Provisions Index

Character.AI may share or transfer your personal data to another company if it is acquired, merges with another business, or sells its assets....

Why it matters: In a merger or acquisition scenario, your personal data — including chat history, voice recordings, and account information — could transfer to a new owner with potentially different privacy practices....

Character.AI keeps your data for as long as needed for the purposes it was collected, or longer to comply with legal obligations, resolve disputes, or enforce agreements....

Why it matters: There is no specific maximum retention period stated, meaning your data could be held indefinitely under broad justifications such as 'legal obligations' or 'enforcing agreements'....

If you log in using a third-party account like Google or Facebook, Character.AI collects information from that account and may retain it even after you disconnect the connection....

Why it matters: Revoking permission for a third-party account login does not cause Character.AI to delete the data already collected from that account — it only prevents future data collection....

Character.AI acknowledges that users may submit sensitive personal information — such as details about race, religion, or sexual orientation — through chat, and advises users not to share such information....

Why it matters: Despite the advisory not to share sensitive information, the platform collects and processes whatever users submit in chat, including highly sensitive disclosures made during AI conversations....

Character.AI may update this privacy policy at any time and will notify users of material changes via email or website posting; continued use of the service constitutes acceptance of the updated policy....

Why it matters: Continuing to use Character.AI after a privacy policy update — even without actively reading the new version — is treated as agreement to the new terms, which could include expanded data uses....

Microsoft has committed to six ethical principles that guide how all its AI products are built and used, including protecting your privacy and ensuring AI treats people fairly....

Why it matters: These principles set the baseline standard for how Microsoft AI systems that affect your life — from job applications screened by AI to healthcare tools — are supposed to behave, though they are voluntary commitments rather than legal guarantees....

Microsoft uses an internal standard and impact assessment process to evaluate AI products before release, and has made this standard publicly available....

Why it matters: The existence of a published standard and impact assessment process means Microsoft has created a benchmark against which its own AI products can be evaluated — and against which regulators or plaintiffs could measure compliance....

Microsoft commits that humans — not AI alone — should be responsible for consequential decisions made using its AI systems....

Why it matters: This commitment is directly relevant to consumers subject to AI-driven decisions in high-stakes contexts like employment screening, credit, healthcare, or law enforcement, where automated decisions without human review can cause serious harm....

Microsoft commits to detecting and fixing AI bias so that its systems do not discriminate against people based on personal characteristics like race, gender, or age....

Why it matters: AI bias in Microsoft products used for hiring, lending, healthcare, or law enforcement can cause material harm to protected groups, and this commitment signals Microsoft's recognition of that risk — though it does not provide consumers with a direct remedy....

Microsoft commits to building AI systems that protect your personal data and support privacy laws, including backing for new legislation to protect individuals....

Why it matters: As Microsoft AI systems process increasing volumes of personal data to power tools like Copilot and Azure AI, this commitment determines the baseline privacy protections consumers can expect — and signals Microsoft's policy stance on privacy legislation....

Microsoft has created internal committees and an office specifically to oversee AI ethics and ensure its principles are followed in practice across the company....

Why it matters: The existence of named governance bodies creates an accountability structure that regulators and the public can reference — and their effectiveness (or lack thereof) will determine whether Microsoft's AI commitments are operationalized or remain aspirational....

Microsoft commits to making its AI systems understandable and ensuring people know when they are interacting with AI, what data trained it, and how it makes decisions....

Why it matters: The right to know you are interacting with AI — and to understand how it makes decisions affecting you — is increasingly recognized as a fundamental requirement by regulators globally, and this commitment sets expectations for all Microsoft AI products....

Microsoft commits to designing AI systems that work for everyone, including people with disabilities, those who speak minority languages, and people in less-developed regions....

Why it matters: This commitment has direct implications for the accessibility and equal availability of Microsoft AI products across diverse user populations, including users with disabilities who may rely on AI-powered accessibility features....

Microsoft publicly states it supports new AI laws and privacy regulations and will work with governments to help shape them....

Why it matters: Microsoft's stated support for AI regulation signals its policy positioning on emerging laws like the EU AI Act and US federal AI legislation, which may influence how those laws are written and what obligations they ultimately impose on both Microsoft and its users....

When you post anything on LinkedIn — photos, articles, comments, or videos — you give LinkedIn permission to use, copy, and share that content, including for AI purposes, without paying you or asking again....

Why it matters: This license is broad enough to cover AI training and machine learning, meaning LinkedIn can use your professional content to develop AI products, and you cannot withdraw consent retroactively for content already processed....

LinkedIn can change its rules at any time, and in some cases doesn't have to warn you in advance — for example, when launching a new feature....

