Individual States Rights - Xfinity by Comcast

Jump to State:

California Residents

The California Consumer Privacy Act of 2018 ("CCPA") provides California residents with rights to receive certain disclosures regarding the collection, use, and sharing of "Personal Information," as well as rights to access, delete, and restrict the sale of certain Personal Information we collect about them. You or your authorized agent may submit a request to exercise these rights by visiting our Individual Rights Request Page or calling us at 1-844-963-0138.

The CCPA defines "Personal Information" to mean "information that identifies, relates to, describes, is capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer or household." If you are a California resident, you have a right not to receive discriminatory treatment for the exercise of the privacy rights conferred by the CCPA.

Residents of the State of California also have the right to request information regarding third parties to whom the company has disclosed certain categories of personal information during the preceding year for the third parties' direct marketing purposes under California's "Shine the Light" law (Cal. Civ. Code § 1798.83). Personal information under this California law means "any information that when it was disclosed identified, described, or was able to be associated with an individual." We do not disclose this type of personal information to third parties for their own purposes and we permit you to opt out of any disclosures of non-identifiable personal information. However, if you are a California resident and would like to inquire further, please email Comcast_Privacy@comcast.com.

To learn more, visit our transparency and individual rights request reports page.

Collection and Use of Personal Information

The general section of this Privacy Policy describes the types of personal information we collect, how we collect it, and how we use it in categories that are easy to understand. The CCPA requires us to disclose the personal information we have collected about consumers in the past 12 months in the following categories. Some of the categories include very different types of information within the same category. As a result, how we use and how long we keep the information within each category will vary, and not all types of information within the same category will be used for all the purposes listed.

Identifiers

Name, alias, postal address, unique personal identifier, online identifier, Internet protocol address, email address, account name, Social Security number, driver's license number, passport number, or other similar identifiers

SOURCE

Directly from you when you provide it to us, such as when you create an account

From our systems when we generate the information and assign it to you, such as your account number or your IP address from third parties

PURPOSE OF COLLECTION AND USE

To offer or provide our Services
To make improvements to our existing Services and create new products, services, or features
To provide marketing and advertising
To personalize our Services

Additional categories of information listed in the California Customer Records statute (Cal. Civ. Code § 1798.80(e))

A name, signature, Social Security number, physical characteristics or description, address, telephone number, driver's license or state identification card number, education, employment, bank account number, credit card number, debit card number, or any other financial information. Some personal information included in this category may overlap with other categories

SOURCE

Directly from you when you provide it to us, such as when you create an account or pay for your Services

From third parties who make inferences regarding your household, such as the education level

PURPOSE OF COLLECTION AND USE

To offer or provide our Services
To make improvements to our existing Services and create new products, services, or features
To provide marketing and advertising
To personalize our Services

Protected classification characteristics under California or federal law

Age (40 years or older), national origin, marital status, gender, veteran or military status

SOURCE

Directly from you when you provide it to us, such as when you sign up for an offer for veterans

From third parties who make inferences regarding your household, such as marital status or the age ranges of people within your household

PURPOSE OF COLLECTION AND USE

To offer or provide our Services
To make improvements to our existing Services and create new products, services, or features
To provide marketing and advertising
To personalize our Services

Commercial information

Records of personal property, products or services purchased, obtained, or considered, or other purchasing or consuming histories or tendencies

SOURCE

From you when you complete transactions with us

From third parties

PURPOSE OF COLLECTION AND USE

To offer or provide our Services
To make improvements to our existing Services and create new products, services, or features
To provide marketing and advertising
To personalize our Services

Biometric information

Genetic, physiological, behavioral, and biological characteristics, or activity patterns used to extract a template or other identifier or identifying information, such as, fingerprints, faceprints, scans of the hands or face geometry, and voiceprints, iris or retina scans, keystroke, gait, or other physical patterns, and sleep, health, or exercise data

SOURCE

Directly from you when you provide it to us, such as when you seek to authenticate your identify.

From our systems when you opt in to certain features of our Services, such as Xfinity Home security, that may collect information and generate inferences about physical patterns to deliver the Services and applicable features you have selected

PURPOSE OF COLLECTION AND USE

To offer or provide our Services
To verify your identity
To make improvements to our existing Services and create new products, services, or features
To protect the health and safety of our customers, employees, contractors, or the general public

Internet or other electronic network activity information

Browsing history, search history, and information regarding your interaction with an internet website, application, or advertisement.

SOURCE

From our systems when you use or interact with our Services

From third parties

PURPOSE OF COLLECTION AND USE

To offer or provide our Services
To make improvements to our existing Services and create new products, services, or features
We do not use information collected from our broadband network through the provision of Xfinity Internet or Xfinity Mobile for these purposes.

Geolocation data

Precise physical location or movements

SOURCE

From our systems when you use or interact with Services that collect this information, such as Xfinity Mobile or the Xfinity Mobile apps and websites

PURPOSE OF COLLECTION AND USE

To offer or provide our Services
To make improvements to our existing Services
To personalize our Services and to provide marketing and advertising; we do not use information collected from our provision of Xfinity Internet or Xfinity Mobile for these purposes

Sensory data

Audio, electronic, visual, thermal, olfactory, or similar information

SOURCE

From our systems when you use certain features of products and services that may collect information and generate inferences about physical patterns, such as Xfinity Home security features or when you use the Voice Remote to deliver Services and applicable features that you have selected

PURPOSE OF COLLECTION AND USE

To provide our Services
To make improvements to our existing Services and create new products, services, or features

Inferences drawn from other personal information

Profile reflecting a person's preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes

SOURCE

From our systems through a series of computer processes

PURPOSE OF COLLECTION AND USE

To offer or provide our Services
To make improvements to our existing Services and create new products, services, or features
To provide marketing and advertising
To personalize our Services

Disclosures to Third Parties for a Business Purpose

We limit disclosures of Personal Information for business purposes to service providers, as described above.

