Provisions Index

Cash App shares your personal data with a wide range of parties including Block, Inc. affiliates (such as Square), credit bureaus, fraud detection partners, merchants you transact with, advertising partners, and third-party service providers. Transaction data and payment history may be shared with m...

Why it matters: The breadth of data sharing — spanning financial affiliates, credit bureaus, merchants, and advertising partners — means your sensitive financial and behavioral data travels far beyond Cash App itself, increasing exposure to data breaches, unauthorized use, and regulatory liability....

Cash App collects precise geolocation information from your mobile device, including your IP address and network provider location. This is in addition to general location information and may be collected through automated tracking technologies....

Why it matters: Precise geolocation data is classified as sensitive personal information under several state privacy laws, requires explicit consent or opt-in in some jurisdictions, and can reveal sensitive details about a person's movements, relationships, health visits, or religious practices....

Cash App's Privacy Notice includes a dedicated section on children's personal information, indicating the company has policies addressing minors. The Services are subject to age restrictions, and the policy addresses how children's data is handled....

Why it matters: Financial services apps used by or accessible to minors face COPPA obligations requiring verifiable parental consent before collecting personal information from children under 13, and recent FTC enforcement has targeted financial technology platforms that fail to implement adequate age gates....

When you use MetaMask to swap tokens or bridge assets, MetaMask charges a service fee that is built into the price you are quoted — it is not displayed as a separate charge, so you may not know exactly how much you are paying MetaMask....

Why it matters: Hidden or embedded fees can make it difficult to compare costs and understand the true price of transactions, which may constitute a material omission under consumer protection law....

MetaMask can change these Terms of Service at any time, and your continued use of the wallet after changes are posted means you have accepted the new terms — even if you did not read them....

Why it matters: This gives MetaMask broad power to change the rules of your agreement at any time, potentially altering your rights, fees, or data practices with limited notice and no requirement for your active consent....

All legal disputes with MetaMask are governed by New York state law, regardless of where you live, and to the extent court proceedings are permitted, they must take place in New York....

Why it matters: Being forced to litigate under New York law and in New York courts creates a practical and financial barrier to seeking legal recourse for consumers located outside New York....

MetaMask can suspend or terminate your access to certain services at any time and for any reason, including without notice, though as a non-custodial wallet they cannot take your crypto assets....

Why it matters: While MetaMask cannot seize your crypto (since they don't hold your keys), they can disable access to value-added services like Swaps, Bridge, Earn, and other features without warning....

Uber shares driver and delivery person data — including trip data, location information, and driving behavior — with insurance companies to facilitate the insurance coverage required for platform use. This sharing occurs as part of Uber's insurance programs....

Why it matters: Sharing detailed telematics and driving behavior data with insurers can affect your insurance premiums and insurability outside of Uber, as insurers may use this data to assess your risk profile for personal insurance products....

Uber may share your personal data with law enforcement, government authorities, or in response to legal process without notifying you, particularly where prohibited by law or where notification could impede an investigation....

Why it matters: Drivers may not know when Uber has shared their personal data — including location history, communication records, and trip data — with law enforcement or government agencies, limiting their ability to protect their legal rights....

Uber provides drivers and delivery people with rights to access, correct, delete, and receive a portable copy of their personal data, accessible through the Uber Driver app's Privacy Settings or Uber's online privacy request portal. These rights vary by jurisdiction....

Why it matters: Knowing and exercising your data rights allows you to see what Uber holds about you, correct inaccuracies that could affect your platform standing, and delete data you no longer want Uber to retain....

Uber collects bank account or payment account details from drivers and delivery people to facilitate earnings payments and manages this financial information as part of its payment processing infrastructure....

Why it matters: Your banking details are highly sensitive financial data, and understanding how Uber stores, protects, and shares this information is critical to assessing fraud and identity theft risk....

Uber may share driver and delivery person data with research organizations, academic partners, and analytics companies, including aggregated or de-identified data about platform activity, safety patterns, and service usage....

Why it matters: Even 'de-identified' or 'aggregated' data shared with third-party researchers can sometimes be re-identified, particularly when it includes granular location data, and this secondary use of your data provides no direct benefit to you....

Paramount+ limits the number of devices that can stream content simultaneously under a single subscription, and exceeding this limit will block additional streams....

Why it matters: Households with multiple viewers may find their access restricted during peak viewing times, and upgrading to remove these limits may require purchasing a higher-tier plan....

Some content on Paramount+ is not available outside certain geographic regions due to licensing agreements, and using a VPN or proxy to bypass these restrictions is prohibited....

Why it matters: Users traveling internationally or those in certain regions may find significant portions of the content library unavailable, and attempting to use a VPN to access content may result in account suspension....

Paramount+ reserves the right to remove, modify, or restrict access to any content on the platform at any time without notice....

Why it matters: Content you paid to access as part of your subscription may be removed at any time, potentially reducing the value of your subscription without compensation or prior warning....

