Public automatically collects technical information about how you use its platform, including your IP address, the pages you visit, how long you stay, and data gathered through cookies and tracking pixels.
This analysis describes what Public.com's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
This automatic collection occurs whether or not you actively provide information, and the data gathered may be shared with advertising and analytics vendors, some of whom may use it for cross-site tracking purposes.
Interpretive note: The specific third-party tracking vendors and the scope of data transmitted to them are not named in the policy, creating ambiguity about whether disclosed sharing categories fully capture actual data flows.
Simply browsing the Public website or app results in collection of your IP address, browsing behavior, and device identifiers through cookies and tracking pixels. This data may be shared with third-party analytics and advertising partners.
How other platforms handle this
At Ledger, earning and maintaining our users' trust is a top priority. That's why we are deeply committed not only to protecting your privacy and securing your personal data, but also to being fully transparent about how we handle it.
If we collect health information from these integrations (such as heart rate), we will not sell or use it for advertising or other similar purposes; we do not disclose it to third parties without your prior consent; and we will only use it for the specific purposes described in this Policy.
We collect your personal data when you use our Services, create a new eBay account, provide us with information via a web form, add or update information in your eBay account, participate in online community discussions or otherwise interact with us.
Monitoring
Public.com has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 25 platforms.
"When you use our Services, we automatically collect certain information about your device and usage, including log data (such as your IP address, browser type, pages visited, and time spent), device information, and information collected through cookies, web beacons, pixels, and similar tracking technologies.— Excerpt from Public.com's Public.com Privacy Policy
REGULATORY LANDSCAPE: Tracking technology practices engage the FTC Act (deceptive practices in disclosures about tracking), CCPA/CPRA (which treats certain tracking as 'sharing' for cross-context behavioral advertising requiring an opt-out), and the EU ePrivacy Directive (if EU users access the platform). For California residents, the use of third-party pixels and trackers that enable cross-context behavioral advertising requires a 'Do Not Sell or Share My Personal Information' opt-out mechanism. The FTC is the primary federal enforcement authority. The California Privacy Protection Agency enforces CPRA. GOVERNANCE EXPOSURE: Medium. Third-party tracking pixels (including Meta Pixel, Google Analytics, and similar tools) have been the subject of regulatory enforcement actions in healthcare and financial services contexts where sensitive behavioral data was transmitted to advertising platforms without adequate disclosure. Public's use of Google Tag Manager is visible in the page source, indicating active use of third-party analytics infrastructure. JURISDICTION FLAGS: California CPRA's opt-out of 'sharing' specifically covers data sent to advertising platforms for cross-context behavioral advertising. EU and UK users would require compliance with ePrivacy and GDPR consent requirements for non-essential cookies. The policy reviewed does not clearly address EU/UK user rights. CONTRACT AND VENDOR IMPLICATIONS: Legal teams should audit the specific third-party pixels and tracking technologies deployed on Public's web properties to confirm that data transmitted to those vendors is disclosed in the privacy policy and covered by appropriate data processing agreements. Pixel-based data sharing with advertising platforms may constitute 'sharing' under CCPA/CPRA regardless of whether Public receives direct payment. COMPLIANCE CONSIDERATIONS: A cookie audit is recommended to inventory all tracking technologies deployed, confirm the categories of data transmitted to third parties, and verify that opt-out mechanisms (including Global Privacy Control signal recognition, which CPPA has indicated is required in California) are operational.
Full compliance analysis
Regulatory citations, enforcement risk, and due diligence action items.
Free: track 1 platform + weekly digest. Monitor: 25 platforms + same-day alerts. No credit card required.
Ad personalization controls removed. Contact scanning added. Advertiser data partnerships quietly dropped. A timeline of every change.
Compliance Governance Intelligence
Need to monitor specific governance provisions?
Compliance includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
This automatic collection occurs whether or not you actively provide information, and the data gathered may be shared with advertising and analytics vendors, some of whom may use it for cross-site tracking purposes.
Simply browsing the Public website or app results in collection of your IP address, browsing behavior, and device identifiers through cookies and tracking pixels. This data may be shared with third-party analytics and advertising partners.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Public.com.