Stripe updated its Privacy Policy on March 15, 2026 with 39 new sentences and 73 modified sentences. The changes clarify definitions of key terms used in the policy, expand the description of Financial Partners to include payment intermediaries and aggregators, and refine language around when individuals are classified as Visitors, End Customers, or other user types. Most changes are clarifications and definitional updates with no material shift in substantive data collection, sharing, or processing practices.
The updated policy clarifies language around how Stripe categorizes users (End Users, End Customers, Representatives, and Visitors) and expands the definition of Financial Partners to explicitly include payment intermediaries, aggregators, and payment method providers. These changes do not introduce new data collection authorities or sharing rights but provide clearer operational descriptions of which third parties Stripe characterizes as partners in delivering services. The policy now explicitly states that Financial Partners can include direct and indirect relationships with these payment service providers.
The updated policy establishes clearer operational definitions of which third parties Stripe considers Financial Partners and how it categorizes different user types. This clarification affects how merchants and customers understand the ecosystem of payment service providers that may receive their transaction data and helps align Stripe's privacy disclosures with the actual range of payment intermediaries and processors involved in transaction facilitation.
Expanded to explicitly include payment intermediaries, payment aggregators, payment method providers, and processors alongside existing categories
Refined to clarify when individuals are classified in each category, including new language that Visitors include those who visit Stripe offices or premises
Minor language refinements to clarify scope of data processing and service delivery
This change record describes what was added, removed, or modified in the document. Analysis reflects what the updated agreement states or permits. It does not constitute a legal determination about enforceability. Applicability may vary by jurisdiction. Methodology
Stripe updated definitional language and clarified categorizations of user types and partner categories. The expanded definition of Financial Partners now includes payment intermediaries, payment aggregators, and payment method providers. This change affects how Stripe describes third-party relationships in its privacy notices and data flow diagrams but does not appear to introduce new data sharing authorities. Organizations using Stripe should verify that their own privacy notices and Data Processing Agreements accurately reflect this expanded partner categorization when documenting data transfers to Stripe.
GDPR (Article 6 lawful basis for processing; Article 13/14 transparency), CCPA (disclosure of categories of third parties receiving data), FTC Act Section 5 (unfair or deceptive practices relating to privacy disclosures)
Full compliance analysis
Obligation analysis, escalation trigger, board language, and recommended action.
Watcher: regulatory citations + obligations. Professional: full compliance memo.
ConductAtlas provides verified policy intelligence sourced directly from platform documents. All analysis is intended to support, not replace, legal and compliance review. Record CA-C-001872.
See the full side-by-side comparison of every sentence added, removed, and modified.
🔒 Full diff — WatcherStripe updated its privacy policy on May 19, 2026 to replace all references to its payment service 'Link' with 'Onelink.' …
Stripe updated its Privacy Policy on April 29, 2026 with four minor editorial changes. The policy's last-updated date was changed …
Stripe updated its privacy policy on April 25, 2026 with minor editorial changes. Three contact email addresses for exercising privacy …
Stripe's terms authorize fund reserves, payout withholding, and account termination. Here is what the agreement states and what business ow…
How Meta, TikTok, and Supabase restructured governance language across documents, jurisdictions, and consent frameworks through incremental…
How 10 AI platforms describe the use of user data for model training, improvement, and development, based on archived governance provisions.
Get alerted when this policy changes again — including what changed and why it matters.
Prefer a weekly summary instead?
Get the biggest policy changes across 320+ platforms every Sunday.