This provision establishes that customer data including browsing activity, location, and device identifiers may be shared with marketing and advertising partners, with the breadth of sharing categories creating exposure under CCPA and CPRA definitions of 'sale' or 'sharing' for cross-context behavioral advertising.
Roblox
· Roblox Privacy Policy
The policy authorizes sharing of identifiers, behavioral data, and device information with third-party advertising partners who may use this data for cross-context behavioral advertising, which constitutes data 'sharing' under CPRA and may trigger opt-out rights for California residents.
Okta
· Okta Privacy Policy
The clause establishes the operational scope of data sharing within Okta's service delivery model. By authorizing disclosure to both operational service providers and advertising partners, the provision defines how personal information flows through the company's vendor and marketing ecosystem.
Reddit
· Reddit Privacy Policy
This clause establishes the operational framework for Reddit's use of service providers in delivering platform functionality and advertising services. It specifies the categories of data shared with external parties and describes how third-party ad providers integrate that data with their existing datasets to support ad targeting and measurement.
This clause establishes the operational mechanism by which Best Buy monetizes user data through advertising partnerships, enabling the distribution of behavioral and transactional information to external advertising technology providers who use it for ad targeting purposes.
The clause establishes a data-sharing framework across Amazon's corporate family, enabling information collected in one business unit to be accessible to other affiliated entities. This operational structure means user data flows across multiple distinct service providers under a unified privacy governance model rather than remaining isolated to individual services.
The clause establishes the scope of entities within the Amazon corporate structure that have access to customer personal information and the protective standards those entities must meet, creating a framework for intra-corporate data flows.
Webull
· Webull Privacy Policy
The clause establishes a data-sharing framework that extends Webull's operational scope across corporate entities while maintaining that affiliate use remains governed by the stated privacy policy. This provision defines the permissible recipients of personal information within the corporate structure.
This provision establishes the operational scope of data distribution across Verizon's business ecosystem. It creates authorization for information flow to multiple categories of recipients—internal affiliates, external service vendors, marketing partners, and entities involved in corporate transactions or legal compliance—without requiring explicit per-instance consent for each sharing event.
This provision establishes that personal information including financial and credit data may be shared with marketing partners for independent marketing use, not solely for Equifax's own service delivery, which is a category of sharing with direct implications under CPRA's sale and share definitions and GDPR's data controller and processor distinctions.
This provision allocates privacy responsibility by clarifying that data shared during scheduling flows directly to the host, establishing the host as an independent data controller separate from Calendly's operational scope. The clause creates a boundary defining where Calendly's privacy obligations end and host responsibility begins.
Sharing data across TikTok's corporate group, which includes entities in multiple jurisdictions, raises cross-border data transfer questions and has been a subject of regulatory scrutiny given the group's ownership structure.
PayPal
· PayPal Privacy Statement
This provision establishes the operational framework under which PayPal may transfer personal information related to account delinquency to external parties in the debt collection and credit reporting system. The clause establishes that third-party privacy policies govern how those entities process the disclosed information.
This provision establishes the operational mechanism for application transmission, clarifying that multiple corporate entities (Glassdoor and its affiliates) handle application data in the submission process. The clause allocates data handling responsibilities across affiliated entities, each governed by separate privacy policies.
Users who believe their activity on Glassdoor is private or anonymous should be aware that personal data including job application details, job interests, and behavioral activity may be shared with employers and advertisers.
The provision establishes the operational scope of data disclosure in the event ticketing transaction. It creates a two-party data relationship where organizers receive direct access to attendee information and operate under their own independent privacy frameworks, requiring users to review multiple privacy policies rather than relying solely on Eventbrite's stated practices.
This provision clarifies the data governance structure between Eventbrite, organizers, and users by allocating responsibility for data collection decisions to organizers rather than Eventbrite. It establishes that organizers function as independent data controllers who receive user data directly, which affects the applicable privacy obligations and data handling requirements for each party.
The clause establishes the operational framework for data flows across the event ecosystem, making Event Partners recipients of user data as part of the standard event delivery process and defining their role as separate data handlers subject to their own privacy policies.
Stash
· Stash Privacy Policy
The clause creates a consent-based mechanism for third-party data sharing, requiring affirmative user action before marketing data transfers occur. This establishes the procedural condition under which Stash may engage in data sharing activities with external marketing entities.
Visa
· Visa Privacy Notice
The clause establishes the operational framework for data flow across Visa's payment network ecosystem. This sharing arrangement enables transaction processing and allows network participants to leverage customer data for business development purposes within the terms Visa has defined.
The clause establishes the scope of data recipients beyond McDonald's corporate entity, including independent franchisees and external business partners involved in order fulfillment, marketing, and service delivery operations.
Sharing data with credit reference agencies can have lasting effects on an individual's credit profile and ability to access financial products, and the individual may not be directly aware this sharing has occurred.
Waze
· Waze Privacy Policy
This provision establishes the operational basis for data transfer between Waze and Google's corporate family, extending the scope of entities with authorized access to user information beyond Waze as a standalone service provider.
Waze
· Waze Privacy Policy
The clause establishes a data-sharing framework that permits distribution of user location and usage data beyond Waze's direct control to multiple categories of recipients, each operating under separate privacy policies. This creates operational dependencies on third-party privacy practices for data originally collected by Waze.
Waze
· Waze Privacy Policy
The clause establishes a data-sharing framework between Waze and Google's broader corporate ecosystem, enabling cross-platform advertising coordination and measurement across multiple Google services and partner properties.
The provision establishes the corporate structure relevant to data handling and directs users to supplemental privacy documentation that governs how data may be processed across affiliated entities.
Ford
· Ford Privacy Policy
This provision establishes the operational scope of Ford's data sharing authority and clarifies the separate governance structure for dealer data practices. It creates a distinction between Ford's direct data responsibilities and dealers' independent privacy obligations, requiring users to review dealer policies separately to understand how dealers will handle shared personal information.
Uber
· Uber Privacy Notice
The clause establishes a broad authorization for data disclosure that operates across multiple categories: legally compelled disclosures, discretionary safety-based disclosures, and disclosures to protect the company's interests. The provision does not require prior notice to affected individuals before disclosure occurs.
Uber
· Uber Privacy Notice
The clause establishes the operational framework under which Uber may fulfill legal obligations and investigatory responsibilities regarding user data. It clarifies the circumstances under which data sharing with external authorities occurs without requiring separate user notice or consent.
OpenAI
· OpenAI Privacy Policy
This clause establishes the conditions and parties to whom OpenAI may transfer user personal information outside normal service operations. The provision grounds disclosure authority in legal compliance, safety protection, and fraud prevention, creating a defined pathway for information sharing with government and law enforcement entities.