Stripe

stripe.com

View Policy

— Privacy score

Acceptable

GRADE C

Grade Spectrum

Updated 3 days ago

FDCBA

Data Collection20% wt

35/100

7 / 20 pts contributed

Data Sharing25% wt

50/100

13 / 25 pts contributed

Tracking20% wt

80/100

16 / 20 pts contributed

Transparency20% wt

50/100

10 / 20 pts contributed

User Rights15% wt

100/100

15 / 15 pts contributed

AI Risk

55/100

Analysis Findings

Data Collection

53 Types

Data Sharing

5 Issues

Tracking

6 Trackers

Transparency

Fair

User Rights

Comprehensive

AI Practices

55/100

Top Subprocessors

View all 46

Amazon Internet Services Private Limited

IN · amazon.com · Cloud service provider, stores certain data for Indian payment transactions to meet regulatory data localization requirements

Payments

Twilio, Inc

US · twilio.com · Cloud communications platform as a service including two factor authentication and user support

Infrastructure

Lemon Squeezy, LLC

US · lemonsqueezy.com · Merchant of record related services

Other

DocuSign, Inc.

US · docusign.com · eSignatures

Other

Google, LLC

US · google.com · Email, file storage, collaboration tools, and services to help protect our Sites (e.g. ReCAPTCHA) and to measure interactions on our Sites

Infrastructure

Collected Data Types

Name

identity

Payment Method Details

financial

Contact Information

identity

Address

identity

Transaction Data

financial

View 48 more

Cookies & Tracking

Necessary

Required for basic functionality

1Low risk

Functional

Preferences and settings

1Low risk

Analytics

Usage tracking & product insights

3Medium risk

Advertising

Ad targeting & conversion

1High risk

Doing Well

Data inventory with purpose mapping documented
Subprocessor list published
Privacy policy published
Comprehensive policy sections
Subprocessor list published
Data Processing Agreement published

Concerns

Collects biometric data
Tracks behavioral data
Collects browsing history
Collects location data
Collects financial data
Collects 53 data types

Privacy Summary

Stripe collects various personal data, including your name, contact and payment details, transaction history, identity documents (like government IDs and selfies), and online activity. This information is shared with their business users, financial partners, service providers, and, where legally required or permitted (e.g., with advertising partners), other third parties. To request data deletion, you can use Stripe's Privacy Center, or contact the specific business if Stripe processed your data on their behalf.

AI-generated summary based on policy analysis dated Apr 24, 2026

Quick Facts

Legal NameStripe

Data DeletionModerate (4/10)

Vendors46 third parties

Data Types53 types collected

Last AnalyzedApr 24, 2026

Compliance

GDPRYes

CCPAYes

Data Request FormYes

Recent BreachNo

Data BrokerNo

Policy Documents

AI Risk

High user impact from AI usage
Automated decision-making risk
Trains AI on personal user data
Trains AI on user interactions
No AI training opt-out available