Provision Registry

7353 classified provisions across 299 platforms — browse, filter, and compare.

Every clause classified by type, severity, and platform. Updated as policies change.

Start Compliance free trial Track specific clauses across platforms with provision-level alerts.
Search by Platform
Provision Type
All types 7353
Privacy Rights 3351
Data Sharing 1154
Data Collection 968
Liability Limitation 913
Platform Discretion 647
Acceptable Use Restrictions 561
Arbitration 561
Payment & Fees 536
Account Control 467
Legal Jurisdiction 402
Data Usage 382
Content Moderation 363
Data Retention 344
Enforcement Actions 303
Indemnification 273
AI / Automated Decision-Making 262
Policy Changes 145
Refunds & Chargebacks 72
Restricted or Prohibited Content/Industries 40
Disclosure and Transparency Requirements 37
Developer / API Restrictions 31
Monetization Rules 28
Targeting and Audience Restrictions 11
Commission, Payout, and Attribution Terms 8
Landing Page and Destination Requirements 7
All High (3805) Medium (7353) Low (1347)
Filtering: Medium × Clear all
International Data Transfers and Standard Contractual Clauses
medium Privacy rights
Unity · Unity Privacy Policy
International data transfers carry risk because data protection laws in destination countries, particularly the US, may offer weaker protections than GDPR; standard contractual clauses help but require Unity to conduct transfer impact assessments to verify they are effective in practice.
CA-P-009033 First tracked May 10, 2026 Last seen May 22, 2026 Compare across platforms →
International Data Transfers and Standard Contractual Clauses
medium Privacy rights
Tabnine · Tabnine Privacy Policy
This provision establishes the legal transfer mechanism for cross-border data flows from the EU/EEA, which is a requirement under GDPR Chapter V. Enterprise customers should confirm that executed SCCs are in place and reflect the current 2021 EU Commission SCC templates.
CA-P-007300 First tracked May 9, 2026 Last seen May 22, 2026 Compare across platforms →
International Data Transfers and Standard Contractual Clauses
medium Privacy rights
Zoom · Zoom Privacy Statement
This provision governs how EU, UK, and Swiss users' personal data is legally protected when transferred to Zoom's servers or operations outside those regions. Standard Contractual Clauses are a standard but operationally significant mechanism that requires Zoom to provide contractual data protection commitments.
CA-P-011091 First tracked May 12, 2026 Last seen May 20, 2026 Compare across platforms →
International Data Transfers and Standard Contractual Clauses
medium Data sharing
Notion · Notion Privacy Policy
The provision establishes the legal framework under which Notion processes personal data across jurisdictions with differing data protection standards. Standard Contractual Clauses create contractual obligations between data exporters and importers to maintain equivalent protection during international transfers.
CA-P-007760 First tracked May 9, 2026 Last seen May 11, 2026 Compare across platforms →
International Data Transfers and Standard Contractual Clauses
medium Privacy rights
DeepL · DeepL Privacy Policy
Data transfers outside the EEA carry privacy risks if the receiving country has weaker legal protections or government access to data; the adequacy of SCCs as a transfer mechanism has been the subject of significant EU regulatory scrutiny following the Schrems II ruling.
CA-P-004052 First tracked Apr 30, 2026 Last seen May 20, 2026 Compare across platforms →
International Data Transfers and Standard Contractual Clauses
medium Cross border
Monday.com · Monday.com Privacy Policy
The clause operationalizes compliance with EU data protection requirements that restrict international data transfers to jurisdictions with adequate privacy safeguards. By specifying reliance on SCCs, the provision documents the legal basis under which the entity transfers personal data across borders.
CA-P-005660 First tracked May 7, 2026 Last seen May 7, 2026 Compare across platforms →
International Data Transfers and Standard Contractual Clauses
medium Data sharing
Microsoft · Microsoft Privacy Statement (Legacy)
The Standard Contractual Clauses establish contractual safeguards that enable lawful international data transfers while maintaining compliance with EEA data protection requirements, particularly following regulatory changes to adequacy determinations for certain destination countries.
CA-P-002059 First tracked Apr 4, 2026 Last seen Apr 9, 2026 Compare across platforms →
International Data Transfers and Standard Contractual Clauses
medium Cross border
Roblox · Roblox Privacy and Cookie Policy
The clause establishes the legal mechanism by which Roblox operationalizes cross-border data flows for non-U.S. users. Standard Contractual Clauses create contractual obligations between data exporters and importers to maintain protection standards equivalent to EU law, addressing jurisdictional gaps in data protection adequacy determinations.
CA-P-006121 First tracked May 8, 2026 Last seen May 8, 2026 Compare across platforms →
International Data Transfers (SCCs)
medium Cross border
GitHub · GitHub Privacy Statement
The provision establishes the operational framework through which GitHub processes personal data across international borders, designating SCCs as the contractual safeguards that govern the lawfulness of cross-border data flows from regulated jurisdictions to less restrictive data protection environments.
CA-P-005605 First tracked May 7, 2026 Last seen May 7, 2026 Compare across platforms →