Why it matters: This clause means LinkedIn can materially alter the terms governing your data and content without prior notice in enumerated circumstances, which limits your ability to opt out before new terms take effect....

If LinkedIn causes you harm, the most you can typically recover from them is either what you paid LinkedIn in fees or $1,000 — whichever is higher....

Why it matters: For free-tier users who have paid LinkedIn nothing, this cap means your maximum recovery for any harm caused by LinkedIn — including data breaches or wrongful account termination — could be as low as $1,000....

LinkedIn can suspend or close your account if it believes you've broken its rules, and in many circumstances does not have to warn you before doing so....

Why it matters: Your LinkedIn account may contain years of professional connections and content — losing access without warning or meaningful appeal could have significant professional consequences....

Any legal dispute with LinkedIn must be handled under California law in courts located in Santa Clara County, California — regardless of where you live....

Why it matters: If you live outside California and have a dispute with LinkedIn, you would generally need to litigate in California courts, which creates a significant practical and financial barrier to pursuing legal claims....

LinkedIn is only for people aged 16 and over, or older if your country's law requires it — and LinkedIn relies on users to self-report their age rather than verifying it....

Why it matters: LinkedIn does not actively verify user ages, meaning minors could potentially access the service, and the legal protection for their data depends on users being honest about their age at registration....

LinkedIn does not promise that its service will work correctly, be available at all times, or that information on the platform is accurate — you use it at your own risk....

Why it matters: This means that if LinkedIn experiences outages, provides inaccurate job listings, or surfaces misleading professional information, you generally have no contractual right to compensation....

LinkedIn prohibits automated data collection (scraping), bots, and using the platform to gather information for competing services — violations can result in account termination....

Why it matters: These restrictions affect developers, researchers, and businesses that may rely on LinkedIn data, and violations can result in immediate account suspension as well as potential legal action under the Computer Fraud and Abuse Act....

What you post on LinkedIn — including your profile, comments, and reactions — may be visible to other users, visitors, and people outside LinkedIn, depending on your privacy settings....

Why it matters: Professional information shared on LinkedIn, including employment history, endorsements, and activity, can be visible beyond your intended audience if privacy settings are not actively managed....

Robinhood uses this page as the central location for all its legal agreements and regulatory disclosures, meaning you must navigate through multiple linked documents to understand your full legal obligations....

Why it matters: If you don't find and read the individual linked documents, you may miss critical terms like arbitration clauses, fee disclosures, or data sharing practices....

Robinhood operates multiple separate legal entities — including a broker-dealer, a crypto platform, and a cash management service — each subject to different regulations and terms....

Why it matters: The rules and protections that apply to your account depend on which Robinhood service you use; brokerage accounts have SIPC protection while crypto holdings do not....

Robinhood's disclosure library references California-specific privacy rights, meaning California residents have additional legal protections regarding their financial and personal data....

Why it matters: California residents can request to know what personal and financial data Robinhood holds about them, request deletion, and opt out of certain data sales under the CCPA....

Robinhood's actual arbitration and dispute resolution terms are contained in linked documents, meaning by using the platform you may be agreeing to resolve all disputes through arbitration rather than in court....

Why it matters: Mandatory arbitration clauses prevent you from suing Robinhood in court or joining a class action lawsuit, significantly limiting your legal options if something goes wrong with your account....

While Robinhood advertises commission-free trading, it acknowledges that limitations and other fees may still apply, and the company earns revenue through payment for order flow and other means....

Why it matters: Commission-free does not mean cost-free — Robinhood receives payment from market makers for routing your trades, which may result in slightly worse prices than you would receive on other platforms....

Robinhood's services are available only to eligible users in the United States who meet applicable legal and regulatory requirements, including age and identity verification....

Why it matters: Robinhood requires users to be at least 18 years old and a U.S. resident, and the platform can restrict or terminate account access if eligibility conditions are not met....

Robinhood retains ownership of its platform, branding, and content, and users are granted only a limited license to use the service....

Why it matters: You do not own the Robinhood platform or any of its tools — you are only licensed to use them, and that license can be revoked if you violate the terms....

As a registered broker-dealer, Robinhood is required by the SEC to provide a Form CRS (Customer Relationship Summary) that explains the services it offers, fees, conflicts of interest, and your rights as a customer....

Why it matters: Form CRS is a federally mandated one- to two-page summary that Robinhood must give you before you open an account — it is one of the most important documents for understanding what Robinhood does and does not do for you....

Uber continuously tracks your precise GPS location during trips and for a period before and after trips when the app is in use, and shares this location data with riders, restaurant partners, and third parties....

Why it matters: Persistent location tracking creates a detailed record of your movements and can be shared broadly, raising significant privacy concerns for workers....

Uber collects biometric data including facial recognition images to verify driver identity, which may be processed by third-party providers....

