Peloton may share your personal data including device identifiers and usage behavior with outside advertising companies so they can show you targeted ads.
This analysis describes what Peloton's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
The clause establishes the operational mechanism and scope for data sharing with external parties, defining which categories of personal information may be disclosed and the stated business purposes for such disclosure.
Interpretive note: The specific verbatim text for this provision was not directly accessible due to HTML truncation; this reflects the substance of Peloton's disclosed advertising data sharing practices based on available document content and published policy structure.
Personal information including device data and behavioral patterns from your Peloton use may be shared with advertising partners for targeted advertising, which California residents can opt out of under CCPA/CPRA.
How other platforms handle this
We do not share your personal data with any third-party advertisers or ad networks for their advertising except for: (i) hashed or device identifiers (to the extent they are personal data in some countries), (ii) with your separate permission (e.g., in a lead generation form) or (iii) data already v...
We may share your personal information with third-party vendors and service providers that perform services on our behalf, such as payment processing, data analysis, email delivery, hosting services, customer service, and marketing assistance. We may also share your personal information with busines...
We may share your information with third-party partners, including advertising and analytics companies, to help us understand how you use our services and to show you more relevant ads. These third parties may use cookies, web beacons, and other tracking technologies to collect information about you...
Monitoring
Peloton has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 10 platforms.
"We may share your personal information with third-party advertising partners and analytics providers to deliver targeted advertising and measure the effectiveness of advertising campaigns. This may include sharing identifiers, device data, and behavioral data derived from your use of our Products and Services.— Excerpt from Peloton's Peloton Privacy Policy
REGULATORY LANDSCAPE: Sharing personal data with advertising partners for targeted advertising constitutes a 'sale' or 'sharing' of personal information under California's CPRA, triggering opt-out rights enforceable by the California Privacy Protection Agency and California AG. Under GDPR and UK GDPR, sharing personal data with advertising partners for profiling requires a valid legal basis, typically explicit consent, which must meet the standards of Article 7 GDPR. The EU ePrivacy Directive and UK PECR require consent for use of non-essential cookies and tracking technologies used to enable this sharing. GOVERNANCE EXPOSURE: High. Advertising data sharing involving health-adjacent fitness data creates compounded regulatory exposure. The intersection of sensitive data categories with behavioral advertising is an active area of FTC and state AG enforcement. Consent mechanisms for advertising data sharing must satisfy both cookie law requirements and substantive privacy law standards across jurisdictions. JURISDICTION FLAGS: California residents have a right to opt out of the sale and sharing of personal information under CPRA, including for cross-context behavioral advertising. EU and UK users require opt-in consent for advertising cookies and data sharing for profiling. Global Privacy Control signals must be honored for California users under CPRA. States with comprehensive privacy laws including Virginia, Colorado, Connecticut, and Texas impose similar opt-out rights. CONTRACT AND VENDOR IMPLICATIONS: All advertising technology partners receiving Peloton user data must be governed by data processing agreements specifying permissible use. If advertising partners are classified as independent controllers under GDPR, joint controller agreements may be required. Procurement teams should assess whether advertising SDK integrations in the Peloton app transmit health-adjacent data to ad networks, which would create heightened compliance obligations. COMPLIANCE CONSIDERATIONS: The 'Do Not Sell or Share My Personal Information' mechanism should be audited for functionality and scope, including confirmation that Global Privacy Control signals are correctly processed. Consent banners for EU and UK users should be reviewed against current GDPR consent standards to ensure that advertising consent is freely given, specific, informed, and unambiguous. Data sharing agreements with advertising partners should be reviewed to confirm they do not permit re-identification or secondary use of Peloton-derived health data.
Full compliance analysis
Regulatory citations, enforcement risk, and due diligence action items.
Free: track 1 platform + weekly digest. Watcher: 10 platforms + same-day alerts. No credit card required.
ConductAtlas detected a major restructuring of Meta’s privacy policy that removed detailed consumer rights disclosures and relocated them to separate documents.
Your genetic data may be transferred to a new owner as a business asset. Here is what the Terms of Service actually say and what you can do right now.
Professional Governance Intelligence
Need to monitor specific governance provisions?
Professional includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
The clause establishes the operational mechanism and scope for data sharing with external parties, defining which categories of personal information may be disclosed and the stated business purposes for such disclosure.
Personal information including device data and behavioral patterns from your Peloton use may be shared with advertising partners for targeted advertising, which California residents can opt out of under CCPA/CPRA.
ConductAtlas has identified this type of provision across 27 platforms. See the full comparison.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Peloton.