If you live in a state with a privacy law governing Consumer Health Data please review our Consumer Health Data Policy.
U.S. STATES PRIVACY NOTICE
Last Updated: October 1, 2025
This U.S. States Privacy Notice (“Notice”) supplements the information in, and is part of, the Peloton Privacy Policy. This Notice discloses information related to our privacy practices required by individual U.S. State laws. This Notice is intended to supplement the Peloton Privacy Policy in order to meet our disclosure requirements pursuant to relevant state law. To understand our privacy practices, you should refer to the Peloton Privacy Policy in addition to this supplement applicable to residents of rights granting states.
This Notice applies to Personal Information, as defined below, that is processed by Peloton in the course of our business, including via the Peloton websites, the interfaces on tablets connected to Peloton fitness equipment such as the Peloton Bike and Tread, and through our Apps, forums, social media accounts, blogs, studios, retail showrooms, and other online or offline offerings (together, with any and all future online and offline offerings operated by or on behalf of Peloton, the “Services”).
This Notice is not intended to apply to Personal Information we collect about our employees, applicants for employment, or contractors in the employment context.
The definition of “Personal Information” may be different under individual state regulations. As used in this Notice only, “Personal Information” refers to “information that identifies, relates to, describes, is capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer or household.”
1. WHAT PERSONAL INFORMATION WE COLLECT
The table below identifies the categories of Personal Information we collect and provides examples of Personal Information in such categories, along with information on the third parties with whom such categories of information may be shared. For additional information about the Personal Information we collect, and who we share with, please see Sections 1 and 3 of the Peloton Privacy Policy.
| Category | Types of Personal Information in this Category | Third Party Recipients |
|---|---|---|
| Standard Identifying Information | Name, email address, mailing address, shipping address, phone number. | Service Providers and Partners (including third party advertisers), Other Users of our Services |
| Protected Characteristics/Sensitive Personal Information | Age, Gender. | Service Providers and Partners (including third party advertisers), Other Users of our Services |
| User Profile Information | Username, real name and any additional information you choose to provide to enhance your use of the Services, including your weight, height, general location, tags. | Other Users of our Services, Service Providers and Partners (including third party advertisers) |
| Commercial Information | Purchase history, use history (total number of classes taken, the dates you took those classes, titles of classes you took, class performance history, including leaderboard rank, achievements earned), in-studio attendance history, teams you start and join, your followers and who you are following. | Other Users of our Services, Service Providers and Partners (including third party advertisers) |
| Geolocation | Internet protocol (IP) address, GPS location, longitude/latitude, city, county, zip code and region, and your location and your smart device’s proximity to “beacons,” Bluetooth networks and/or other proximity systems. | Other Users of our Services, Service Providers and Partners (including third party advertisers), Third Party Entertainment Partners you Access Via Peloton, Advertising Affiliates/Networks |
| Internet or other electronic network activity information | IP address, cookies and similar tracking technologies, mobile carrier, mobile advertising identifiers, MAC address, IMEI, Advertiser ID, and other device identifiers that are automatically assigned to your computer or device when you access the Internet, browser type and language, geo-location information, hardware type, operating system, Internet service provider, pages that you visit before and after using the Services, the date and time of your visit, the amount of time you spend on each page, what you search for, information about the links you click and pages you view within the Services, and other actions taken through use of the Services, such as Cookie preferences. Website analytics, identifying browsing/purchasing trends and patterns and evaluating this information on an aggregated, group(s) basis (Social media/External Account Data, Marketing Data) and individual basis (Account Data, Device Data, Location Data and Site Usage Data). | Service Providers and Partners (including third party advertisers), Third Party Entertainment Partners you Access Via Peloton, Advertising Affiliates/Networks |
| Financial or other Sensitive Information | Payment history information, information about your creditworthiness such as from Credit Bureaus. We do not collect health or medical information, however, some States may classify some of our workouts, fitness routines or accessibility offerings as sensitive or health-related information. Some examples: heart rate, if you connect a monitor, pregnancy-related workouts, some meditation classes, workouts related to your mood. Please note that as with all workouts, these workouts will be seen if your profile is public, and seen by any follower you allow to view your private profile. | Credit Referencing/Reporting Agencies, Service Providers and Partners (including third party advertisers) |
| Physical Characteristics (Audio, electronic, visual, thermal, similar information) | Your visual image, likeness and voice recording (e.g., via photographs and/or video); recordings of member support and sales calls. Some other physical characteristics are collected in connection with our Services when you consent to its use; for example, characteristic movements to better assist your exercise form and voice to remotely control our cross-training products. These are not used to identify you. | Service Providers and Partners (including third party advertisers) |
