide services, comply with legal obligations, resolve disputes, and enforce agreements.

Added March 24, 2026
Children's Privacy (Under 13)
Noom states that its services are not directed to children under 13 and that it does not knowingly collect personal information from children under 13.

Added March 24, 2026
User Rights for EU and UK Residents (GDPR)
Users in the European Union and United Kingdom have additional rights under GDPR/UK GDPR, including rights to access, correct, delete, restrict processing, and port their personal data.

Added March 24, 2026
Use of Cookies and Tracking Technologies
Noom uses cookies, pixel tags, and similar tracking technologies on its website and app to collect data about your browsing behavior, device, and interactions for analytics and advertising purposes.

Added March 24, 2026
Data Security Practices
Noom states it uses reasonable technical and organizational measures to protect your personal data from unauthorized access, but acknowledges that no security system is completely secure.

Added March 24, 2026