Writer collects your name, email, company information, what you type into the platform, how you use the service, your device details, payment information, and data from any third-party tools you connect.
This analysis describes what Writer's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
The breadth of data collected, particularly User Content (what you write and submit) and usage data, means Writer has access to potentially sensitive business information beyond basic account details.
Removed explicit mention of password, User Content, device/log information, payment information, and third-party integrations; replaced with more general language about usage analytics and job title.
View full change record →Everything you type, submit, or interact with on Writer's platform may be collected and stored, including content that could contain proprietary business information, making it important to understand how that data is used and retained.
How other platforms handle this
At Ledger, earning and maintaining our users' trust is a top priority. That's why we are deeply committed not only to protecting your privacy and securing your personal data, but also to being fully transparent about how we handle it.
If we collect health information from these integrations (such as heart rate), we will not sell or use it for advertising or other similar purposes; we do not disclose it to third parties without your prior consent; and we will only use it for the specific purposes described in this Policy.
We collect your personal data when you use our Services, create a new eBay account, provide us with information via a web form, add or update information in your eBay account, participate in online community discussions or otherwise interact with us.
Monitoring
Writer has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 25 platforms.
"We collect information you provide directly to us, such as when you create an account, use our Services, or communicate with us. This includes account information (name, email address, password, company name), content and inputs you submit through the Services (User Content), usage data, device and log information, payment information, and information from third-party integrations.— Excerpt from Writer's Writer Privacy Policy
REGULATORY LANDSCAPE: The collection of User Content, usage data, and device identifiers engages GDPR's broad definition of personal data where individuals can be identified. CCPA and CPRA define personal information broadly to include identifiers, commercial information, internet activity, and inferences drawn from collected data, all of which are present in Writer's disclosed collection categories. The FTC Act's standards for data minimization and security apply to the collection and retention of this data. GOVERNANCE EXPOSURE: Medium. The disclosed collection categories are consistent with enterprise SaaS platforms of this type. The key governance question is whether each data category is collected with a documented lawful basis under GDPR, and whether retention schedules exist for each category. User Content in particular may contain personal data of third parties (e.g., customer names in documents), creating additional controller obligations for enterprise customers. JURISDICTION FLAGS: EU and UK GDPR apply to processing of personal data of data subjects in those regions regardless of where Writer processes the data. California CPRA rights apply to personal information of California residents. Organizations in healthcare should assess whether any User Content could constitute protected health information under HIPAA before submitting to the platform. CONTRACT AND VENDOR IMPLICATIONS: Vendor assessments should confirm that Writer's data retention schedules, security certifications (SOC 2, ISO 27001 if applicable), and deletion practices cover each disclosed collection category. Third-party integration data flows should be mapped to confirm what data is shared with and received from connected tools. COMPLIANCE CONSIDERATIONS: Organizations should conduct a data mapping exercise to document what categories of personal data flow into Writer from their systems, update records of processing activities accordingly, and assess whether any submitted data categories require heightened protection or specific lawful basis documentation.
Full compliance analysis
Regulatory citations, enforcement risk, and due diligence action items.
Free: track 1 platform + weekly digest. Monitor: 25 platforms + same-day alerts. No credit card required.
Ad personalization controls removed. Contact scanning added. Advertiser data partnerships quietly dropped. A timeline of every change.
Compliance Governance Intelligence
Need to monitor specific governance provisions?
Compliance includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
The breadth of data collected, particularly User Content (what you write and submit) and usage data, means Writer has access to potentially sensitive business information beyond basic account details.
Everything you type, submit, or interact with on Writer's platform may be collected and stored, including content that could contain proprietary business information, making it important to understand how that data is used and retained.
ConductAtlas has identified this type of provision across 17 platforms. See the full comparison.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Writer.