If you log into ZipRecruiter using a social media account like LinkedIn or Google, ZipRecruiter can access and store the data from that social account, and the company states it is not responsible if that data transfer violates your privacy settings on the social platform.
This analysis describes what ZipRecruiter's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
Using social login can expose more personal data to ZipRecruiter than you may expect, as the agreement permits access to information from your connected social account, and the liability for privacy setting mismatches is placed entirely on you.
If you use a social media account to log into ZipRecruiter, the company may access and store profile data from that social account, and accepts no liability if the data shared exceeds what you intended based on your social platform privacy settings.
How other platforms handle this
At Ledger, earning and maintaining our users' trust is a top priority. That's why we are deeply committed not only to protecting your privacy and securing your personal data, but also to being fully transparent about how we handle it.
We may share your information with third-party vendors and service providers that perform services on our behalf, such as payment processing, data analysis, email delivery, hosting services, customer service, and marketing assistance. We may also share your information with third-party advertising p...
We may also share your personal information with third parties that assist us in providing our services, or where we are under an obligation to report to. But rest assured: we will only ever share your personal information in the limited circumstances described in this Policy.
Monitoring
ZipRecruiter has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 25 platforms.
"By connecting to the Services using a third-party service, you give us permission to access and use your information from that service as permitted by that service, and to store your log-in credentials for that service. For example, if you access the Services through a social networking site, you agree that ZipRecruiter can access, store, and make available on the Services, any information and data that you provide in your applicable social networking site account such that the same information is available in your ZipRecruiter account. You agree that we are not liable for any Personal Data that is made available to us in violation of your privacy settings with the applicable social networking site.— Excerpt from ZipRecruiter's ZipRecruiter Terms of Use
1. REGULATORY LANDSCAPE: This provision engages GDPR Articles 5 and 6 for EEA/UK users regarding lawful basis and data minimization in the context of third-party data ingestion, as well as CCPA/CPRA for California residents regarding disclosure of data sources and categories. FTC guidance on social login data practices and the scope of permissible data collection from linked accounts is also relevant. 2. GOVERNANCE EXPOSURE: Medium. The provision attempts to shift liability for over-collection of social account data to the user by referencing the social platform's own permissions framework. However, GDPR's data minimization principle may constrain how much data ZipRecruiter can access and store from social logins regardless of what the social platform technically permits. The statement that ZipRecruiter 'stores log-in credentials' for third-party services warrants security review. 3. JURISDICTION FLAGS: EEA and UK users face heightened exposure under GDPR data minimization and purpose limitation requirements. California residents have CPRA rights to know about and limit the sale or sharing of personal information collected from third-party sources. The storage of third-party login credentials raises additional concerns under data security regulations across multiple jurisdictions. 4. CONTRACT AND VENDOR IMPLICATIONS: Organizations that require employees or candidates to use social login for ZipRecruiter should assess what data categories are being transferred and whether that transfer is consistent with their own privacy notices and employee data handling policies. Vendor assessments of ZipRecruiter should address the scope of social login data ingestion and retention practices. 5. COMPLIANCE CONSIDERATIONS: Privacy teams should review what data categories are actually collected via social login and ensure that ZipRecruiter's privacy notice adequately discloses this data source and the categories of data collected. Data mapping exercises should account for social login as a distinct data ingestion pathway with potentially broader data categories than direct registration.
Full compliance analysis
Regulatory citations, enforcement risk, and due diligence action items.
Free: track 1 platform + weekly digest. Monitor: 25 platforms + same-day alerts. No credit card required.
ConductAtlas detected a major restructuring of Meta’s privacy policy that removed detailed consumer rights disclosures and relocated them to separate documents.
Your genetic data may be transferred to a new owner as a business asset. Here is what the Terms of Service actually say and what you can do right now.
Compliance Governance Intelligence
Need to monitor specific governance provisions?
Compliance includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
Using social login can expose more personal data to ZipRecruiter than you may expect, as the agreement permits access to information from your connected social account, and the liability for privacy setting mismatches is placed entirely on you.
If you use a social media account to log into ZipRecruiter, the company may access and store profile data from that social account, and accepts no liability if the data shared exceeds what you intended based on your social platform privacy settings.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by ZipRecruiter.