Waze
· Waze Privacy Policy
This provision authorizes access to contact lists and collection of communications content as a condition of using the Carpooling feature, extending data collection beyond navigation use to include third-party personal data (your contacts) and interpersonal communications.
Klarna
· Klarna Terms of Service
The provision conditions cashback availability on multiple operational factors outside Klarna's direct control, including merchant approval and user device settings, which creates variability in reward issuance. This structure establishes that cashback is not guaranteed and depends on technical, commercial, and third-party variables.
Klarna
· Klarna Terms of Service
The broad list of factors that can prevent cashback from being issued, including cookie settings you may have adjusted for privacy reasons, means that advertised cashback rewards are not guaranteed and may be withheld without the consumer having done anything wrong in a traditional sense.
Klarna
· Klarna Terms of Service
This provision establishes that cashback funds are not transferable outside the Klarna platform and that issuance is conditional on multiple third-party and technical factors, which affects the reliability and utility of the cashback benefit.
This provision reserves enforcement authority beyond the enumerated rules, meaning users cannot rely solely on the specific listed prohibitions to determine whether their conduct is permitted.
Zillow
· Zillow Privacy Notice
This provision establishes the scope of Zillow's data collection across its platforms and is foundational to evaluating the company's obligations under CCPA/CPRA, which requires disclosure of collected categories and their purposes.
Zoom
· Zoom Privacy Statement
This provision discloses the specific legal rights available to California residents under CCPA and CPRA, including the right to opt out of the sale or sharing of personal information with third parties for advertising purposes. The non-discrimination right means Zoom states it will not penalize you for exercising these rights.
Replit
· Replit Privacy Policy
This provision operationalizes legal obligations under CCPA and GDPR by establishing the specific mechanisms through which users can exercise statutory data subject rights. The clause clarifies that Replit recognizes and will facilitate these rights for qualifying jurisdictions, affecting how the company processes and responds to user data requests.
This provision operationalizes Zendesk's compliance obligations under California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA) by establishing the specific data subject rights that must be honored upon resident request, establishing the operational framework for data access, deletion, and opt-out mechanisms.
Ledger
· Ledger Privacy Policy
This provision operationalizes Ledger's legal obligations under California privacy law by specifying how the company must respond to resident requests and what categories of data control rights apply. The clause establishes procedural requirements for request submission, verification, and response timelines.
The CCPA opt-out right for data sharing is particularly significant because HubSpot shares data with advertising partners for cross-context behavioral advertising, which qualifies as regulated sharing under CPRA even without a monetary sale.
Writer
· Writer Privacy Policy
This provision operationalizes Writer's compliance obligations under CCPA by explicitly recognizing the enumerated consumer rights that California law grants. The clause establishes the framework under which California residents may request disclosure, deletion, correction, and opt-out actions regarding their personal information.
The clause conditions the availability of state privacy rights on whether federal financial privacy laws govern the personal information at issue. This creates a jurisdictional framework in which Robinhood's obligations are determined by whether applicable data is subject to GLBA or similar federal regimes rather than state consumer privacy statutes.
This provision operationalizes CCPA compliance obligations by specifying which statutory consumer rights ClickUp recognizes and the procedural mechanisms (privacy request form and website opt-out link) through which California residents may exercise those rights. The clause establishes that ClickUp acknowledges both affirmative rights (access, deletion, correction) and the ability to restrict data practices (opt-out of sale or sharing).
Square
· Square Privacy Notice
The provision operationalizes Square's legal obligations under California's consumer privacy statutes by explicitly acknowledging and describing the specific consumer rights that California residents may exercise regarding their personal information in Square's custody. This establishes the framework within which Square must process consumer requests and govern data handling practices.
This provision implements statutory requirements under the California Consumer Privacy Act and California Privacy Rights Act, establishing specific data subject rights that Verizon must honor upon valid consumer request. The clause creates operational obligations for the company to maintain processes and systems for data access, deletion, correction, and opt-out mechanisms.
This provision implements California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA) statutory requirements, establishing the operational framework through which the entity must process consumer rights requests and maintain compliance with state privacy law mandates.
The provision operationalizes California statutory obligations by establishing the procedural framework through which Equifax receives and processes consumer rights requests. It designates specific submission mechanisms and identifies the categories of rights available to California residents under applicable state law.
This provision operationalizes McDonald's compliance obligations under the California Consumer Privacy Act and California Privacy Rights Act by establishing the procedural mechanism through which eligible residents can exercise statutory rights and by specifying that McDonald's will not discriminate in service, pricing, or quality based on rights exercise.
Yelp
· Yelp Privacy Policy
The provision establishes Yelp's baseline data sale practice and creates a procedural requirement to notify users and provide opt-out mechanisms if the company's data sale practices change. It also references supplementary state-specific privacy disclosures that define additional consumer rights and company obligations under applicable state law.
The opt-out of sale or sharing right is particularly significant because Vercel acknowledges sharing user data with advertising partners, and California residents can specifically prevent this by submitting a request.
Notion
· Notion Privacy Policy
This clause operationalizes California statutory rights under CCPA/CPRA by specifying the submission mechanism and contact points through which residents may direct the entity to cease sale or sharing practices. The provision establishes the procedural framework for exercising a legally mandated consumer control.
This provision operationalizes statutory California privacy obligations within MetaMask's contractual framework, establishing the procedural and substantive mechanisms through which California residents may exercise data access, disclosure, and opt-out rights, and ensuring non-discriminatory treatment in service access and pricing.
This provision discloses that advertising data sharing may meet the CCPA definition of sale and establishes an operative opt-out right for California residents, while simultaneously asserting that the company does not sell data in the traditional sense, a qualification that may affect the scope of the opt-out as understood by consumers.
The clause establishes the operational scope of data sharing practices and designates the mechanism through which users can modify those practices. It clarifies that sharing for advertising purposes is authorized under the terms unless the user exercises the opt-out function.
This provision describes the opt-out mechanism available to California residents under CCPA as amended by CPRA. The operational availability and functionality of the designated opt-out link is a compliance requirement subject to California AG and CPPA enforcement.
The policy distinguishes between selling and sharing personal data under CCPA, acknowledging that advertising cookie sharing may qualify as sharing under CPRA, and provides California residents with a specific opt-out right.
OpenAI
· OpenAI Data Processing Addendum
This provision establishes OpenAI as a service provider rather than a third party under CCPA/CPRA, which is a legally significant distinction that affects how the business customer can characterize its data sharing in its own privacy disclosures and whether it incurs CCPA liability for data flows to OpenAI.
The provision establishes Uniswap's operational position regarding CCPA compliance by declaring non-participation in personal information sales under the statute's definition. This clarification affects the applicability of CCPA data sale rights and opt-out mechanisms to users subject to California law.
This provision grants California residents a specific statutory right to stop their data from being shared for behavioral advertising, and Mixpanel acknowledges that its advertising-related data sharing may qualify as 'sharing' under CCPA/CPRA.