If you are under 16 (or a different age threshold depending on your country), Salesforce requires opt-in consent before sharing your personal data with third parties in certain ways, rather than relying on an opt-out approach.
This analysis describes what Salesforce's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
This provision provides heightened protection for younger users, but the exact categories of disclosure requiring opt-in and the verification mechanism are not detailed in this summary document.
Interpretive note: The document does not detail the specific categories of disclosure requiring minor opt-in, the verification mechanism, or how jurisdiction-specific age thresholds below 16 are operationalized.
Minors under 16 are subject to stronger protections requiring their active consent before certain data disclosures. Parents or guardians of minors who interact with Salesforce-operated platforms should be aware of this provision and verify how it is implemented in practice.
How other platforms handle this
At Ledger, earning and maintaining our users' trust is a top priority. That's why we are deeply committed not only to protecting your privacy and securing your personal data, but also to being fully transparent about how we handle it.
If you are located in the European Economic Area, Switzerland, or the United Kingdom, you have the right to access, correct, or erase your personal data; the right to restrict or object to our processing of your personal data; the right to data portability; and, where our processing is based on your...
We use information to enhance the quality, reliability, and/or accuracy of our AI Features by creating, developing, training, testing, improving, and maintaining AI and ML models run by Strava or our service providers. We use aggregated, de-identified data for this purpose. We also use personal info...
Monitoring
Salesforce has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 25 platforms.
"If you're under the age of 16, or such other applicable age of consent for privacy purposes in relevant individual jurisdictions, opt in to certain disclosures of your Personal Data to third parties.— Excerpt from Salesforce's Salesforce Privacy Statement
REGULATORY LANDSCAPE: This provision engages CCPA's minor-specific provisions, which require opt-in consent for the sale of personal information of consumers under 16 (and under 13 requires parental opt-in). It also engages GDPR Article 8, which sets a baseline age of 16 for consent to information society services, with member states permitted to lower this to 13. The FTC's Children's Online Privacy Protection Act may also be relevant depending on whether Salesforce properties are directed at children. GOVERNANCE EXPOSURE: Medium. The statement acknowledges the obligation but does not detail the verification or consent collection mechanism for minors. Regulators have scrutinized the adequacy of age verification and opt-in mechanisms, and vague commitments without operational implementation details create residual compliance risk. JURISDICTION FLAGS: California's CPRA and CCPA create the clearest statutory obligation for this provision in the US context. EU member states have varying age of consent thresholds (13 to 16), creating complexity for multinational operations. The UK's Age Appropriate Design Code (Children's Code) adds additional obligations for services likely to be accessed by children. CONTRACT AND VENDOR IMPLICATIONS: Enterprise customers using Salesforce-operated platforms that may be accessed by minors should assess whether their own services trigger COPPA or equivalent obligations and confirm that Salesforce's data practices align with those obligations. Vendor due diligence should include review of Salesforce's age verification capabilities. COMPLIANCE CONSIDERATIONS: The implementation of the opt-in mechanism for minors should be audited to confirm it meets the standards required under CCPA, GDPR, and applicable member state law. Records of opt-in consents for minor data should be maintained and subject to data minimization review. If Salesforce's platforms are not designed for minor access, documentation of measures taken to prevent minor data collection should be maintained.
Full compliance analysis
Regulatory citations, enforcement risk, and due diligence action items.
Free: track 1 platform + weekly digest. Monitor: 25 platforms + same-day alerts. No credit card required.
Ad personalization controls removed. Contact scanning added. Advertiser data partnerships quietly dropped. A timeline of every change.
Compliance Governance Intelligence
Need to monitor specific governance provisions?
Compliance includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
This provision provides heightened protection for younger users, but the exact categories of disclosure requiring opt-in and the verification mechanism are not detailed in this summary document.
Minors under 16 are subject to stronger protections requiring their active consent before certain data disclosures. Parents or guardians of minors who interact with Salesforce-operated platforms should be aware of this provision and verify how it is implemented in practice.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Salesforce.