Peloton · Peloton Privacy Policy

California CCPA/CPRA Consumer Rights

Medium severity
Share 𝕏 Share in Share 🔒 PDF

What it is

California residents have specific legal rights under state law to see, delete, correct, and limit how Peloton uses their personal data, including the right to stop Peloton from selling or sharing it.

Consumer impact (what this means for users)

If you live in California, you can legally demand Peloton delete your data, stop sharing it with advertisers, and disclose exactly what data they hold on you — and Peloton must respond within 45 days.

What you can do

⚠️ These actions may provide transparency or partial mitigation but may not fully address the underlying issue. Effectiveness varies by jurisdiction and individual circumstances.
  • Delete Your Data
    Within 45 days
    California residents can submit a data deletion request by emailing privacy@onepeloton.com. Peloton is required to respond within 45 days. Include your account email address and specify which data categories you want deleted.

Cross-platform context

See how other platforms handle California CCPA/CPRA Consumer Rights and similar clauses.

Compare across platforms →
Need full compliance memos? See Professional →

Why it matters (compliance & risk perspective)

These rights are legally enforceable under California law and give California residents meaningful control over how their fitness and personal data is handled by Peloton.

View original clause language
If you are a California resident, you have the right to know what personal information we collect, use, disclose, and sell about you; the right to delete personal information we have collected from you; the right to correct inaccurate personal information; the right to opt out of the sale or sharing of your personal information; and the right to limit the use and disclosure of your sensitive personal information.

Institutional analysis (Compliance & legal intelligence)

REGULATORY FRAMEWORK: This provision directly implements CCPA §1798.100 (right to know), §1798.105 (right to delete), §1798.106 (right to correct), §1798.120 (right to opt out of sale/sharing), and §1798.121 (right to limit sensitive personal information use), all enforced by the California Privacy Protection Agency (CPPA) and California AG. Fines of up to $2,500 per unintentional violation and $7,500 per intentional violation apply.

🔒

Compliance intelligence locked

Regulatory citations, enforcement risk, and due diligence action items.

Watcher $9.99/mo Professional $149/mo

Watcher: regulatory citations. Professional: full compliance memo.

Applicable agencies

  • State AG
    The California Attorney General and California Privacy Protection Agency have joint enforcement authority over CCPA/CPRA rights including deletion, opt-out, and sensitive personal information limitations.
    File a complaint →

Provision details

Document information
Document
Peloton Privacy Policy
Entity
Peloton
Document last updated
April 29, 2026
Tracking information
First tracked
April 27, 2026
Last verified
April 27, 2026
Record ID
CA-P-003561
Document ID
CA-D-00220
Evidence Provenance
Source URL
https://www.onepeloton.com/privacy-policy
Wayback Machine
View archived versions →
SHA-256
e8fc8cb11b93438deea6ca6a3b9483b48da9e48c1c70373df9d2737b0d73f818
Verified
✓ Snapshot stored   ✓ Change verified
How to Cite
ConductAtlas Policy Archive
Entity: Peloton | Document: Peloton Privacy Policy | Record: CA-P-003561
Captured: 2026-04-27 14:37:01 UTC | SHA-256: e8fc8cb11b93438d…
URL: https://conductatlas.com/platform/peloton/peloton-privacy-policy/california-ccpacpra-consumer-rights/
Accessed: May 2, 2026
Classification
Severity
Medium
Categories
Unknown

Other provisions in this document