This analysis describes what Zoom's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
By flowing down equivalent DPA obligations to subprocessors, Zoom extends its own data protection commitments through the subprocessing chain, rather than allowing a lower standard at the subprocessor level.
Zoom's subprocessors must meet the same data protection obligations Zoom is bound to under its Data Processing Agreement.
How other platforms handle this
These companies are subject to contractual obligations governing privacy, data security, and confidentiality consistent with applicable laws.
We also require these service providers to protect your personal information to at least the same standards that we do.
disclosure is required by a third-party to complete a transaction initiated by the user
Monitoring
Zoom has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 25 platforms.
"Zoom requires its subprocessors to satisfy equivalent obligations as those required from Zoom (as a Data Processor) as outlined in Zoom's Data Processing Agreement (DPA)...— Excerpt from Zoom's Zoom Sub-Processors
ConductAtlas detected a major restructuring of Meta’s privacy policy that removed detailed consumer rights disclosures and relocated them to separate documents.
Your genetic data may be transferred to a new owner as a business asset. Here is what the Terms of Service actually say and what you can do right now.
Compliance Governance Intelligence
Need to monitor specific governance provisions?
Compliance includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
By flowing down equivalent DPA obligations to subprocessors, Zoom extends its own data protection commitments through the subprocessing chain, rather than allowing a lower standard at the subprocessor level.
Zoom's subprocessors must meet the same data protection obligations Zoom is bound to under its Data Processing Agreement.
ConductAtlas has identified this type of provision across 290 platforms. See the full comparison.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Zoom.