Use of Cookies and Tracking Technologies

What it is

Noom and its partners use cookies and tracking pixels to monitor how you use the app and website, and to show you targeted ads on other websites and platforms.

Why it matters (compliance & governance perspective)

The clause establishes the operational basis for data collection infrastructure and ad targeting mechanisms. It documents that tracking occurs both through first-party (Noom) and third-party vendor implementations across multiple technical channels.

Consumer impact (what this means for users)

Tracking pixels and cookies used by Noom and its advertising partners can monitor your behavior across the web, connecting your health app activity to broader online advertising profiles. Users concerned about cross-site tracking should review their browser and device cookie settings and consider using Noom's cookie preference center if available.

What you can do

Institutional analysis (Compliance & governance intelligence)

REGULATORY LANDSCAPE: The use of advertising pixels and third-party tracking technologies on health-related platforms engages the FTC Act (unfair and deceptive practices), CPRA (which treats sharing data via pixels with advertising networks as a sale or sharing requiring opt-out), and the EU ePrivacy Directive and GDPR (requiring prior consent for non-essential cookies); the FTC and HHS have issued guidance specifically warning against the use of tracking pixels on health-related websites and apps. GOVERNANCE EXPOSURE: High. The deployment of advertising pixels on a health platform is an area of active regulatory and enforcement concern; the FTC and state AGs have taken action against health platforms that transmitted sensitive user data to advertising networks via tracking technologies without adequate disclosure or consent; this is one of the highest-risk specific practices disclosed in the policy. JURISDICTION FLAGS: California (CPRA requires opt-out of sharing via pixels with advertising partners); EU/EEA and UK (ePrivacy Directive and GDPR require prior consent for non-essential cookies); US federal (FTC guidance on health data and tracking technologies); all US states with comprehensive privacy laws that include opt-out rights for targeted advertising. CONTRACT AND VENDOR IMPLICATIONS: Advertising pixel vendor agreements should specify what data is transmitted, restrict secondary use, and include data processing addenda; periodic audits of pixel and SDK integrations should confirm that actual data transmissions match policy disclosures. COMPLIANCE CONSIDERATIONS: A technical audit of all tracking technologies deployed on Noom's platforms should be conducted to confirm the data transmitted via pixels does not include health data beyond what is disclosed and consented to; the cookie consent mechanism should be reviewed for compliance with GDPR and ePrivacy Directive requirements for EU/UK users; California users should have an accessible and functional opt-out of sharing via advertising pixels.

Applicable agencies

Applicable regulations

Provision details

Other risks in this policy

• Sensitive Health Data Collection medium
• Third-Party Sharing for Advertising medium
• HIPAA Non-Applicability Disclaimer medium
• California CPRA Rights low
• GDPR and UK GDPR Rights for EU and UK Users low
• Data Retention Policy low

Related Analysis

• Netflix Updated Terms Authorize Voice Data Collection: April 2026

  Netflix updated its Privacy Statement on April 18, 2026, disclosing voice recording collection and expanded household ad profiling for the first time.

• What Google Actually Knows About You

  Google's Privacy Policy covers Search, Gmail, YouTube, Maps, and every site running Google Analytics. Here is what it actually authorizes.