Sale of Personal Information and Right to Opt Out

The CCPA requires companies to include certain disclosures including "Do Not Sell My Info" links on their websites and mobile applications. We do not sell information that identifies who you are to anyone and we do not knowingly sell the personal information of consumers under 16 years of age. To opt out of the sale or sharing of non-identifying information, please visit the Xfinity Preferences Page and make the appropriate selections in the Settings menu of your relevant devices including X1, Flex, and XClass TV. Please note that your right to opt out does not apply to our sharing of data with service providers, with whom we work and who are required to use the data only on our behalf.

IDENTIFIERS

Unique personal identifier, online identifier, internet protocol address, or other similar identifiers

CATEGORIES OF THIRD PARTIES TO WHOM PI WAS "SOLD"

Affiliates, advertising networks, data analytics providers, social networks, and audience measurement companies

INTERNET OR OTHER ELECTRONIC NETWORK ACTIVITY INFORMATION

Information regarding your interaction with an internet website, application, or advertisement.

CATEGORIES OF THIRD PARTIES TO WHO PI WAS “SOLD”

Affiliates, advertising networks, data analytics providers, social networks, and audience measurement companies

Right to Know and Right to Request Deletion of Information

California residents have the right to request that we disclose what personal information we collect, use, and sell, as well as the right to request that we delete certain personal information that we have collected from you. To start this process, go to our Individual Rights Request Page. For your security and to ensure unauthorized third parties do not access your personal information, we will require you to verify your identity before we can act on your request. If you are a current customer or still have access to your Xfinity My Account, you will be required to authenticate through your Xfinity account. If you do not have an account with us, you will be required to provide an email address and mobile phone number to start the verification process. You may also be required to provide a qualified government-issued photo identification. If you are asking for access on behalf of someone else, we will require verification of your identity, as well as proof of authorization by the individual whose personal information you wish to access.

There may be information we will not return in response to your access request, such as information that would affect the privacy of others or interfere with legal requirements. Similarly, there may be reasons why we cannot comply with your deletion request, such as the need to keep your personal information to provide you service or to fulfill a legal obligation.

Right to Information Regarding Participation in Data Sharing for Financial Incentives

We may run promotions from time to time and ask you to share personal information with us in exchange for discounts. For example, we may offer a one-time discount if consumers sign up for our email marketing list. We will always give you clear notices about these types of programs when you sign up, and participation is always voluntary. If you change your mind, you will always be able to opt out, and if you don’t participate, you will still be able to use our Services.

Transparency Reports and Individual Rights Requests Reports

Learn more about our reports here.

How to Submit a Request

You or your authorized agent may submit a request to exercise your rights by:

Visiting our Individual Rights Request Page.
Calling us at 1-844-963-0138.

To review the number of requests we have received over time, how we have complied with those requests, and the median or mean number of days in which we respond to such requests, please visit www.xfinity.com/privacy/transparency.

Maine Residents

Maine’s Broadband Internet Access Service Customer Privacy Act generally prohibits providers of broadband Internet access service (“Providers”) from using, disclosing, selling or permitting access to “customer personal information” without a customer’s express, affirmative consent, which may be revoked at any time.

However, no consent is required for the collection, retention, use, disclosure, or sale or access to customer personal information when such activities are required to:

Provide the service from which such information is derived or for the services necessary to the provision of such service;
Advertise or market the Provider's communications-related services to the customer;
Comply with a lawful court order;
Initiate, render, bill for and collect payment for broadband Internet access service;
Protect users of the provider's or other providers' services from fraudulent, abusive or unlawful use of or subscription to such services; or
Provide geolocation information concerning the customer:
- For the purpose of responding to a customer's call for emergency services, to a public safety answering point; a provider of emergency medical or emergency dispatch services; a public safety, fire service or law enforcement official; or a hospital emergency or trauma care facility; or
- To a provider of information or database management services solely for the purpose of assisting in the delivery of emergency services in response to an emergency.

A Provider may not refuse to serve a customer who does not provide consent when required or charge a customer a penalty or offer a customer a discount based on the customer's decision to provide or not provide consent.

A Provider shall take reasonable measures to protect customer personal information from unauthorized use, disclosure or access, taking into account the nature and scope of the Provider's activities, the sensitivity of the data the provider collects, the size of the Provider, and the technical feasibility of the security measures.

In addition, a Provider may use, disclose, sell, or permit access to non-CPI, unless the customer opts out.

If you are an Xfinity customer, you can manage your account information and review your privacy settings at www.xfinity.com/privacy/manage. To review the full Xfinity privacy policy, visit www.xfinity.com/privacy. To learn more about our privacy commitments, including our commitment to protect your privacy when you use our broadband Internet service, please visit https://www.xfinity.com/privacy/our-commitment.

Special Information regarding individual state privacy laws

California Residents

Maine Residents

Visit our online help center

Xfinity Assistant