This analysis describes what Zoom's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
European users' personal data is transferred to US servers and processed under US law, meaning the legal protections on that data change once it leaves the EU — compliance with SCC and DPF obligations is essential to lawful processing.
The privacy statement states that Zoom collects meeting content including audio, video, transcripts, and chat messages, as well as device identifiers, usage data, and behavioral information for advertising and analytics purposes. The statement discloses that Zoom may use customer content to train AI and machine learning models, with opt-out controls assigned to account administrators rather than individual participants, which may limit individual users' practical ability to prevent this use. You can review your personal privacy settings and submit data access, deletion, or correction requests at https://zoom.us/privacytools.
How other platforms handle this
When we transfer your personal data outside the EEA or UK, we ensure an adequate level of protection is afforded to it by ensuring at least one of the following safeguards is implemented: transfers are to countries that have been deemed to provide an adequate level of protection for personal data; w...
You will provide personal information directly to our website in the United States. We may also transfer personal information to our partners and service providers in the United States and other jurisdictions. Please note that such jurisdictions may not provide the same protections as the data prote...
Notion is based in the United States and the information we collect is governed by U.S. law. If you are accessing our Services from outside of the United States, please be aware that information collected through the Services may be transferred to, processed, stored, and used in the United States an...
Monitoring
Zoom has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 10 platforms.
"When Zoom transfers personal data from the EEA, UK, or Switzerland to the United States or other countries which have not been recognized as providing an adequate level of data protection, Zoom relies on appropriate transfer mechanisms such as the European Commission's Standard Contractual Clauses (SCCs) and the UK's International Data Transfer Agreement (IDTA), as well as the EU-U.S. Data Privacy Framework, the UK Extension to the EU-U.S. Data Privacy Framework, and the Swiss-U.S. Data Privacy Framework.— Excerpt from Zoom's Zoom Privacy Statement
Professional Governance Intelligence
Need to monitor specific governance provisions?
Professional includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
European users' personal data is transferred to US servers and processed under US law, meaning the legal protections on that data change once it leaves the EU — compliance with SCC and DPF obligations is essential to lawful processing.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Zoom.