International Data Transfers (SCCs and Adequacy Decisions)
medium Cross border
Anthropic · Anthropic Privacy Policy
The provision operationalizes Anthropic's compliance framework for cross-border data transfers by specifying the legal instruments (adequacy determinations and SCCs) that establish contractual protections and regulatory validity for data moving outside the EEA/UK jurisdiction.
CA-P-004652 First tracked May 7, 2026 Last seen May 7, 2026 Compare across platforms →
International Data Transfers (SCCs and Adequacy Decisions)
medium Privacy rights
Slack · Slack Privacy Policy
For EU, UK, and Swiss users, these transfer mechanisms are what legally permits your data to flow to Slack's U.S.-based infrastructure, and their validity is subject to ongoing legal developments at the EU and national level.
CA-P-007268 First tracked May 9, 2026 Last seen May 22, 2026 Compare across platforms →
International Data Transfers (SCCs and Data Privacy Framework)
medium Data sharing
Stripe · Stripe Privacy Policy
The operational significance is that liability and compliance obligations are allocated to different Stripe entities depending on jurisdiction, creating jurisdiction-specific contractual relationships. This structure affects which entity bears legal responsibility for data handling and personal data rights exercise.
CA-P-000743 First tracked Apr 3, 2026 Last seen May 7, 2026 Compare across platforms →
International Data Transfers (SCCs and Data Privacy Framework)
medium Privacy rights
Zendesk · Zendesk Privacy Policy
The adequacy of international transfer mechanisms is a live regulatory issue; if Zendesk's reliance on the Data Privacy Framework or SCCs is found insufficient, EU and UK users' data could be transferred in ways that regulators consider unlawful, though the DPF is currently an operative adequacy mechanism.
CA-P-008994 First tracked May 10, 2026 Last seen May 20, 2026 Compare across platforms →
International Data Transfers via SCCs
medium Data sharing
Slack · Slack Privacy Policy
The provision documents Slack's legal framework for cross-border data transfers, addressing EU data protection requirements that restrict international transfers without adequate safeguards. By implementing SCCs, Slack establishes a contractual mechanism recognized under EU law to govern how personal data flows between jurisdictions with different regulatory standards.
CA-P-001016 First tracked Apr 3, 2026 Last seen Apr 17, 2026 Compare across platforms →
International Data Transfers via Standard Contractual Clauses
medium Privacy rights
Calendly · Calendly Privacy Notice
Cross-border data transfers to the US have been subject to significant legal scrutiny in Europe, and the adequacy of Standard Contractual Clauses depends on additional safeguards and transfer impact assessments that the notice does not detail.
CA-P-009707 First tracked May 10, 2026 Last seen May 22, 2026 Compare across platforms →
International Data Transfers via Standard Contractual Clauses
medium Cross border
OpenSea · OpenSea Privacy Policy
The provision establishes the operational framework under which OpenSea processes personal data across international borders, relying on a specific European Commission-approved contractual safeguard rather than alternative transfer mechanisms. This approach structures the legal basis for cross-border data flows while acknowledging the absence of equivalent data protection regimes in destination countries.
CA-P-005294 First tracked May 7, 2026 Last seen May 7, 2026 Compare across platforms →
International Data Transfers via Standard Contractual Clauses
medium Data sharing
BeReal · BeReal Privacy Policy
The clause establishes the operational framework by which BeReal may process and store user personal data across international borders while maintaining compliance with EU data protection requirements. The reliance on SCCs creates enforceable contractual obligations between data processors and recipients in third countries regarding data handling standards.
CA-P-001311 First tracked Apr 3, 2026 Last seen Apr 17, 2026 Compare across platforms →
International Data Transfers via Standard Contractual Clauses
medium Data sharing
OpenAI · OpenAI Data Processing Addendum
The incorporation of EU SCCs provides the legal mechanism required under EU data protection law to authorize and structure cross-border data transfers to third countries. This framework establishes contractual safeguards and obligations that comply with GDPR requirements for international data flows and defines the respective responsibilities of each party in the data processing relationship.
CA-P-010688 First tracked May 11, 2026 Last seen May 11, 2026 Compare across platforms →
International Data Transfers via Standard Contractual Clauses
medium Data sharing
Windsurf · Windsurf Privacy Policy
The clause establishes the operational framework for cross-border data flows and acknowledges that destination jurisdictions may have less comprehensive data protection regimes than the EEA, Switzerland, or UK. It specifies the contractual mechanism—Standard Contractual Clauses—that governs the lawfulness of these international transfers under GDPR and equivalent regimes.
CA-P-008828 First tracked May 10, 2026 Last seen May 11, 2026 Compare across platforms →
International Data Transfers via Standard Contractual Clauses
medium Cross border
Zendesk · Zendesk Privacy Policy
The provision identifies the specific regulatory framework governing international data transfers from EU/EEA/UK/Swiss jurisdictions, establishing Standard Contractual Clauses as the contractual safeguard that enables lawful data movement across borders while maintaining data protection standards required under EU and UK law.
