Using a work email address to access Claude.ai may give your employer visibility into conversations that you intended to be private, including personal or sensitive content shared in the course of using the service.
Employees using Airtable through an employer-managed account should be aware that their activity, content, and profile data can be disclosed to their employer, potentially without separate notice.
Gusto
· Gusto Privacy Policy
The processor designation clarifies the legal relationship between Gusto and employers regarding data responsibility. Under data protection frameworks, processors have specific obligations regarding data handling, security, and limitations on use that differ from those of data controllers.
Glean
· Glean Privacy Policy
This clause determines where your privacy rights can actually be exercised. Employees cannot bypass their employer to make data requests directly to Glean, which may create practical barriers.
Employees using Fireworks AI under an enterprise account should be aware that their activity and personal data may be visible to their employer or other company representatives through Fireworks, which has potential workplace privacy implications.
The collection of salary information, paystubs, benefits enrollment data, and timecard records represents a category of sensitive financial and employment data that extends beyond standard payment app data collection and may interact with payroll data privacy requirements and GLBA depending on use.
This provision establishes the technical framework governing message confidentiality. The encryption mechanism defines the scope of data WhatsApp can access and disclose regarding message content.
End-to-end encryption is a significant privacy protection for message content, but the policy makes clear this applies to message content in transit and does not necessarily protect metadata (such as who you message, when, and how frequently) which WhatsApp does collect and may share.
This provision establishes a procedural mechanism for users to exercise control over whether their data is collected by Mixpanel's analytics platform. The availability of an opt-out mechanism defines the operational scope of user choice regarding data collection practices.
The provision establishes a mechanism through which users can control whether Mixpanel collects data from their device. The opt-out relies on a persistent cookie, meaning the user's opt-out preference must be maintained across browsing sessions to remain effective.
Runway
· Runway Privacy Policy
Employees using Runway with work email addresses may have their account information disclosed to their employer without a separate consent step, and enterprise account administrators are granted access and control rights over individual user accounts.
Figma
· Figma Privacy Policy
Employees using Figma under a company account should understand that their employer may be able to view their work, activity, and communications within the platform.
OpenAI
· OpenAI API Data Usage Policies
This distinction is material for businesses processing employee or customer data through OpenAI products, as it affects whether submitted inputs could be incorporated into future model outputs accessible to other users.
Microsoft
· Microsoft Privacy Statement (Legacy)
Users accessing Microsoft products through organizational accounts should be aware that their employer or institution may have access to their communications and files and may control their privacy settings, which is materially different from the protections available to personal account holders.
Organizations using Pinecone's vector database services for their own applications should be aware that the protections and disclosures in this website privacy policy do not apply to any personal data they send to Pinecone as part of those services; separate contractual terms govern that data.
Writer
· Writer Privacy Policy
This provision establishes that individual end users accessing Writer through an employer or enterprise account may operate under a separate contractual data governance regime, meaning the rights and protections described in this policy may not apply directly to those users in practice.
Users accessing Luma through an employer or enterprise customer may have substantially different privacy protections than consumer users, and Luma explicitly disclaims responsibility for enterprise customer data practices.
Enterprise users may have different and potentially stronger data protections depending on their employer's negotiated agreement with Grammarly, but this also means employees may not be able to rely on the consumer-facing privacy policy for their data.
Udemy
· Udemy Privacy Policy
This provision establishes the legal framework under which EU and EEA users interact with Udemy's data processing activities, including the lawful bases asserted for processing and the mechanisms through which data subjects can exercise statutory rights.
EU and EEA users have significantly stronger data rights and consumer protections under GDPR and EU consumer law than users in many other regions, and the applicable terms variant for their country should reflect those rights including data access, erasure, and portability.
RunPod
· RunPod Privacy Policy
This provision establishes that RunPod asserts GDPR compliance obligations for EU/EEA users and commits to honoring the full range of GDPR data subject rights, which creates enforceable obligations under EU law and may be subject to supervisory authority review.
This provision documents HubSpot's acknowledgment of GDPR and UK GDPR data subject rights and the supervisory authority complaint pathway, establishing the operational framework for EU and UK individuals to exercise rights in relation to HubSpot-controlled data.
This provision establishes the legal rights framework Jasper applies to EU, UK, and Swiss data subjects and the procedural mechanism for exercising those rights, which is operationally relevant for enterprise customers with European operations.
The policy acknowledges GDPR and UK GDPR rights for EEA and UK users and provides accessible channels for exercising them, including in-app settings and a direct email address, which represents a concrete mechanism for users to act on their privacy rights.
This provision acknowledges the applicability of GDPR and UK GDPR to EU and UK residents interacting with twilio.com, including the legal basis for processing and rights to object to certain uses of personal data.
The policy confirms that EU and UK users have GDPR rights enforceable by local supervisory authorities, including the right to lodge complaints without needing to take legal action directly against Duolingo.
EU and UK users have stronger and more broadly applicable data rights than US users in most cases, including the right to object to processing and to receive a copy of their data in a portable format.
GDPR and UK GDPR rights are legally enforceable and Coinbase must respond to requests within defined timeframes, making these provisions more than contractual commitments for EU and UK users.
The provision operationalizes GDPR compliance requirements within Minecraft's data processing framework, establishing legal obligations regarding data subject rights, lawful basis for processing, data retention, and cross-border transfer restrictions specific to EU and UK users.
This provision establishes Skillshare's GDPR and UK GDPR compliance disclosure for EU and EEA and UK users, identifying the contact mechanism for exercising data subject rights; the phrase 'aims to take reasonable steps' is qualified language that does not unequivocally commit to specific statutory response timelines, which may warrant review against GDPR Article 12 requirements.