| Fitness Data | Information relating to your fitness performance and/or workouts, including weight repetitions, calories burned, distance covered, length of workout and fitness goals. | Other Users of our Services, Paired Applications, Service Providers and Partners |
| Professional Information | Company name and title for visitors and guests. | Service Providers and Partners |
| Photo, picture, image, or avatar | If you choose to upload a photo or image to be shown in your profile or to share in a Team Feed. | Other Users of our Services, Service Providers and Partners, Paired Applications |
| Paired Applications: Third Party Apps and Accounts that you Link to your Peloton account (“Paired Applications”) Information | If you access our Services through a third party application, such as the Apple App Store or Google Play App Store (together with any similar applications, "App Stores") we may collect your App Store user name, location, sex, birth date, email, profile picture. If you choose to connect your Peloton account with fitness apps, such as FitBit, Garmin and Apple Health, or Social Networking Sites such as Instagram, Twitter or Facebook, we may collect information about you from the Paired Application(s) that you have made public via your privacy settings in the Paired Application(s). This may include: your name, your Paired Application(s) user ID, location, sex, birth date, email, profile picture, your connections and contacts on the Paired Application(s), workout information. | Paired Applications, Service Providers and Partners |
| Inferences drawn from any of the above information categories | We may collect data and make inferences based on that data, but the inferences are not used to infer specific characteristics about you other than what workouts or classes you may enjoy. | Service Providers and Partners (including third party advertisers) |
We may also share each of the above listed categories of Personal Information with government entities if we believe doing so is necessary: (i) to comply with law enforcement or national security requests and legal process, such as, a court order or subpoena; (ii) to protect yours, ours or others’ rights, property or safety; or (iii) to enforce Peloton policies or contracts. Additionally, if we are involved in a merger, acquisition, financing, reorganization, bankruptcy, receivership, sale of company assets or transition of service to another provider, then each of the above listed categories of Personal Information may be shared with the involved corporate entities and their professional advisors, representatives and agents as part of the transaction as permitted by law and/or contract. For additional information about the sharing associated with the listed categories, please see Section 3 of the Peloton Privacy Policy.*
Personal information is sourced in various ways: 1) Information that you provide, 2) Information we collect automatically (in connection with the Services) and 3) Information we collect from other sources. For detailed information about the sources of the Personal Information we collect please see Section 1 of the Peloton Privacy Policy.
2. WHY WE USE PERSONAL INFORMATION
The Peloton Privacy Policy describes our uses of Personal Information (see section 2).
3. WHAT PERSONAL INFORMATION WE SHARE
In addition to the table above, the Peloton Privacy Policy provides information regarding the categories of third parties with whom we share Personal Information (see Section 3).
Some state laws, require that we also list the categories of Personal Information that we have disclosed to third parties for business purposes in the last 12 months. In the last 12 months, we have disclosed all of the categories of Personal Information we describe in the WHAT PERSONAL INFORMATION WE COLLECT section for business purposes. For example, we may share your IP address or device ID with service providers that provide crash monitoring and reporting services to us.
Some states allow residents to have the right to opt out of disclosures of Personal Information to third parties for valuable consideration (which may be considered a “sale” or “share” for example under California law even if no money is exchanged). If you reside in one of these states, and would like to minimize “selling” of your information with third parties for marketing purposes, see the YOUR RIGHTS section below. We do not “sell” sensitive personal data as defined by Maryland Online Data Protection Act. We do not sell personal information or aggregated data for monetary value. We may share personal information as needed to run our business and provide the Services, and where required for legal purposes, as set forth below. Categories of third parties that we may share your information with are listed above. You may also toggle off “Personalized Experience” and “Marketing based on activity” in settings which is another and separate way to control our use and sharing of your information.
Please Note: Laws in some U.S. States define the term “sale” broadly, and it may include selling/sharing certain information for particular purposes through technology such as cookies and similar tracking technologies that are placed on our websites and apps. We never sell personal information to third parties for money (as defined by state privacy laws). However, when you visit our websites and apps, we and our partners may collect certain information about you, your devices, and your behavior through cookies, tags or similar technologies that may be considered a “sale/share” even if no money is exchanged. We do not knowingly sell or share personal information of minors under 16 years of age without their consent. These tracking technologies also facilitate Targeted Advertising. You may opt out of sale/share by submitting a request here.
We want to ensure you understand how your information is used, especially concerning targeted advertising. We may show you targeted advertisements if you've either accepted non-essential cookies or are receiving marketing communications from us. We believe you should always have control over your preferences. If you have accepted non-essential cookies and wish to opt out of targeted advertising, please click the "Do Not Sell/Share My Personal Information" link located in the footer of our website and follow the detailed instructions, or see the YOUR RIGHTS below.
