These tracking tools allow Poshmark and its advertising partners to build a detailed profile of your online activity — both on and off Poshmark — …
Amazon
· Amazon Privacy Notice
Amazon's tracking technologies follow you beyond Amazon.com across the broader internet, building a detailed behavioral profile used for advertising — this is not limited to …
Roblox
· Roblox Privacy and Cookie Policy
Millions of Roblox users are children — this provision sets the legal floor for what data Roblox can collect from them and requires parental involvement.
PayPal
· PayPal Privacy Statement
A negative mark on your credit report from a PayPal dispute can remain for up to seven years and affect your ability to get loans, …
Peloton collects sensitive health and fitness data that, if shared or breached, could have significant privacy implications for users.
Consumers using apps powered by Google Maps should know that Google may collect data about their location and app usage, even within third-party applications.
Square
· Square Terms of Service
Square collects a wide range of data about you, your customers, and your business transactions, and uses it for purposes beyond processing payments — including …
Children's data is among the most sensitive category of personal information, and parents need to understand the scope of what Meta collects in order to …
Even if you have never created a Pinterest account, the company may be building a profile about your online behavior using tracking tools placed on …
Scanning for which apps are installed on a user's device is a highly invasive practice that goes beyond what is needed to stream music and …
EA
· EA Privacy and Cookie Policy
Device fingerprinting is a persistent tracking technique that can identify you across sessions and platforms without relying on cookies, making it harder to avoid and …
TikTok
· TikTok Community Guidelines
Motion sensor data can be used to identify users across sessions, infer physical activity or health information, and enable sophisticated behavioral fingerprinting — all without …
TikTok
· TikTok Community Guidelines
This level of device-level monitoring goes far beyond what most users would expect from a policy page and may constitute covert collection of sensitive signals …
TikTok
· TikTok Community Guidelines
This monitoring goes far beyond standard analytics and constitutes collection of sensitive behavioral and physical data from users' devices, including potentially reading clipboard contents which …
TikTok
· TikTok Community Guidelines
Most websites do not access physical device sensors or clipboard contents. TikTok doing so on its own policy pages — where users expect to read …
TikTok
· TikTok Community Guidelines
Geolocation is among the most sensitive personal data categories; monitoring its API access without a prominent disclosure on this specific page may violate GDPR transparency …
TikTok
· TikTok Community Guidelines
Most users visiting a policy or safety page would not expect their device's physical sensors and clipboard to be monitored; this collection goes significantly beyond …
Many users who signed up with a work email may not realize their employer has or could gain access to their full conversation history with …
Stripe
· Stripe Privacy Policy
Most consumers do not know that Stripe is operating behind the scenes at online checkouts and collecting their data, making it difficult to exercise privacy …
Stash
· Stash Privacy Policy
This level of financial data collection — especially bank login credentials — represents significant privacy and security risk if that data is ever compromised or …
This is among the most sensitive combination of personal data that can be collected — government ID plus financial account information plus biometrics together enable …
You cannot use Coinbase without surrendering a comprehensive set of identity and financial data — making a potential breach or misuse of this information particularly …
Webull
· Webull Privacy Policy
The breadth of data collected — spanning identity, finances, and behavior — creates significant privacy exposure and potential risk if data is breached or misused.
Meta
· Meta Privacy Policy
Biometric data like face recognition identifiers is among the most sensitive personal data under multiple legal frameworks, and any breach, misuse, or unauthorized processing creates …
Collecting facial imagery and identity documents constitutes biometric data collection under several US state laws, and the deletion guarantee applies to Spotify but may not …
Collection of facial images and identity documents is among the most sensitive categories of personal data and may trigger biometric privacy laws in Illinois, Texas, …
Facial images are biometric data under several laws including Illinois BIPA and GDPR Article 9, and collection of such data — even with a stated …
Meta
· Meta Privacy Policy
Biometric data is uniquely sensitive because it cannot be changed if compromised — unlike a password — and its collection without proper consent has resulted …
Gusto
· Gusto Privacy Policy
Your bank account details are among the most sensitive financial data — exposure could enable unauthorized withdrawals or identity theft.
This volume of sensitive financial and identity data makes your Coinbase profile an extremely high-value target for data breaches, and Coinbase's collection of this data …