This provision operationalizes statutory obligations under CPRA by establishing the mechanism through which consumers can restrict data usage to service delivery purposes and control commercial data transfer practices. The clause creates a framework where consumers may affirmatively exercise limitation and opt-out rights that Headspace must honor through its data handling procedures.
This clause implements statutory rights under California privacy law by creating specific request mechanisms that Verizon must establish and maintain to comply with consumer data rights mandates.
The provision operationalizes California statutory privacy requirements within Verizon's service terms, establishing specific procedures for how consumers in California may exercise state-mandated privacy rights and how Verizon implements compliance mechanisms.
The provision operationalizes Thomson Reuters' compliance obligations under California privacy statutes by explicitly acknowledging resident rights and establishing the procedural basis for Thomson Reuters to process data subject requests within the required legal timeframes and scope.
Bumble
· Bumble Privacy Policy
The clause establishes that California-specific privacy rights and obligations are documented separately from the general privacy policy, requiring users to consult multiple documents to understand their complete privacy protections and data rights under state law.
Unity
· Unity Privacy Policy
The provision operationalizes California Consumer Privacy Act (CCPA) requirements by establishing an opt-out mechanism for personal information sales and sharing practices. The clause specifies both the categories of data subject to potential sale or sharing and the procedural channels through which residents may restrict those practices.
The California supplemental disclosures section provides the most detailed account of what data Instacart collects and shares with third parties, and it is the section most relevant to consumers who want to understand and exercise rights over their personal information.
Camera and image processing features, particularly augmented reality Lenses that map facial geometry, may generate data that constitutes biometric information under state laws such as Illinois BIPA, creating significant legal exposure.
Chegg
· Chegg Privacy Policy
This provision operationalizes Chegg's statutory obligations under California privacy legislation by establishing procedures through which consumers can exercise legally-mandated rights over their personal information. The clause ensures the company maintains systems and processes to receive, verify, and fulfill these requests within timeframes required by law.
Target
· Target Privacy Policy
The provision creates an operational requirement for Target to honor opt-out requests submitted through specified mechanisms, establishing procedural pathways through which California residents can exercise statutory rights under CCPA/CPRA.
Zelle
· Zelle Privacy Policy
The clause creates a categorical limitation on the scope of statutory privacy rights by restricting their availability to a specific subset of California residents based on transaction type and relationship status. This operational distinction means that California residents engaging with Zelle in consumer rather than business capacities would not have access to the enumerated CCPA/CPRA rights under this provision.
This provision operationalizes TaskRabbit's CCPA compliance framework by acknowledging potential regulatory overlap between its disclosed advertising practices and CCPA's definition of 'sale,' while establishing an opt-out mechanism as required under California law. The clause clarifies that users retain control over participation in these specific data practices through an affirmative election process.
The provision operationalizes CCPA compliance by creating an opt-out mechanism for data sale and sharing activities. It establishes the procedural pathway through which users may exercise their statutory right to direct the company to cease selling or sharing their personal information as defined under CCPA.
Visa
· Visa Privacy Notice
This provision operationalizes Visa's compliance obligation under the California Consumer Privacy Act by establishing a documented opt-out process. The availability of multiple submission channels (web link and phone) creates an administrative pathway for California residents to exercise the statutory right to control sale or sharing of personal information.
Target
· Target Terms and Conditions
The clause operationalizes Target's statutory obligation under CCPA to provide consumers a functional opt-out mechanism for data sale and sharing activities. The provision establishes the procedural framework by which Target receives, processes, and implements consumer opt-out elections regarding covered data practices.
The clause operationalizes Audible's compliance obligations under the California Consumer Privacy Act (CCPA) by specifying the mechanism through which eligible residents can exercise statutory opt-out rights regarding data sale and sharing practices.
Under CCPA and CPRA, California residents have enforceable rights including an opt-out of sharing personal data with advertising partners; voice recordings may qualify as sensitive personal information under CPRA, triggering additional use limitation rights.
Zelle
· Zelle Privacy Policy
The scope limitation creates two eligibility requirements that must both be satisfied for CCPA rights to apply: California residency status and B2B interaction context. This restriction narrows the class of users entitled to exercise statutory privacy rights under the provision.
The agreement conditions opt-out from AI model training on loss of Chat Service access entirely, meaning users cannot retain both privacy from model training and full service functionality simultaneously.
Creating an account for a child under 13 constitutes verifiable parental consent under COPPA, making the parent responsible for the child's activity and for understanding what data Khan Academy collects from the child.
This provision governs how data from minor users is collected and used, and whether parental consent mechanisms meet regulatory standards under COPPA and equivalent frameworks.
Parents are accepting full liability for their child's activity on PlayStation, which means a child's code of conduct violation or unauthorized purchase could result in consequences that affect the parent's account, console, and purchased content library.
This provision establishes an affirmative publisher obligation to identify child-directed content and configure ad serving accordingly, with failure to do so creating both AdSense policy violations and potential regulatory exposure under COPPA and equivalent laws.
The provision operationalizes Minecraft's legal obligation to implement age-gating mechanisms and consent verification procedures, establishing the procedural baseline for permissible data handling across different user age categories. This framework determines which data practices proceed with parental consent versus which practices are restricted for users under 13.
Canva
· Canva Privacy Policy
The school-as-intermediary model for child data consent is a common but legally sensitive structure under COPPA, and whether it satisfies verifiable parental consent requirements depends on the specific contractual terms agreed with educational institutions and applicable state student privacy laws.
Chegg
· Chegg Privacy Policy
Given that Chegg is an education platform heavily used by teenagers including students under 13, the adequacy of the age verification mechanism and the reactive rather than proactive approach to underage data collection creates meaningful COPPA risk.
Because Paramount+ hosts major children's brands like Nickelodeon, the adequacy of age verification and parental consent mechanisms is especially significant for families; COPPA violations can expose both the company and parents to harm if children's data is collected improperly.
Given Snapchat's widespread use among teenagers, the adequacy of age verification and the specific nature of 'certain restrictions' for users aged 13-17 are material to assessing whether minors' data is adequately protected under COPPA and state children's privacy laws.
Despite hosting Nickelodeon, Nick Jr., and other children's content, the terms restrict use to those 13 and older, creating a tension between the platform's content offering and its stated age restriction that parents should be aware of.
The collection of date of birth to gate child accounts is the mechanism through which COPPA compliance is implemented; if this process fails to accurately identify or appropriately restrict data collection for users under 13, it creates material regulatory exposure.