Slack
· Slack Privacy Policy
These rights give users meaningful control over their personal data, but they are jurisdiction-dependent and subject to exceptions, meaning not every right applies to every user.
OpenAI
· OpenAI Privacy Policy
The provision operationalizes compliance with regional data protection regulations by establishing a procedural mechanism for users to submit and exercise statutory rights. The location-dependent framework indicates that the scope of available rights varies by applicable legal jurisdiction.
This provision operationalizes OpenAI's compliance with data protection regulations that vary by jurisdiction, such as GDPR and comparable statutes. It establishes that users can exercise legally-mandated individual rights regarding their personal data held by the service.
GitHub
· GitHub Privacy Statement
The policy confirms data subject rights for users in applicable jurisdictions including GDPR rights for EU users and CCPA rights for California residents, with GitHub committing to respond in accordance with applicable law, though the specific timelines and scope of each right are not fully described in this provision.
The clause creates operational mechanisms for data subject rights compliance, establishing that users retain control over their stored personal data and can retrieve it in portable format independent of Google's systems.
Steam
· Steam Privacy Policy
Exercising your right to access or delete your data gives you visibility into and some control over the personal information Valve holds and shares about you across the platform.
The availability and practical accessibility of these rights varies significantly by region, and the actual mechanisms for exercising them, such as submitting deletion requests or objecting to processing, require users to actively navigate Meta's settings.
Chegg
· Chegg Privacy Policy
These rights are meaningful protections, but they are conditioned on the user's location, meaning their availability varies and users must proactively exercise them rather than being protected by default.
The policy discloses user data rights including access, rectification, portability, erasure, and objection to processing, which align with GDPR and CCPA statutory rights. Users can exercise these rights through the Meta Privacy Center.
The geographic conditionality of user rights means that your entitlements depend significantly on your jurisdiction. EU and UK users have strong GDPR-based rights, California users have CCPA and CPRA protections, but users in many other countries rely primarily on Apple's voluntary commitments rather than legally enforceable rights.
The provision operationalizes GDPR and CCPA compliance by establishing the procedural mechanisms through which users can exercise statutory data rights and clarifies the responsible entity for data control purposes across different regulatory jurisdictions. This structure allocates legal responsibility for data handling obligations based on user location.
These rights give users meaningful control over their personal data, but the policy qualifies them as dependent on location and applicable law, meaning not all users have the same rights.
User rights provisions establish the procedural mechanisms through which individuals may access, correct, delete, or port their personal information; these mechanisms are operationally significant for enterprise customers managing employee and end-user data on CoreWeave's infrastructure.
Upwork
· Upwork Privacy Policy
These rights are legally enforceable in the EU, UK, and California, meaning Upwork is obligated to respond to valid requests within statutory timeframes and cannot simply ignore them.
Cursor
· Cursor Privacy Policy
The policy identifies a single contact email for all data subject rights requests and appeals, and states that exercising these rights will not result in discriminatory treatment, which is a requirement under CCPA and aligned with GDPR rights provisions.
Figma
· Figma Privacy Policy
The clause operationalizes statutory data subject rights under GDPR and related frameworks by explicitly confirming Figma's obligation to provide mechanisms through which eligible users can exercise these rights. This establishes the procedural framework for individual data requests and establishes Figma's acknowledgment of regional regulatory requirements.
Roblox
· Roblox Privacy Policy
The policy discloses a range of data subject rights applicable depending on user jurisdiction, including access, correction, deletion, portability, restriction, objection, and consent withdrawal; the scope of rights available to a given user depends on their jurisdiction, and the identity verification requirement is an operational step that affects how easily users can exercise these rights.
The policy states that data subject rights are available on a jurisdiction-dependent basis, meaning not all users have the same rights and the policy does not enumerate which rights apply in which jurisdictions beyond broad references to applicable law.
The scope of your privacy rights depends significantly on where you live, with EU and UK users having the strongest protections under GDPR and UK GDPR, followed by California residents under CCPA/CPRA.
Tinder
· Tinder Privacy Policy
The availability and scope of these rights depends on where you live, meaning users in some jurisdictions have significantly more control over their data than others, and knowing your rights is the first step to exercising them.
Reddit
· Reddit Privacy Policy
This clause operationalizes statutory requirements under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA) by explicitly acknowledging the specific rights California residents may exercise. The provision establishes the framework through which users can invoke these legally-mandated protections regarding personal information handling.
These rights give you meaningful control over your personal data, but they are only available to users in specific jurisdictions and typically require you to actively submit a request to exercise them.
These rights give EU and California users meaningful control over their personal data including voice recordings, but they only apply if users actively exercise them by contacting ElevenLabs.
EU users have legally enforceable rights under GDPR, and California users have rights under CCPA/CPRA, but the notice frames these as conditional on location and applicable law, which is accurate but requires users to proactively assert their rights.
Noom
· Noom Privacy Policy
This provision operationalizes statutory GDPR rights by designating a specific contact mechanism and establishing procedures through which residents can exercise data access, correction, deletion, portability, consent withdrawal, and processing objection rights. The clause creates an institutional framework for responding to data subject requests.
Grindr
· Grindr Privacy Policy
These rights are among the most important protections available to users, but they only have practical effect if users know they exist and how to exercise them.
BeReal
· BeReal Privacy Policy
These rights give users in covered jurisdictions meaningful control over their personal data, but they are only valuable if users know they exist and how to exercise them.
Strava
· Strava Privacy Policy
Depending on your state of residence, you may have specific legal rights to access, delete, correct, or limit the use of your personal data, including health data, that go beyond what Strava's general policy describes.
These provisions establish procedural mechanisms for individuals to exercise control over their personal data through access requests, correction requests, and objection to processing. The framework operationalizes data subject rights under applicable privacy regulations and establishes Anthropic's obligations to respond to such requests within defined parameters.
Steam
· Steam Privacy Policy
The clause operationalizes Steam's compliance obligation under GDPR and CCPA by explicitly identifying the specific data subject rights the entity recognizes. This establishes the legal framework governing Steam's handling of personal data and the mechanisms through which users may exercise regulatory rights.