Target · Target Privacy Policy · View original document ↗

Collection of Sensitive Personal Data (Including Biometric Data)

High severity Unique · 0 of 343 platforms
Share 𝕏 Share in Share 🔒 PDF
Recent governance activity Target recorded 4 documented changes in the last 30 days.
Start monitoring updates
Monitor governance changes for Target Create a free account to receive the weekly governance digest and monitor one platform for governance changes.
Create free account No credit card required.
Document Record

What it is

Target may collect sensitive categories of personal information, including biometric data (such as facial geometry in certain states), precise geolocation, and financial information, depending on how you interact with their services.

This analysis describes what Target's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology

ConductAtlas Analysis

Why it matters (compliance & governance perspective)

Biometric and sensitive data carries heightened privacy risks because it is difficult or impossible to change if compromised, and its collection may be subject to strict state laws like Illinois' BIPA.

Consumer impact (what this means for users)

Target collects extensive personal data — including purchase history, location, browsing behavior, and inferences about your preferences — and shares it with advertising partners and third parties for targeted marketing purposes. This means your shopping habits may be used to build a detailed profile of you that is shared beyond Target itself. You can opt out of the sale and sharing of your personal information by visiting Target's privacy preferences page at https://www.target.com/c/target-privacy-policy/-/N-4sr7p or by using the 'Do Not Sell or Share My Personal Information' link on Target's website.

What you can do

⚠️ These actions may provide transparency or partial mitigation but may not fully address the underlying issue. Effectiveness varies by jurisdiction and individual circumstances.
  • Delete Your Data
    Visit Target's privacy policy page and submit a data deletion request to request removal of sensitive personal data including biometric information.

Cross-platform context

See how other platforms handle Collection of Sensitive Personal Data (Including Biometric Data) and similar clauses.

Compare across platforms →

Monitoring

Target has changed this document before.

Receive same-day alerts, structured change summaries, and monitoring for up to 25 platforms.

Start Monitor free trial Or create a free account →
ConductAtlas Analysis

Institutional analysis (Compliance & governance intelligence)

Collection of biometric identifiers triggers obligations under the Illinois Biometric Information Privacy Act (BIPA), Texas CUBI, and Washington's My Health MY Data Act. CPRA also requires a higher standard of care for sensitive personal information. Legal teams should audit specific biometric data collection practices and consent mechanisms.

Full compliance analysis

Regulatory citations, enforcement risk, and due diligence action items.

Track 1 platform — free Try Monitor free for 14 days

Free: track 1 platform + weekly digest. Monitor: 25 platforms + same-day alerts. No credit card required.

Applicable agencies

  • State AG
    State attorneys general in Illinois, Texas, and Washington enforce biometric privacy laws that may apply to Target's data collection practices.
    File a complaint →
  • FTC
    The FTC has enforcement authority over unfair or deceptive practices involving the collection of sensitive consumer data.
    File a complaint →

Provision details

Document information
Document
Target Privacy Policy
Entity
Target
Document last updated
May 5, 2026
Tracking information
First tracked
March 24, 2026
Last verified
March 24, 2026
Record ID
CA-P-00260001
Document ID
CA-D-00260
Evidence Provenance
Source URL
https://www.target.com/spot/privacy-policy
Wayback Machine
View archived versions →
Content hash (SHA-256)
f370f2b7bfe1531a7cebecc753c3e4d0940e9b6b36104765ee9f68f78c199fe9
Analysis generated
March 24, 2026 07:14 UTC
Methodology
summarize_document-v7
Evidence
✓ Snapshot stored   ✓ Hash verified
Citation Record
Entity: Target
Document: Target Privacy Policy
Record ID: CA-P-00260001
Captured: 2026-03-24 07:14:57 UTC
SHA-256: f370f2b7bfe1531a…
URL: https://conductatlas.com/platform/target/target-privacy-policy/collection-of-sensitive-personal-data-including-biometric-data/
Accessed: June 10, 2026
Permanent archival reference. Stable identifier suitable for legal filings, compliance documentation, and research citation.
Classification
Severity
High
Categories
Privacy Data sharing Surveillance

Other risks in this policy

Compliance Governance Intelligence

Need to monitor specific governance provisions?

Compliance includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.

Arbitration clauses AI governance Data rights Indemnification Retention policies
Start Compliance free trial

Or start with Monitor →

Built from archived source documents, structured governance mappings, and historical version tracking.

Frequently Asked Questions

What does Target's Collection of Sensitive Personal Data (Including Biometric Data) clause do?

Biometric and sensitive data carries heightened privacy risks because it is difficult or impossible to change if compromised, and its collection may be subject to strict state laws like Illinois' BIPA.

Is ConductAtlas affiliated with Target?

No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Target.