Consent by continued use is a common industry practice but may not satisfy the affirmative consent requirements under certain state laws, particularly for sensitive data categories like biometrics. It also means that if the policy changes, continued use constitutes acceptance of the new terms.
Zelle
· Zelle Privacy Policy
This clause establishes that browsing the site constitutes consent to data collection and advertising use, and extends that consent to future policy updates without requiring you to separately agree to changes.
These rights give you some control over your personal information, but they may be limited by exceptions for legal, business, or security purposes that Amazon can invoke.
Netflix
· Netflix Privacy Statement
Knowing how and where to exercise your privacy rights is essential — Netflix provides a designated contact and portal, but you must initiate the request yourself, and failure to act means Netflix retains your data indefinitely for most purposes.
Stripe
· Stripe Privacy Policy
These rights allow you to understand what data Stripe holds about you and take action to control it, but the availability of these rights depends on your jurisdiction — US users outside California have fewer guaranteed rights than EU or California users.
The existence of a separate Consumer Health Data Privacy Policy signals that Headspace collects health-related data in contexts not fully protected by HIPAA, such as mood tracking or meditation usage, and that additional state-level rights may apply to this data depending on your location.
Hinge
· Hinge Privacy Policy
Washington's My Health MY Data Act and Nevada's consumer health privacy law provide residents with strong rights over health data collected by non-healthcare apps like dating platforms, including data about sexual health, reproductive health, and mental wellbeing inferred from app use.
Visa
· Visa Privacy Notice
These rights give consumers meaningful control over their personal data, but the scope and enforceability of these rights varies significantly by jurisdiction — California residents have the broadest statutory protections, while U.S. federal law provides fewer individual rights.
These rights are only available to consumers in states with privacy laws — the scope of your rights depends on where you live, and T-Mobile's notice does not extend uniform rights to all users.
Hulu
· Hulu Privacy Policy
These rights — especially deletion and opt-out of sharing — are legally enforceable under CCPA/CPRA for California residents and GDPR for EU users, meaning Hulu must respond to your requests within specified timeframes (45 days for CCPA, 30 days for GDPR) or face regulatory penalties.
These are legally enforceable rights, not just policy promises — and most consumers never exercise them because they don't know they exist. Exercising them can meaningfully reduce the amount of personal data a major retailer holds on you.
These rights give consumers meaningful control over their personal data held by Best Buy, but they are geographically limited — consumers outside of states with privacy laws (primarily California and a handful of others) may not have enforceable rights to access or delete their data.
Knowing how to exercise these rights is essential — you can request a copy of all data Coinbase holds about you, correct errors in your identity records, or request deletion of data not subject to legal retention requirements.
These are your legal rights under state privacy laws — knowing how to exercise them is essential for controlling your personal data held by one of the world's largest retailers.
These rights are legally enforceable in California and several other states, giving consumers real tools to control their data — but they must be proactively exercised, and Samsung has 45 days to respond under CPRA.
Stripe
· Stripe Privacy Policy
The policy confirms that consumers have rights to access, correct, delete, and object to processing of their personal data, with the mechanism for exercising those rights provided through Stripe's Privacy Center.
Intuit
· Intuit Privacy Statement
These rights are most robust for California residents under CPRA and EU or UK residents under GDPR, and exercising them can limit how Intuit uses your sensitive financial data for advertising and third-party sharing.
The notice conditions privacy rights on state of residence, which means consumers in states without comprehensive privacy statutes may have significantly fewer enforceable rights than California or Virginia residents, even though Walmart collects the same data from all customers.
The availability and scope of privacy rights, including the right to delete data, opt out of data sale or sharing, correct inaccurate data, and receive a copy of data, depends on the user's jurisdiction. Users in states without comprehensive privacy laws may have fewer rights under this policy.
The policy enumerates consumer privacy rights including access, deletion, correction, and opt-out rights, which are enforceable under CCPA/CPRA for California residents and under analogous laws in other states, subject to verification and exception processes.
These rights give consumers meaningful control over their data, but they are only effective if consumers know about them and actively exercise them — Grubhub does not automatically apply these protections.
California residents have some of the strongest consumer privacy rights in the US, and this provision outlines specific actionable rights that can be exercised against Shopify directly.
These rights are legally enforceable and allow you to find out exactly what data Coinbase holds about you, correct errors, or request deletion — important tools given the sensitivity of the financial and identity data Coinbase collects.
These rights are enforceable under CPRA and analogous state statutes, and the mechanism through which Walmart enables consumers to exercise them determines whether Walmart meets its statutory compliance obligations, including response time requirements and identity verification procedures.
These rights are your primary legal tools for controlling your personal data, but the policy conditions their availability on your state of residence, meaning consumers in states without comprehensive privacy laws may have fewer enforceable rights.
This provision identifies the specific consumer rights available under state privacy laws and establishes Walmart's commitment to processing these requests, which is directly relevant to consumers who want to understand and exercise control over their personal information.
These rights are legally enforceable in the EU, UK, and California, but Amazon's policy conditions their availability on your location without clearly specifying what rights apply in each jurisdiction.
Stripe
· Stripe Privacy Policy
Knowing and exercising these rights is the primary mechanism consumers have to control how Stripe uses their data, including requesting deletion or objecting to profiling for fraud prevention purposes.
Pika
· Pika Privacy Policy
This provision gives consumers a clear escalation path if their data deletion or access request is denied, which is a legal requirement in several US states including Virginia, Colorado, and Connecticut.
These rights give consumers in California and several other states meaningful tools to understand and control how their personal data is used, though the actual scope of each right varies by state and may be limited by FCRA carve-outs for credit data.