4. YOUR RIGHTS
You may have certain rights depending on where you reside, such as:
Right to data portability/access. You may be entitled to receive the specific pieces of Personal Information we have collected in the 12 months preceding your request, including, where applicable, in an electronic and readily-usable format.
Right to know. You may be entitled to receive information regarding the categories of Personal Information we collected, the sources from which we collected Personal Information, the purposes for which we collected and shared Personal Information, the categories of Personal Information that we sold and the categories of third parties to whom the Personal Information was sold, and the categories of Personal Information that we disclosed for a business purpose in the 12 months preceding your request.
Right to deletion. You may be entitled to request that we delete the Personal Information that we have collected from you. We will use commercially reasonable efforts to honor your request, in compliance with applicable laws. Please note, however, that we may need to keep such information, such as for our legitimate business purposes or as required to comply with applicable law.
Opt out/Limiting Use of Personal and Sensitive Information.. You may be able to opt out of some collection, use or sharing of your Personal Information.
- You may the right to opt out of the “sale” or “sharing” of your personal information, as those terms are defined under respective state privacy laws. If you are in a state with privacy laws in place you may find out more information and/or submit a request on our “Do Not Sell/Share My Personal Data & Limit the Use of My Sensitive Data” form.
Members may also limit sharing generally, and for targeted advertising, by toggling off “Personalized experience” and “Marketing based on activity” in Settings.
You may the right to limit the use of your sensitive personal information, as those terms are defined under respective state privacy laws. For more information about the definition and this right please visit our “Do Not Sell/Share My Personal Data & Limit the Use of My Sensitive Data” form.
Members may also limit sharing generally, and for targeted advertising, by toggling off “Personalized experience” and “Marketing based on activity” in Settings.
You may opt out of certain technologies broadcasting an Opt-Out Preference Signal, such as the Global Privacy Control (GPC) if you are a resident of certain states. This occurs on the browsers and/or browser extensions that support such a signal. This request will be linked to your browser identifier only.
Right to Withdraw Consent. You may have the right to withdraw consent to the collection and sharing of information.
Rectification (correct or update). You have the right to correct inaccurate information.
If you would like to exercise one of your rights, please fill out and submit the Privacy Request Form or contact us at 1-844-559-0051. The Privacy Request Form provides information about rights available in your state.
We are required to verify the requests we receive from you when you exercise certain rights listed above. We (or third parties we engage to assist us) may ask you to provide certain information to us in order for us to verify your request, including your name, email address, Peloton username, physical address, date of birth and phone number (the “Verification Information”).
You may also designate an authorized agent to exercise your rights on your behalf. If we are contacted by an agent legally authorized by your state, we will work directly with your authorized agent to complete your request.
In addition to these rights, pursuant to California’s “Shine the Light” law, California residents who share personal information with us have the right to request and obtain from us once per year, free of charge, a list of the third parties to whom we have disclosed their Personal Information (if any) for direct marketing purposes in the prior calendar year, as well as the type of Personal Information disclosed to those parties. If you would like to exercise this right, please use the contact information listed below to contact us.
You have a right to appeal a decision made by Peloton, as applicable in your state. We make every effort to fulfill your request, however, we reserve the right to deny requests as allowed by applicable state law, such as where we have a reasonable belief that the request is fraudulent, where your identity cannot be confirmed, or where Peloton must retain your information consistent with applicable law. If you would like to submit an appeal please email privacy@onepeloton.com or see the “HOW TO CONTACT US” section below, and please explain your concerns and provide the email associated with your account so we may properly review your data rights request history. Our response to your appeal will inform you of decisions and actions in response to your appeal, including an explanation of the reasons for the decisions.
You may freely exercise these rights without fear of discriminatory, retaliatory treatment, or being denied goods or services. We may, however, provide a different level of service or charge a different rate reasonably relating to the value of your Personal Information.
5. HOW TO CONTACT US
If you have any questions about our privacy practices, this Notice or would like to contact us you can do so by email at privacy@onepeloton.com or at the address below.
Peloton Interactive, Inc.
441 Ninth Avenue, Sixth Floor
New York, NY 10001
USA
Attn: Legal Department
6. UPDATES TO OUR PRIVACY NOTICE
We may update our Privacy Notice from time to time. When we do, we will take appropriate measures to inform you, consistent with the significance of the changes we make. We will obtain your consent to any material Privacy Notice changes if and where this is required by applicable data protection laws. You can see when this Privacy Notice was last updated by checking the "last updated" date displayed at the top of this Notice