Paramount+ provides parental control tools to restrict content for younger viewers, and account holders are responsible for any use of their account including by minors....

Why it matters: Parents are legally responsible for all activity on the account, including purchases and content accessed by children, so setting up parental controls is essential to protect minors....

You must provide accurate identity information and documents when requested by Revolut, and failure to do so can result in your account being restricted or closed....

Why it matters: If you cannot or do not complete identity verification, Revolut can limit or terminate your access to all services including your funds....

Revolut may charge fees for certain services, currency conversions, and premium plan features, and these fees are set out in a separate fee schedule that can change with notice....

Why it matters: Fees can erode the value of your account over time, and changes to the fee schedule may be communicated with limited advance notice....

Disputes between you and Revolut are governed by specific legal rules, and the terms may require you to resolve disputes through particular channels rather than through standard court proceedings....

Why it matters: The governing law and dispute resolution provisions can affect your ability to pursue claims against Revolut and the forum in which you can do so....

Revolut's Privacy Policy is incorporated into these Terms and governs how your personal and financial data is collected, used, and shared — you agree to it by using the service....

Why it matters: By agreeing to these Terms, you also consent to Revolut's data practices as described in a separate Privacy Policy, which may include sharing data with third parties and regulators....

Additional terms apply to specific Revolut products such as cryptocurrency, savings, and premium plans, and those supplementary terms are incorporated into your overall agreement....

Why it matters: Your rights and obligations may differ significantly depending on which Revolut products you use, and you need to read multiple documents to understand the full terms of your relationship with Revolut....

Bumble uses automated algorithms to analyse your profile, behaviour, and preferences to determine who you are shown and matched with, which constitutes automated decision-making and profiling....

Why it matters: Automated profiling can significantly affect your experience on the platform — including who you can connect with — and raises rights under GDPR Article 22 to not be subject to solely automated decisions with significant effects....

Bumble may transfer your personal information to the United States and other countries outside your home country, which may have different (and potentially weaker) privacy protections....

Why it matters: When your data is transferred internationally, it may be subject to foreign government access requests or weaker privacy laws, reducing your ability to enforce your rights....

You have the right to access, correct, delete, or export your personal data, and to object to or restrict certain types of processing, with additional rights for California residents under CCPA/CPRA....

Why it matters: These rights give you meaningful control over your personal information and allow you to hold Bumble accountable for how your data is used....

Bumble keeps your personal information only as long as necessary for the purposes it was collected, but the specific retention periods vary by data type and applicable law....

Why it matters: Vague retention periods mean your data could be held for extended periods even after you stop using the app, and you may not know how long sensitive information about you remains in Bumble's systems....

Chegg acknowledges that certain student data may constitute education records under FERPA and states it acts as a school official with legitimate educational interests when processing such data on behalf of educational institutions....

Why it matters: FERPA provides federal protections for student education records, and Chegg's role as a processor of such data creates obligations around data use, disclosure, and breach notification that affect students at participating institutions....

Chegg uses cookies, pixels, and similar tracking technologies to collect data about your browsing behavior both on and off its platform, and uses this to serve you targeted advertisements....

Why it matters: Cross-site tracking enables advertisers to build detailed profiles of your online behavior across multiple websites, which many users find invasive and which triggers opt-out rights in several jurisdictions....

Users in the European Union and United Kingdom have rights under GDPR and UK GDPR, including rights to access, rectify, erase, restrict processing, data portability, and object to processing of their personal data....

Why it matters: These are legally enforceable rights under EU and UK law; Chegg must have a lawful basis for processing your data and must honor valid rights requests, typically within 30 days....

Chegg retains your personal information for as long as your account is active or as necessary to provide services, comply with legal obligations, resolve disputes, and enforce agreements....

Why it matters: Open-ended retention periods mean Chegg may hold your personal data indefinitely unless you take action to delete your account or request data erasure, which limits your practical control over your information....

Users can request deletion of their personal data or close their account, and Chegg will delete or anonymize personal information subject to legal retention obligations and certain exceptions....

Why it matters: While you have the right to request deletion, Chegg may retain some data for legal compliance, fraud prevention, or dispute resolution purposes, meaning full deletion is not always guaranteed....

Taskrabbit says it may conduct background checks on Taskers but takes no responsibility for the accuracy of those checks or for any false information provided by Taskers....

Why it matters: Clients who rely on background check badges or verification labels to feel safe booking a Tasker should know that Taskrabbit expressly disclaims any guarantee that these checks are accurate or complete....

All communications about tasks — including pricing, scheduling, and payments — must go through Taskrabbit's platform before, during, and after a task is completed....

Why it matters: Taking conversations or payments off-platform may void your protections under the Terms and could result in account suspension, leaving you without recourse if something goes wrong....

When you post content on Taskrabbit — such as reviews, photos, or messages — you grant Taskrabbit a broad, royalty-free license to use that content for their business purposes....

