What are the institutional and regulatory implications of this document?

REGULATORY LANDSCAPE: This policy engages the California Consumer Privacy Act and California Privacy Rights Act, with Poshmark explicitly acknowledging that certain data sharing with third parties may constitute a sale or sharing of personal information under California law, triggering opt-out rights; the policy also references state privacy laws in Nevada, Virginia, Colorado, Connecticut, and Utah, and signals GDPR-adjacent obligations for international users. The FTC retains broad jurisdictio…

How does Poshmark's Poshmark Privacy Policy affect users?

The policy establishes that Poshmark collects and shares personal data including purchase history, device information, and browsing behavior with business partners for cross-context behavioral advertising. Public content posted by users is visible to other platform users and third parties by default and is not guaranteed to be removed upon account deletion. Users in California may submit opt-out requests through privacy settings or at privacy.poshmark.com to restrict the sale and sharing of per…

How often is Poshmark's Poshmark Privacy Policy updated?

ConductAtlas monitors this document daily and captures every version with cryptographic hashing and timestamp verification. Update frequency varies — see the change timeline on this page for complete version history.

Can I get alerted when Poshmark updates this document?

Yes. Watcher subscribers ($9.99/month) can add Poshmark to their watchlist and receive same-day email alerts whenever this document or any other Poshmark document changes.

CA-D-000334

Poshmark Privacy Policy

Poshmark

Last change detected April 19, 2026 Privacy policy

SHA-256: e8c42ef424cd6f35064… 3 versions captured 2 changes documented

Create free account

Track 1 platform and get the weekly governance digest. No credit card required.

View original document at Poshmark ↗

This page describes what the document states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability may vary by jurisdiction. Methodology

9 Total

1 High severity

8 Medium severity

0 Low severity

Summary

This document establishes Poshmark's data collection and use practices for users engaging in buying, selling, and browsing on its fashion resale platform. The policy authorizes collection of personal information including name, address, payment details, device identifiers, photos, and user activity, with provisions permitting disclosure to business partners for marketing and advertising purposes. User-generated content posted publicly on the platform, including profiles, listings, and comments, remains accessible to other users and third parties and may persist following account deletion.

Technical / Legal Breakdown

This document is Poshmark's Privacy Policy, governing the collection, use, disclosure, and retention of personal information from users of the Poshmark platform, a peer-to-peer social commerce marketplace, with a stated legal basis rooted in contractual necessity, consent, and legitimate business interests. The policy states that Poshmark collects a broad range of personal data including name, address, payment information, device identifiers, geolocation, photos, browsing and purchase history, and social graph connections, and the terms authorize use of this data for purposes including personalization, advertising, analytics, fraud prevention, and sharing with third-party business partners and service providers. Notably, the policy reserves the right to share personal information with a wide category of 'business partners' for marketing purposes and authorizes cross-context behavioral advertising, which the terms separately acknowledge may constitute a 'sale' or 'sharing' of personal data under California law, creating opt-out obligations; the breadth of the business partner sharing category and the public nature of user-generated content on the platform are operationally distinct from many consumer platforms where social visibility is more limited. The policy explicitly engages California Consumer Privacy Act and California Privacy Rights Act frameworks, providing opt-out mechanisms for data sale and sharing and sensitive data use, and acknowledges obligations to Nevada, Virginia, Colorado, Connecticut, and Utah residents, as well as referencing GDPR-equivalent obligations for users in certain international regions; enforcement context and the scope of applicable state privacy laws continue to evolve, and the practical enforceability of specific terms may vary by jurisdiction. Compliance teams should note that Poshmark's status as a social commerce platform means user-generated content, including photos and profile information, is broadly public by default, and the policy's treatment of publicly posted data as outside standard deletion or restriction rights warrants careful review.

Institutional Analysis

Institutional analysis available with Professional

Regulatory exposure by statute, material risk assessment, vendor due diligence action items, and enforcement precedent. Available on Professional.

