Peloton's privacy policy explains what personal information they collect when you use their bikes, apps, and services — including your workout data, health metrics, and location. This data may be shared with advertising partners and third parties for marketing purposes. You have rights to access, delete, or opt out of certain data uses, especially if you live in California, the EU, or the UK.
Peloton's Privacy Policy governs the collection, use, disclosure, and retention of personal information across its connected fitness hardware, digital platforms, applications, and services. The policy identifies multiple categories of data collected — including biometric/health data, precise geolocation, device identifiers, workout performance metrics, and usage data — and discloses sharing with third-party advertising partners, service providers, and analytics vendors. It establishes rights for California residents under CCPA, EU/UK users under GDPR, and provides opt-out mechanisms for targeted advertising and data sale. Notable provisions include the collection of sensitive health and fitness data tied to device usage, cross-context behavioral advertising disclosures, and the deployment of third-party tracking technologies including pixels and cookies. The policy also addresses data retention, international data transfers, and user rights to access, correct, delete, and port their personal data.
This policy engages CCPA/CPRA (California), GDPR (EU), and UK GDPR, creating significant compliance obligations around sensitive health and biometric data collection, cross-border data transfers, and…
This policy engages CCPA/CPRA (California), GDPR (EU), and UK GDPR, creating significant compliance obligations around sensitive health and biometric data collection, cross-border data transfers, and targeted advertising disclosures. The collection of health and fitness metrics may intersect with s…
Compliance intelligence locked
Regulatory exposure, material risk, and due diligence action items.