When you use Zoom, the platform collects and processes your audio, video, chat messages, and any transcripts generated during meetings. This data is used to deliver Zoom's services, including features like recordings and AI-generated summaries.
This analysis describes what Zoom's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
This provision establishes that Zoom's data collection extends to the substantive content of your meetings, not just metadata. Audio, video, transcripts, and in-meeting messages are all within the scope of Zoom's data processing, which has implications for confidentiality of discussions and information shared during calls.
Every meeting you participate in on Zoom may result in the collection and processing of your voice, image, written messages, and AI-generated transcripts. The extent to which this content is retained or used depends on host and administrator settings.
How other platforms handle this
We process the information you share with us when you create your profile or send messages. This includes photos, videos, messages, and other content you share on the platform. We may use this content to improve our services, ensure safety, and comply with legal obligations.
At Ledger, earning and maintaining our users' trust is a top priority. That's why we are deeply committed not only to protecting your privacy and securing your personal data, but also to being fully transparent about how we handle it.
If we collect health information from these integrations (such as heart rate), we will not sell or use it for advertising or other similar purposes; we do not disclose it to third parties without your prior consent; and we will only use it for the specific purposes described in this Policy.
Monitoring
Zoom has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 25 platforms.
"Zoom collects and processes content generated during Zoom meetings, webinars, and other collaborative sessions, including audio, video, transcripts, and in-meeting messages. This content is processed to provide the Zoom services, including features like meeting summaries, recordings, and transcriptions.— Excerpt from Zoom's Zoom Privacy Statement
REGULATORY LANDSCAPE: This provision implicates GDPR Article 9 where meeting content may include special categories of data (health, political views, religious beliefs revealed in conversation). ECPA may apply to interception of communications content in the US context. HIPAA may be relevant where Zoom is used for healthcare communications and a Business Associate Agreement is in place. The FTC Act applies to representations about the scope and security of content collection. GOVERNANCE EXPOSURE: High. The collection of meeting audio and video content represents a broad category of personal data with significant confidentiality and privacy implications. Organizations using Zoom for sensitive discussions should assess whether their use case is appropriately governed by contractual terms with Zoom. JURISDICTION FLAGS: EU and UK users benefit from GDPR protections for special categories of data that may be inadvertently disclosed in meetings. Illinois BIPA may be triggered if voiceprint or facial geometry data is derived from audio or video. California residents have rights over sensitive personal information under CPRA. CONTRACT AND VENDOR IMPLICATIONS: Organizations should confirm that their Zoom agreements specify retention periods for meeting content and that deletion rights are contractually supported. Healthcare organizations must have a signed Business Associate Agreement before using Zoom for protected health information. COMPLIANCE CONSIDERATIONS: Data mapping exercises should classify meeting audio, video, and transcripts as personal data and potentially as special category data. Retention schedules for Zoom-hosted content should be reviewed and aligned with organizational data minimization policies.
Full compliance analysis
Regulatory citations, enforcement risk, and due diligence action items.
Free: track 1 platform + weekly digest. Monitor: 25 platforms + same-day alerts. No credit card required.
Ad personalization controls removed. Contact scanning added. Advertiser data partnerships quietly dropped. A timeline of every change.
Compliance Governance Intelligence
Need to monitor specific governance provisions?
Compliance includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
This provision establishes that Zoom's data collection extends to the substantive content of your meetings, not just metadata. Audio, video, transcripts, and in-meeting messages are all within the scope of Zoom's data processing, which has implications for confidentiality of discussions and information shared during calls.
Every meeting you participate in on Zoom may result in the collection and processing of your voice, image, written messages, and AI-generated transcripts. The extent to which this content is retained or used depends on host and administrator settings.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Zoom.