Why it matters: Content you create and share on the platform can be used by Taskrabbit for marketing, product development, or other commercial purposes without additional payment or specific consent from you....

For US users, disputes are governed by California law; for Canadian users, by Ontario law; for EU and UK users, by local laws — but the arbitration clause may override your right to go to local courts....

Why it matters: The choice of governing law affects which consumer protections apply to you, and for US and Canadian users, the arbitration clause limits where and how you can bring claims regardless of where you live....

By agreeing to these Terms, you also agree to Taskrabbit's separate Privacy Policy, which governs all personal data collected about you through the platform....

Why it matters: Your personal data rights — including how Taskrabbit collects, shares, and retains your information — are governed by a separate document that you are legally bound to without necessarily reading it separately....

California residents have rights under CCPA/CPRA to know, access, delete, correct, and opt out of the sale or sharing of their personal information. Residents of Virginia, Colorado, Connecticut, Texas, Montana, and other states have similar rights under their respective state privacy laws....

Why it matters: These rights give you meaningful control over your personal data held by Gusto, including the right to delete it or stop it being sold to third parties....

Gusto retains your personal data even after you close your account, for as long as necessary to meet legal, regulatory, and business purposes....

Why it matters: Closing your Gusto account does not immediately erase your data — Gusto may retain sensitive information such as your SSN, payroll records, and tax documents for extended periods....

Gusto uses cookies, web beacons, pixels, and other tracking technologies on its website and platform, including for analytics, advertising, and to track user behavior across sessions....

Why it matters: Tracking technologies can be used to build detailed profiles of your online behavior, which may be shared with advertising partners or used to target you with ads....

When Gusto processes employee data on behalf of an employer-customer, the employer is the data controller and Gusto acts as a service provider or data processor, which limits employees' direct rights against Gusto....

Why it matters: As an employee, your primary relationship for data rights may be with your employer, not Gusto directly — this can limit your ability to compel Gusto to delete or correct your data....

Paramount+ states it does not knowingly collect personal information from children under 13 without verifiable parental consent, in compliance with COPPA....

Why it matters: Families and parents should know that if a child under 13 uses the service, Paramount+ has obligations to limit data collection, but enforcement depends on age verification mechanisms which may not be fully reliable....

Paramount+ retains your personal data for as long as necessary to provide its services and fulfill business or legal obligations, without specifying fixed retention periods....

Why it matters: The absence of specific retention timelines means your data — including viewing history and account information — could be held indefinitely, limiting your ability to understand and control how long your information is kept....

Paramount+ shares your personal information with third-party companies that help operate the service, including analytics providers, payment processors, and marketing partners....

Why it matters: Your data flows to multiple third parties beyond Paramount+ itself, each with their own privacy practices and data security standards, which increases the overall risk to your personal information....

Paramount+ collects your location information — including from your device's GPS, IP address, or zip code — to determine your local market and deliver location-relevant content and advertising....

Why it matters: Location data is sensitive personal information that can reveal where you live, work, and travel, and its use for advertising purposes goes beyond what many users would expect from a streaming service....

Strava promises it will not sell or use your health data (such as heart rate, HRV, or VO2max) for advertising, and will not share it with third parties without your consent....

Why it matters: Health and biometric data is among the most sensitive personal information you can share, and this provision limits how it can be monetized....

Strava allows users to request deletion of their personal data and close their account, though some data may be retained for legal or legitimate business reasons....

Why it matters: Knowing you can delete your data and close your account gives you meaningful control over your personal information, but exceptions for retention mean not all data is guaranteed to be erased....

Strava collects data from connected third-party accounts (e.g., Google, Apple) and devices (e.g., Garmin, Peloton, Apple Health), including health data like sleep and step counts....

Why it matters: Connecting third-party apps and devices significantly expands the scope of data Strava receives about you, including sensitive health data you may not have intended to share directly....

If you grant Strava permission, it will regularly access and store contacts from your phone or social media accounts to help you find other Strava users....

Why it matters: Strava can collect and store the personal information of people in your contacts who have never signed up for Strava or agreed to its privacy policy....

Strava's services are not directed at children, and the company requires users to meet minimum age requirements, with additional parental consent mechanisms for younger teen users in some jurisdictions....

Why it matters: Parents and guardians should be aware that Strava collects sensitive location and health data, and the platform has specific age-related requirements that vary by jurisdiction....

When you post or share content on Noom (such as photos, messages, or feedback), you grant Noom a broad, royalty-free, worldwide license to use, modify, display, and distribute that content....

Why it matters: Noom can use things you share — including personal health-related content — for a wide range of purposes without paying you or asking for additional permission....

Noom states that its content, coaching, and tools are not medical advice and should not be treated as a substitute for professional medical guidance....

Why it matters: Users dealing with health conditions who rely on Noom's program as health guidance have no legal recourse against Noom if that guidance is incorrect or causes harm....