CA-P-005847 First tracked May 8, 2026 Last seen May 8, 2026 Compare across platforms →
International Data Transfers via Standard Contractual Clauses
medium Cross border
DeepL · DeepL Privacy Policy
The standard contractual clauses mechanism creates a legally binding framework that imposes data protection obligations on the recipient organization, ensuring compliance with EEA data protection requirements even when data is processed in third countries. This addresses the regulatory requirement that personal data cannot be transferred to inadequately protected jurisdictions without formal safeguarding mechanisms.
CA-P-004496 First tracked May 7, 2026 Last seen May 7, 2026 Compare across platforms →
International Data Transfers via Standard Contractual Clauses
medium Privacy rights
Upwork · Upwork Privacy Policy
For EU, UK, and Swiss users, the adequacy of the transfer mechanism directly affects whether their personal data receives the same level of protection outside Europe as it does within it. The use of SCCs requires a transfer impact assessment to be conducted and documented.
CA-P-009825 First tracked May 10, 2026 Last seen May 22, 2026 Compare across platforms →
International Data Transfers via Standard Contractual Clauses
medium Data sharing
Canva · Canva Privacy Policy
This provision establishes the procedural framework governing cross-border data transfers under GDPR and equivalent data protection regimes. The use of standard contractual clauses creates a documented legal mechanism intended to maintain data protection standards during international transfers, which is operationally significant for regulatory compliance and data subject protections.
CA-P-008231 First tracked May 10, 2026 Last seen May 11, 2026 Compare across platforms →
International Data Transfers via Standard Contractual Clauses
medium Privacy rights
OneLogin · OneLogin Privacy Policy
International data transfers to countries without equivalent data protection laws create risk that your data may be subject to different legal standards, including potential government access regimes, once it leaves the EU/EEA.
CA-P-005098 First tracked May 7, 2026 Last seen May 22, 2026 Compare across platforms →
International Data Transfers via Standard Contractual Clauses
medium Cross border
Pinterest · Pinterest Privacy Policy
This provision establishes the contractual and regulatory framework governing Pinterest's international data transfers. Standard Contractual Clauses create legally binding obligations between data exporter and importer, defining permissible uses and requiring specified data protection safeguards for transfers to third countries.
CA-P-003365 First tracked Apr 27, 2026 Last seen Apr 27, 2026 Compare across platforms →
International Data Transfers via Standard Contractual Clauses
medium Cross border
Bluesky · Bluesky Privacy Policy
The clause operationalizes international data transfers by specifying the legal mechanisms Bluesky may employ when moving personal data across jurisdictions with different regulatory protections, thereby establishing compliance pathways for cross-border data flows that are subject to varying national data protection requirements.
CA-P-004966 First tracked May 7, 2026 Last seen May 7, 2026 Compare across platforms →
International Data Transfers via Standard Contractual Clauses
medium Privacy rights
Strava · Strava Privacy Policy
EU and UK users' data is processed in the United States, which is subject to US surveillance laws; Standard Contractual Clauses are the primary transfer mechanism but their adequacy has been contested, and users should be aware that their data crosses jurisdictional boundaries.
CA-P-007788 First tracked May 9, 2026 Last seen May 22, 2026 Compare across platforms →
International Data Transfers via Standard Contractual Clauses
medium Privacy rights
Squarespace · Squarespace Privacy Policy
EU and UK users' personal data is subject to US legal frameworks once transferred, and the adequacy of standard contractual clauses as a transfer mechanism has been subject to legal challenge and regulatory scrutiny.
CA-P-010303 First tracked May 11, 2026 Last seen May 22, 2026 Compare across platforms →
International Data Transfers via Standard Contractual Clauses
medium Cross border
Unity · Unity Privacy Policy
The provision establishes the operational framework and legal mechanism by which Unity conducts cross-border data transfers for EEA/UK/Swiss residents. It creates explicit notice that data subject to different regulatory protection standards may be transferred internationally, with documented reliance on EU-approved contractual safeguards.
CA-P-005892 First tracked May 8, 2026 Last seen May 8, 2026 Compare across platforms →
International Data Transfers via Standard Contractual Clauses
medium Data sharing
Shopify · Shopify Privacy Policy
The provision describes the contractual safeguard framework Shopify uses to comply with EU data transfer requirements when moving personal information to non-adequate countries. This mechanism establishes the operational basis for cross-border data flows and provides transparency regarding the specific protective measures applied.
CA-P-002683 First tracked Apr 10, 2026 Last seen Apr 10, 2026 Compare across platforms →

Compliance Governance Intelligence

Monitor specific governance provisions across platforms.

Compliance includes provision-level monitoring, regulatory mapping, and audit-ready analysis.

Start free Start Compliance free trial