The notice states that Zendesk collects identifiers, commercial records, internet activity, geolocation data, professional information, and inferences drawn from collected data, including profile inferences relating to preferences, psychological trends, and aptitudes.
This analysis describes what Zendesk's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
This provision documents the scope of personal data categories Zendesk collects as a controller, including inferred profile data, which engages CCPA/CPRA disclosure requirements and GDPR Article 13 transparency obligations.
The agreement states that Zendesk collects a defined set of data categories including identifiers, browsing and search history on Zendesk properties, geolocation data, and inferences about preferences, psychological trends, and aptitudes drawn from that data. These categories are disclosed in satisfaction of CCPA and GDPR transparency requirements.
How other platforms handle this
At Ledger, earning and maintaining our users' trust is a top priority. That's why we are deeply committed not only to protecting your privacy and securing your personal data, but also to being fully transparent about how we handle it.
We use information to enhance the quality, reliability, and/or accuracy of our AI Features by creating, developing, training, testing, improving, and maintaining AI and ML models run by Strava or our service providers. We use aggregated, de-identified data for this purpose. We also use personal info...
If you are located in the European Economic Area, Switzerland, or the United Kingdom, you have the right to access, correct, or erase your personal data; the right to restrict or object to our processing of your personal data; the right to data portability; and, where our processing is based on your...
Monitoring
Zendesk has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 25 platforms.
"We collect the following categories of personal data: Identifiers and similar information, such as name, alias, address, phone number, unique personal identifier, online identifier, IP address, email address, account name, or other similar identifiers. Commercial information, such as records of products or services purchased, obtained, or considered. Internet or other electronic network activity, such as browsing history on our websites, search history on our websites, and information regarding interactions with our websites, applications, or advertisements. Geolocation data. Professional or employment-related information. Inferences drawn from any of the information identified above to create a profile about you reflecting your preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes.— Excerpt from Zendesk's Zendesk Privacy Policy
(1) REGULATORY LANDSCAPE: This provision engages GDPR Article 13 (information to be provided at time of collection), CCPA and CPRA category disclosure requirements, and equivalent transparency obligations under Brazilian LGPD, Australian Privacy Act, and other regional frameworks referenced in the notice. The FTC and California Privacy Protection Agency are the primary US enforcement authorities. (2) GOVERNANCE EXPOSURE: Medium. The inclusion of inferred profile data including psychological trends and aptitudes as a disclosed category is operationally significant because CPRA classifies certain inferred data as sensitive personal information depending on context, and GDPR may require heightened protection for inferences that constitute profiling with significant effects. (3) JURISDICTION FLAGS: California residents have specific CPRA rights regarding inferred data and profiling, including the right to opt out of certain automated decision-making. EU/EEA residents may have rights to object to profiling under GDPR Article 21. Jurisdictions with sector-specific restrictions on profiling may impose additional requirements. (4) CONTRACT AND VENDOR IMPLICATIONS: Organizations receiving Zendesk marketing communications or using Zendesk's website should confirm that Zendesk's data collection practices align with their own vendor risk assessments. The breadth of inferred categories may require update of third-party data inventory records. (5) COMPLIANCE CONSIDERATIONS: Compliance teams should verify that their own privacy notices, if they reference Zendesk as a service provider, adequately disclose the categories of data Zendesk collects. Organizations subject to CPRA should assess whether Zendesk's inference practices require opt-out mechanisms to be offered to California employees or customers whose data Zendesk processes.
Full compliance analysis
Regulatory citations, enforcement risk, and due diligence action items.
Free: track 1 platform + weekly digest. Monitor: 25 platforms + same-day alerts. No credit card required.
Compliance Governance Intelligence
Need to monitor specific governance provisions?
Compliance includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
This provision documents the scope of personal data categories Zendesk collects as a controller, including inferred profile data, which engages CCPA/CPRA disclosure requirements and GDPR Article 13 transparency obligations.
The agreement states that Zendesk collects a defined set of data categories including identifiers, browsing and search history on Zendesk properties, geolocation data, and inferences about preferences, psychological trends, and aptitudes drawn from that data. These categories are disclosed in satisfaction of CCPA and GDPR transparency requirements.
ConductAtlas has identified this type of provision across 2 platforms. See the full comparison.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Zendesk.