Track 1 platform and get the weekly governance digest. No credit card required.
This page describes what the document states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability may vary by jurisdiction. Methodology
This document establishes Poshmark's data collection and use practices for users engaging in buying, selling, and browsing on its fashion resale platform. The policy authorizes collection of personal information including name, address, payment details, device identifiers, photos, and user activity, with provisions permitting disclosure to business partners for marketing and advertising purposes. User-generated content posted publicly on the platform, including profiles, listings, and comments, remains accessible to other users and third parties and may persist following account deletion.
This document is Poshmark's Privacy Policy, governing the collection, use, disclosure, and retention of personal information from users of the Poshmark platform, a peer-to-peer social commerce marketplace, with a stated legal basis rooted in contractual necessity, consent, and legitimate business interests. The policy states that Poshmark collects a broad range of personal data including name, address, payment information, device identifiers, geolocation, photos, browsing and purchase history, and social graph connections, and the terms authorize use of this data for purposes including personalization, advertising, analytics, fraud prevention, and sharing with third-party business partners and service providers. Notably, the policy reserves the right to share personal information with a wide category of 'business partners' for marketing purposes and authorizes cross-context behavioral advertising, which the terms separately acknowledge may constitute a 'sale' or 'sharing' of personal data under California law, creating opt-out obligations; the breadth of the business partner sharing category and the public nature of user-generated content on the platform are operationally distinct from many consumer platforms where social visibility is more limited. The policy explicitly engages California Consumer Privacy Act and California Privacy Rights Act frameworks, providing opt-out mechanisms for data sale and sharing and sensitive data use, and acknowledges obligations to Nevada, Virginia, Colorado, Connecticut, and Utah residents, as well as referencing GDPR-equivalent obligations for users in certain international regions; enforcement context and the scope of applicable state privacy laws continue to evolve, and the practical enforceability of specific terms may vary by jurisdiction. Compliance teams should note that Poshmark's status as a social commerce platform means user-generated content, including photos and profile information, is broadly public by default, and the policy's treatment of publicly posted data as outside standard deletion or restriction rights warrants careful review.
Institutional analysis available with Compliance
Regulatory exposure by statute, material risk assessment, vendor due diligence action items, and enforcement precedent. Available on Compliance.
Start Compliance free trial3 important changes detected
4 versions captured · Last updated: May 2026
Poshmark expanded and reorganized its privacy policy on March 25, 2026, adding 249 sentences of new content that detail what data the company collects, how it uses that data, and …
View change record →This new high-severity provision discloses third-party data sharing for marketing with direct collection rights on platform, representing an expanded and more aggressive data monetization practice.
This provision limits deletion rights by clarifying that publicly posted content may persist indefinitely after account deletion, reducing user control over personal data.
This new comprehensive disclosure itemizes extensive personal, financial, behavioral, and device data collection practices previously described vaguely as 'Financial Information Collection.'
This new provision explicitly warns that user content is searchable and publicly accessible beyond registered users, increasing transparency about content exposure risks.
This new provision establishes COPPA compliance and child protection safeguards with clear notice and reporting procedures for unauthorized child data collection.
This vague provision was removed and replaced with more specific 'Business Partner Data Sharing for Marketing' (now high-severity) that explicitly allows direct partner data collection on platform.
This provision was removed and its content incorporated into the new 'Data Collection Scope and Categories' provision with expanded scope.
This previously identified provision is removed without replacement, creating potential gap in transparency regarding location tracking practices.
This low-severity provision was removed, potentially indicating weaker disclosure of Poshmark's rights to use user-generated content.
Previous version had empty excerpt for 'Cookies and Tracking Technologies'; current version now provides detailed disclosure of cross-context behavioral advertising and partner sharing practices.
Previous version 'Data Retention Practices' and 'Account Closure and Data Handling' had empty excerpts; current version consolidates into single provision with explicit retention criteria and deletion procedures.
Previous 'California CCPA/CPRA Privacy Rights' had empty excerpt; current version now specifies opt-out mechanism for data sale/sharing with direct contact information and non-discrimination promise.
Monitoring
Poshmark has updated this document before.
Monitor includes same-day alerts, structured change summaries, and monitoring for up to 25 platforms.
Compliance Governance Intelligence
Need provision-level monitoring and regulatory mapping?
Compliance includes governance timelines, compliance memos, audit-ready analysis, and full provision tracking.
Start Compliance free trialCross-platform context
See how other platforms handle Business Partner Data Sharing for Marketing and similar clauses.
Compare across platforms →Governance Monitoring
Structured alerts for policy changes, governance events, and provision updates across 318+ platforms.