– January 1, 2020
Under requests to know and delete, jetBlue includes the following categories for users to access their data:
• Personal information collected
• Sources from which personal information was collected
• Personal information about you disclosed for a business purpose or sold
• Third parties that personal information was disclosed to for a business purpose or sold
• The business or commercial purpose for collecting or selling the personal information
• The specific pieces of personal information collected about you
jetBlue has a similar section covering data subject rights and the GDPR for EU data subjects.
– November 2019
In Dyson’s longer form policy, the company covers how personal data is collected, used, and shared with third parties. They also explain in greater detail how “in certain circumstances” users can:
• Object to use of your data for certain purposes
• Ask to limit or restrict our use of your data
• Ask to correct, remove, or delete personal data about you
• Ask to provide your data to a third-party provider of services
Dyson does not make note of any CCPA-specific rights but notes that “If you would like to exercise any of your rights in relation to your data, email [email protected] or call your local Dyson centre from the Contacts page. We may request that you provide further information related to your request.”
– December 23, 2019
In terms of data collection, Pinterest states the following:
• “When you sign up for or use, you voluntarily share certain information — including name, email address, phone number, photos, Pins, comments, and any other information you give them.”
• “When you use a website, mobile application or other internet service, certain internet and electronic network activity information is created and logged automatically.”
Pinterest also provides detailed rights for users regarding their information, such as:
• Requesting access to the information collected about you. They’ll usually share this with you within 30 days of asking for it through their Help Center.
• Having your information corrected or deleted. You can update your information in your profile or delete your data by closing your account.
• Objecting to Pinterest processing your information. You can ask them to stop using your information, including when they use your data to send you marketing emails or push notifications. If you opt out of receiving marketing messages from them, they may still send you updates about your account, such as when someone comments on one of your Pins.
For California residents, Pinterest has included a section covering Right to Know and Access, Right to Equal Service, and Right to Delete. To exercise these rights, users have the option to visit the Pinterest Help Center or contact their privacy team at [email protected].
– December 18, 2019
Snap has added a California Privacy Notice (effective January 1, 2020) that details California residents’ rights regarding their data, information collected by Snapchat and how data is shared with third parties. Their policy states that Snap does not sell data but rather sells advertisements with specific targeting based on data, which can be controlled by the user via the support page on advertising preferences (currently does not exist).
In terms of the privacy requests, Snap covers the basics — including the right to know what personal information is collected, who it’s shared with, right to deletion, and right to get a timely response (45 days).
– March 31, 2020
The scoop: Google collects the following, among other forms of data:
• Voice and audio information when you use audio features
• People with whom you communicate or share content
• Activity on Google and third-party sites and apps that use their services
• Location information
• Sensor data from devices
Google’s policy has a few specific points around CCPA requirements, including their audit and measurement practices, use of service providers, and advertising.
Google states this information is used to build better services, measure performance, and communicate with users. Google also offers an easy way for users to update, review, and manage their information, which covers an extensive amount of data: Google’s Data Export
– May 31, 2019
OpenTable offers extensive information regarding how your data is shared. Some of these include sharing:
• Information with restaurants and affiliates
• With third parties for their own marketing purposes
• Information with third-party vendors, consultants, and other service providers
• OpenTable does well to offer a way to opt out of information sharing through your account preferences and allows users to opt out of marketing communication through an unsubscribe link.
– February 24, 2020
There’s also a section covering California residents, their rights and requests that details how Squarespace maintains compliance and points users to the above-mentioned section on rights and choices for how to exercise consumer rights.
– January 1, 2020
Slack states in the policy that in general they are the processor of customer data and the controller of “other information”. These distinctions matter for data protection laws in certain jurisdictions. In terms of the GDPR, Slack relies on legitimate interest in order to process user and customer data.