Meta
· Meta Platform Policy
This restriction limits developers' ability to enrich or cross-reference Meta platform data with other datasets, which affects common analytics, personalization, and identity resolution practices used across the industry.
Meta
· Meta Platform Policy
This provision establishes operational constraints on Meta's data commercialization and surveillance capabilities, creating defined limits on data monetization pathways and surveillance applications. The restrictions shape Meta's permitted data processing activities and commercial uses of user information.
Meta
· Meta Platform Policy
This restriction establishes a boundary on how Platform Data may be commercially monetized or distributed through third-party data channels. The clause limits the downstream commercial distribution pathways available to users operating within Meta's platform infrastructure.
Meta
· Meta Platform Policy
This clause establishes Meta's data ownership framework by contractually restricting downstream commercial use of platform-derived data. The provision operationalizes Meta's control over data monetization pathways and prevents secondary markets in platform data assets.
Meta
· Meta Terms of Service
This provision implements compliance with children's privacy regulations, including the Children's Online Privacy Protection Act (COPPA) in the United States and similar regulatory frameworks in other jurisdictions. The deletion obligation establishes a remedial process when age restrictions are not observed.
This provision establishes that sensitive user query content and conversation history are transmitted to third-party organizations beyond Perplexity, creating a data sharing chain that extends Perplexity's privacy obligations into downstream provider relationships. Compliance teams should assess whether adequate data processing agreements govern these transfers and whether the processing basis is sufficient under applicable law.
23andMe
· 23andMe Privacy Statement
The provision establishes the operational scope of data utilization beyond individual health reporting, creating a revenue model dependent on research data licensing. This authorization distinguishes 23andMe's business model from ancestry-focused services and structures user data as a resource for pharmaceutical development pipelines.
23andMe
· 23andMe Privacy Statement
This provision defines the operational scope of 23andMe's research data sharing practices and establishes the procedural framework through which participant data may be aggregated and used for research initiatives. The opt-out structure determines how participants can control their ongoing participation in the research component of the service.
23andMe
· 23andMe Privacy Statement
The clause conditions access to the research program on explicit opt-in consent, meaning genetic data sharing with external research partners occurs only upon the user's voluntary enrollment rather than by default. This creates a distinct data usage pathway separate from 23andMe's primary service operations.
Meta
· Meta Platform Policy
This provision operates as a gatekeeping mechanism for sensitive data processing, requiring developers to obtain dual authorization (user consent plus Meta approval) before handling protected categories. The operational significance lies in the approval requirement, which establishes Meta as the administrative authority for validating use cases involving these data categories.
The Retail Data program means that your grocery purchase patterns and related behavioral data may be licensed to the brands whose products you buy, enabling those brands to target you with advertising based on your Instacart shopping history.
This provision establishes the operational framework for Walmart's retail media business model, which monetizes customer data by enabling third-party advertisers to access purchase and browsing information for targeted marketing purposes. The authorization to share data with advertising partners represents a primary revenue stream for the retail media network function.
This provision establishes the operational framework for Walmart's data monetization through its retail media network, defining the scope of permitted data sharing with advertising partners and clarifying the regulatory classification of such sharing under applicable state privacy statutes.
Target
· Target Privacy Policy
This provision establishes the operational framework for Target's cross-site behavioral advertising program. It specifies that data collection occurs across both Target-owned and third-party digital properties, enabling the company and its advertising partners to build and maintain browsing profiles for ad targeting purposes.
Target
· Target Privacy Policy
Target's retail media network means your in-store and online shopping data can follow you around the internet in the form of targeted ads, and this data is shared with external advertising technology companies beyond Target's direct control.
Target
· Target Privacy Policy
This provision operationalizes Target's retail media business model by establishing the data flows necessary for first-party audience segmentation and targeted advertising delivery. The clause defines the institutional framework for how customer transaction and behavioral data supports Target's advertising platform operations.
This provision establishes the operational framework for Paramount+ to monetize user data through advertising partnerships. The authorization to share personal data with third parties for advertising purposes represents a material business practice that affects the scope of data use beyond service delivery.
Chegg
· Chegg Privacy Policy
The clause establishes a broad authorization for data sharing with advertising partners using de-identified data categories, which permits monetization of user behavior patterns while relying on de-identification and aggregation as the privacy protection mechanism.
Target
· Target Privacy Policy
This provision triggers opt-out rights under CCPA/CPRA and analogous statutes in Colorado, Connecticut, Virginia, Texas, and other states; the terms require Target to process opt-out requests within 15 business days under CPRA and to honor Global Privacy Control signals, creating ongoing operational compliance obligations.
This provision confirms that your personal data may flow to external advertising and marketing networks, which means your driving habits, location, and profile data could be used to target you with ads across the web.
The policy authorizes sharing identifiers, browsing activity, and purchase history with third-party advertising partners, which under CPRA and similar state laws constitutes a data sale or share requiring an explicit opt-out mechanism that consumers must actively use to prevent this practice.
This provision establishes X's operational authority to facilitate data exchange between users and advertisers based on ad engagement signals, while creating a user-controlled mechanism to restrict such sharing. The clause specifies that data sharing serves dual functions: enabling advertiser analytics and supporting X's ad targeting infrastructure.
Square
· Square Privacy Notice
Sharing personal data with third-party advertising partners for targeted advertising purposes may qualify as a sale or sharing of personal information under CCPA/CPRA, triggering opt-out rights for California residents, and requires a valid lawful basis under GDPR.
Noom
· Noom Privacy Policy
The provision establishes the operational framework for data sharing with external analytics and advertising partners, enabling cross-site data aggregation and analysis. This data practice constitutes a standard mechanism for website analytics and ad targeting infrastructure.
The clause creates a framework distinguishing between personal and non-personally identifiable information, with different authorization standards for each category. This distinction determines which data flows require explicit user consent versus those the service may execute unilaterally for operational purposes.
The provision creates a dual privacy framework: HIPAA compliance applies when Care Providers are engaged, while state-specific consumer health data laws apply to other health data collected. This establishes different regulatory obligations and data handling standards depending on the user's interaction type.
The provision establishes a data-sharing practice that extends user information to external advertising technology providers for targeting and analytics purposes. This practice triggers disclosure obligations under state privacy statutes and defines the operational scope of third-party data access.
Uber
· Uber Privacy Notice
The clause establishes the conditions and scope under which Uber may share user data with government and law enforcement entities without separate user notice or consent, creating an operational pathway for data disclosure based on Uber's good faith assessment of legal necessity.
Zillow
· Zillow Privacy Notice
Users submitting a single inquiry may receive outreach from multiple professionals they did not individually select, because Zillow treats the inquiry as authorization to share data more broadly.
Redfin
· Redfin Privacy Policy
This means your real estate browsing behavior and account data may follow you across the internet in the form of targeted advertising, even on unrelated platforms.