Collection of facial images and identity documents is among the most sensitive categories of personal data and may trigger biometric privacy laws in Illinois, Texas, …
Facial images are biometric data under several laws including Illinois BIPA and GDPR Article 9, and collection of such data — even with a stated …
Meta
· Meta Privacy Policy
Biometric data is uniquely sensitive because it cannot be changed if compromised — unlike a password — and its collection without proper consent has resulted …
Gusto
· Gusto Privacy Policy
Your bank account details are among the most sensitive financial data — exposure could enable unauthorized withdrawals or identity theft.
This volume of sensitive financial and identity data makes your Coinbase profile an extremely high-value target for data breaches, and Coinbase's collection of this data …
Uber
· Uber Privacy Notice
Collection of bank account numbers and tax IDs creates significant financial fraud and identity theft risk if data is breached or misused, and represents highly …
Your complete financial and trading history on Coinbase creates a detailed picture of your wealth, investment behavior, and financial relationships — data that is particularly …
Financial data is among the most sensitive personal information, and its collection by an investment platform creates significant privacy and security risks if misused or …
Redfin
· Redfin Privacy Policy
This is among the most sensitive personal and financial data a consumer can share, and its collection, storage, and potential sharing with partners warrants careful …
Stripe
· Stripe Privacy Policy
Relying on 'legitimate interests' for automated fraud processing means Stripe does not need your consent and you have a limited right to object, but this …
TikTok
· TikTok Community Guidelines
Precise GPS location is among the most sensitive personal data under GDPR and US privacy law. Battery status data can be used for device fingerprinting …
TikTok
· TikTok Community Guidelines
Precise geolocation data is among the most sensitive personal data categories, and continuous location monitoring ('watchPosition') is typically used for real-time location tracking rather than …
Bumble
· Bumble Privacy Policy
Precise location tracking on a dating app can reveal sensitive information about where you live, work, or spend time, and could pose safety risks if …
Precise location data is among the most sensitive categories of personal information and can reveal sensitive details about your daily routines, home address, and movements.
TikTok
· TikTok Community Guidelines
Geolocation data is among the most sensitive personal data types because it can reveal home addresses, workplace locations, places of worship, medical facilities visited, and …
PayPal
· PayPal Privacy Statement
Continuous collection of precise GPS location during financial account login — even when not actively making a payment — goes beyond what is necessary for …
TikTok
· TikTok Community Guidelines
Monitoring microphone and camera API access at full sample rate on a policy page goes far beyond what is necessary for platform operation and could …
This significantly expands the scope of data collection from anonymous identifiers to identifiable child profiles, and the data persists across devices and after sign-out unless …
Collecting government-issued identity documents and social security numbers represents some of the highest-value data for identity theft; a breach involving this data would have severe …
Gusto
· Gusto Privacy Policy
Government-issued IDs like Social Security numbers are the primary enabler of identity theft — their compromise can cause lasting financial and legal harm.
Health information is a sensitive personal data category under GDPR and CCPA, requiring stronger protections and explicit consent — its collection by a ticketing company …
Fitbit
· Fitbit Terms of Service
Health and biometric data is among the most sensitive personal information — it can reveal medical conditions, lifestyle habits, and other deeply private details that …
Apple
· Apple Privacy Policy
Health data is among the most sensitive categories of personal information, and its collection by a technology company creates significant privacy and regulatory risk, particularly …
Apple
· Apple Privacy Policy
Health data is among the most sensitive categories of personal information under GDPR Article 9 and state biometric privacy laws, and its collection creates heightened …
Microsoft
· Microsoft Privacy Statement (Legacy)
Health data is among the most sensitive categories of personal information, and its collection by a technology company through non-medical products creates risks around re-identification, …
Microsoft
· Microsoft Privacy Statement (Legacy)
Health data is among the most sensitive categories of personal information, and its collection by a general technology company raises significant privacy concerns particularly regarding …
Uber
· Uber Privacy Notice
The collection and processing of government ID and facial images through automated verification technology creates biometric privacy risks, particularly in states like Illinois where the …
Providing a government-issued ID to a ticketing platform and its payment processor creates significant data sensitivity risks, particularly given Ticketmaster's history of data breaches.
Biometric and government ID data is among the most sensitive personal information — if breached or misused, it cannot be changed like a password and …
Square
· Square Privacy Notice
Providing a government ID or biometric data to Square creates a sensitive data record that is subject to strict legal protections, and any breach or …