Under CCPA and CPRA, California residents have enforceable rights including an opt-out of sharing personal data with advertising partners; voice recordings may qualify as sensitive personal information under CPRA, triggering additional use limitation rights.
Zelle
· Zelle Privacy Policy
The scope limitation creates two eligibility requirements that must both be satisfied for CCPA rights to apply: California residency status and B2B interaction context. This restriction narrows the class of users entitled to exercise statutory privacy rights under the provision.
The restriction establishes content boundaries that shape the types of creative outputs permissible on the platform and define categories of use cases the service does not support, thereby clarifying the scope of authorized applications.
Stripe
· Stripe Terms of Service
The terms authorize Stripe to debit a User's linked bank account without advance notice to recover chargeback amounts and associated fees, meaning funds can be removed from the User's bank account automatically when chargebacks occur.
The provision establishes OnlyFans' authority to evaluate the justification of refund and chargeback requests and to impose account sanctions as a remedy for requests determined to violate the restriction. This allocation of evaluation authority affects the procedural pathway for payment disputes on the platform.
Stripe
· Stripe Terms of Service
This provision allocates chargeback risk entirely to the merchant and establishes the operational mechanism by which Stripe recovers chargeback-related losses. It creates a compliance requirement tied to Card Network chargeback thresholds, with account suspension as an enforcement mechanism.
Square
· Square Terms of Service
This provision allocates chargeback liability to the account holder rather than Square, establishing the operational framework for how chargeback-related financial obligations are handled. The clause specifies multiple collection mechanisms available to Square, which affects the account holder's liquidity management and payment flow through the platform.
This clause allocates chargeback risk entirely to the merchant and establishes a direct collection mechanism through settlement fund deductions, which affects cash flow management and reserve account requirements for merchants using the payment processor.
The chargeback prohibition establishes Riot Games' required payment dispute procedures and removes a standard consumer financial protection mechanism from the available dispute pathways. This concentrates payment disputes into company-controlled processes rather than allowing users to access their financial institution's chargeback systems.
This clause establishes the operational framework for data handling in payment dispute scenarios, requiring Telegram to share transaction and account information with payment processors to facilitate chargeback and refund claim adjudication by those third parties.
The clause establishes that user-generated conversational and voice data constitute permitted inputs for the entity's model development and service enhancement operations, integrating user interactions directly into the company's AI development pipeline.
The provision establishes a conditional structure where the data training practice and service access are linked operationally—the terms require users to accept data use for model training as a condition of Chat Services access, or alternatively to forgo Chat Services entirely if they decline the data use.
The agreement conditions opt-out from AI model training on loss of Chat Service access entirely, meaning users cannot retain both privacy from model training and full service functionality simultaneously.
The clause establishes the operational scope of data use for model improvement and specifies the mechanism for users to restrict such use, while conditioning service access on acceptance of the training practice or explicit opt-out election.
Creating an account for a child under 13 constitutes verifiable parental consent under COPPA, making the parent responsible for the child's activity and for understanding what data Khan Academy collects from the child.
This provision governs how data from minor users is collected and used, and whether parental consent mechanisms meet regulatory standards under COPPA and equivalent frameworks.
Parents are accepting full liability for their child's activity on PlayStation, which means a child's code of conduct violation or unauthorized purchase could result in consequences that affect the parent's account, console, and purchased content library.
This provision governs data handling practices for a service designed for minors, establishing the operational parameters for what information may be collected and how it may be processed. The scope and limitations of child data collection directly affect the service's functionality and compliance obligations.
This provision establishes an affirmative publisher obligation to identify child-directed content and configure ad serving accordingly, with failure to do so creating both AdSense policy violations and potential regulatory exposure under COPPA and equivalent laws.
The provision operationalizes Minecraft's legal obligation to implement age-gating mechanisms and consent verification procedures, establishing the procedural baseline for permissible data handling across different user age categories. This framework determines which data practices proceed with parental consent versus which practices are restricted for users under 13.
Pika
· Pika Acceptable Use Policy
This provision prohibits child exploitation content regardless of whether it is prohibited by law in a given jurisdiction, and commits Pika to mandatory reporting to NCMEC, which is consistent with obligations under 18 U.S.C. Section 2258A for electronic service providers.
The clause establishes X's operational compliance framework with age-restriction requirements under children's privacy laws. It creates a mechanism for data deletion and user reporting that defines X's obligations upon discovery of underage user data.
Canva
· Canva Privacy Policy
The school-as-intermediary model for child data consent is a common but legally sensitive structure under COPPA, and whether it satisfies verifiable parental consent requirements depends on the specific contractual terms agreed with educational institutions and applicable state student privacy laws.
The provision operationalizes age-gating requirements by specifying data retention limits for age verification information and establishing default advertising treatment based on user age status. This creates distinct data handling and personalization pathways depending on whether the user qualifies as a younger user under the service's age categories.
Chegg
· Chegg Privacy Policy
Given that Chegg is an education platform heavily used by teenagers including students under 13, the adequacy of the age verification mechanism and the reactive rather than proactive approach to underage data collection creates meaningful COPPA risk.
Because Paramount+ hosts major children's brands like Nickelodeon, the adequacy of age verification and parental consent mechanisms is especially significant for families; COPPA violations can expose both the company and parents to harm if children's data is collected improperly.
Pika
· Pika Privacy Policy
The provision ensures the service complies with regulatory frameworks governing children's data protection, such as COPPA in the U.S. and comparable international standards. This establishes the operational and legal requirements under which the service may process minor user data.
The provision operationalizes Google's compliance with children's privacy regulations by restricting data collection, ad personalization, and account creation mechanisms for users below age thresholds. This establishes the procedural framework for differentiating service delivery based on user age classification.
Given Snapchat's widespread use among teenagers, the adequacy of age verification and the specific nature of 'certain restrictions' for users aged 13-17 are material to assessing whether minors' data is adequately protected under COPPA and state children's privacy laws.
This provision reflects Pinterest's compliance framework for Children's Online Privacy Protection Act (COPPA) requirements and establishes operational restrictions on data collection and ad targeting practices for minor users. The terms create a procedural mechanism for parental notification and potential data removal requests.