Why it matters: Biometric data is uniquely sensitive and permanent — unlike a password, you cannot change your face, making any misuse or breach particularly serious....

Uber uses automated systems to make decisions about driver accounts, including deactivation, based on performance data, ratings, and other algorithmic assessments....

Why it matters: Automated decisions can affect your ability to earn income without meaningful human review, and you may have limited ability to contest those decisions....

Uber may share your personal data with law enforcement, government agencies, or regulatory bodies in response to legal requests or to comply with applicable law....

Why it matters: Your personal data including location history and trip records can be disclosed to authorities without your knowledge or consent in certain circumstances....

Uber collects background check information including criminal history, driving record, and identity verification data, which is processed by third-party background check providers....

Why it matters: Sensitive background check data is held by Uber and third-party processors, and errors in this data can affect your ability to work on the platform....

Uber collects your bank account or payment information to process earnings payments, and this financial data is shared with payment processing partners....

Why it matters: Your banking and financial details are stored by Uber and third-party payment processors, creating potential exposure if those systems are compromised....

California residents have rights under the CCPA/CPRA to know what personal data is collected, request deletion, opt out of data sales, and not be discriminated against for exercising these rights....

Why it matters: California drivers have enhanced legal rights to control their personal data and can take specific actions to limit how Uber uses and shares it....

Uber may transfer your personal data to countries outside your home country, including the United States, which may have different levels of data protection....

Why it matters: When your data is transferred internationally, the legal protections that apply may be weaker than those in your home country, particularly for EU and UK drivers....

Uber shares driver data including trip information, location data, and performance metrics with insurance providers to facilitate insurance coverage during trips....

Why it matters: Detailed driving behavior and performance data shared with insurers could affect your insurability or insurance premiums beyond the Uber platform....

Drivers and delivery workers have the right to access their personal data, request its deletion, correct inaccurate data, and in some regions receive a copy of their data in a portable format....

Why it matters: These rights give you meaningful control over your personal data and the ability to challenge inaccuracies that might affect your work on the platform....

Stash collects highly sensitive information including your Social Security number, bank account numbers, bank login credentials, passport number, employment details, and whether you are a politically exposed person or FINRA control person....

Why it matters: This level of financial data collection — especially bank login credentials — represents significant privacy and security risk if that data is ever compromised or misused....

Stash shares your personal information with marketing and advertising partners, including for targeted advertising campaigns, and uses tracking technologies such as pixels, cookies, and analytics tools from Facebook, Google, and others....

Why it matters: Your financial behavior and personal data may be used to target you with ads and shared with companies like Google and Facebook, which many consumers would not expect from a financial services provider....

California residents have specific rights under CCPA/CPRA including the right to know what data is collected, the right to delete their data, the right to correct inaccurate data, the right to opt out of data sale or sharing, and the right to limit use of sensitive personal information....

Why it matters: These are legally enforceable rights that give California consumers meaningful control over their personal data held by Stash, including the ability to stop their data from being sold or shared....

Stash explicitly states that it does not respond to browser 'Do Not Track' signals, meaning that even if your browser is set to request that websites not track you, Stash will continue to track your behavior....

Why it matters: Consumers who rely on browser privacy settings to limit tracking will find those controls have no effect on Stash's data collection practices....

Stash states that anonymized or aggregated customer data is not covered by this Privacy Policy and may be used for any business purpose, including marketing, analytics, and detecting security threats....

Why it matters: Once Stash anonymizes your data, it can be used or shared without restriction — and there is no guarantee that anonymized data cannot be re-identified in combination with other datasets....

Stash collects government-issued identification documents and self-portrait photographs ('Selfies') for identity verification purposes as required by federal and industry regulations....

Why it matters: Biometric-adjacent data such as facial images used for identity matching may be subject to state biometric privacy laws (e.g., Illinois BIPA) and creates long-term data retention concerns....

Stash shares your personal information with service providers, financial partners, credit bureaus, payment processors, and other non-affiliated third parties to facilitate its services and for its own business purposes....

Why it matters: Your sensitive financial and personal data is disclosed to a range of third parties beyond Stash itself, and you have limited ability to control this sharing once you accept the policy....

Stash collects your precise and approximate geolocation data, device identifiers, IP addresses, browser type, clickstream data, and behavioral information about how you use the app and website....

Why it matters: Beyond your financial data, Stash tracks where you are and how you behave digitally, building a detailed profile that may be used for marketing or shared with third parties....

Stash retains your personal information for as long as your account is active and for a period after your account is closed, as required by law or for legitimate business purposes....

Why it matters: Closing your Stash account does not immediately result in deletion of your personal data — Stash can retain your sensitive financial information for extended periods after you leave....