Start Professional free trial

2 important changes detected

3 versions captured · Last updated: April 2026

April 19, 2026

medium

What changed Poshmark significantly expanded and restructured its Privacy Policy on April 19, 2026, adding 249 sentences to provide detailed disclosure of data collection, use, and sharing practices. The updated policy now explicitly describes what types of personal data the company collects (including names, addresses, payment information, photos, videos, and interaction data), how it uses that data, and how consumers can exercise their rights. The prior version was much shorter and less detailed, so this change increases transparency about Poshmark's data practices but does not appear to announce new data uses or remove consumer protections.

Why this matters Poshmark's updated Privacy Policy provides significantly more transparent disclosure about what personal data the company collects, how it uses that data, and how you can exercise your privacy rights. The policy now explicitly itemizes data collection points, including photos, videos, payment information, social media accounts, and user interaction data, and provides a dedicated section on consumer rights and choices. The policy also includes a dedicated California Privacy Notice supplement, indicating enhanced compliance with California privacy laws. You can review the full updated policy and California Privacy Notice to understand Poshmark's specific data practices and identify which privacy rights and choices are available to you.

View full change record →

March 25, 2026

medium

What changed Poshmark expanded and reorganized its privacy policy on March 25, 2026, adding 249 sentences of new content that detail what data the company collects, how it uses that data, and user rights. The updated policy now explicitly describes collection of information you provide directly (name, address, phone, email, sizing preferences), data generated when using the service (listings, photos, videos, purchase history, interactions with other users), and payment information for transactions. This represents a shift from the previous version toward more granular disclosure of data collection practices, though the actual data handling practices may not have changed.

Why this matters Poshmark's updated privacy policy provides more explicit detail about what categories of personal data the company collects through the platform, including user-generated content (photos, videos, listings), interaction data (likes, comments, offers), and payment information. The expanded disclosure does not necessarily indicate new data collection practices, but gives users clearer visibility into what information Poshmark holds. You can review the full policy at Poshmark's website to understand which data collection practices apply to your account activity and, if you are a California resident, consult the supplementary California Privacy Notice referenced in the policy.

View full change record →

High — 1 provision

Business Partner Data Sharing for Marketing Compare →

Poshmark can share your personal information with outside companies for their own marketing purposes, including companies that run co-branded promotions with Poshmark.

Added May 10, 2026 Standard Seen across 246 platforms

Medium — 8 provisions

Public Content Exclusion from Deletion Rights Compare →

Even if you delete your Poshmark account, content you posted publicly, like listings and comments, may remain visible to other users or third parties who have already copied or saved it.

Added May 10, 2026 Standard Seen across 223 platforms
California Data Sale and Sharing Opt-Out Compare →

If you live in California, you have the right to tell Poshmark to stop selling or sharing your personal data with third parties for advertising, and Poshmark states it will not treat you worse for making that request.

Added May 10, 2026 Standard Seen across 262 platforms
Cookies and Cross-Context Behavioral Advertising Compare →

Poshmark tracks your activity on its site and on other websites using cookies and similar tools, and shares that tracking data with advertising partners so you can be shown targeted ads elsewhere on the internet.

Added May 10, 2026 Standard Seen across 189 platforms
Data Collection Scope and Categories Compare →

Poshmark collects a broad range of information about you, including your contact details, payment information, photos, shopping behavior, search history, and technical information about the device you use to access the platform.

Added May 10, 2026 Standard Seen across 251 platforms
User-Generated Content Public Visibility Compare →

Everything you post on Poshmark, including your listings, comments, and profile, is publicly visible to anyone on the internet and may appear in search engine results.

Added May 10, 2026 Standard Seen across 198 platforms
Data Retention and Account Deletion Compare →

Poshmark keeps your personal information as long as it needs to for business, legal, or compliance reasons, and will delete or anonymize it when you close your account, unless a legal obligation requires keeping it.

Added May 10, 2026 Standard Seen across 223 platforms
Children's Privacy and Age Restriction Compare →

Poshmark states it does not intentionally collect data from children under 13 and will delete such data if discovered, which reflects the baseline requirement under federal law for online services.

Added May 10, 2026 Standard Seen across 262 platforms
International Data Transfers Compare →

If you use Poshmark from outside the US, your personal data will be transferred to and processed in the United States, and using the platform is treated as consent to that transfer.

Added May 10, 2026 Standard Seen across 246 platforms