SoFi updated its Privacy Notice on May 6, 2026 to reorganize and clarify how it collects and shares tracking data. The previous version described cookies and tracking as optional and subject to user preferences and a Privacy Preference Center. The updated version states that SoFi uses pixels and other tracking technologies to collect information, shares this data with social media, advertising, and analytics partners, and establishes that users who do not make a selection agree to these technologies. The updated terms also distinguish between Strictly Necessary Cookies, which cannot be disabled, and optional cookie categories that users can toggle off via buttons in the consent interface.
The updated privacy notice establishes a consent model in which users are presumed to accept cookies, pixels, and tracking technologies unless they affirmatively decline. The revised terms state that 'if you do not make a selection, you agree to our use of these technologies' and that SoFi shares collected information with social media, advertising, and analytics partners. Strictly Necessary Cookies cannot be disabled as they are required for site functionality, but users can toggle off optional cookie categories via buttons in the consent interface.
The updated privacy notice establishes that users must actively decline optional tracking and data sharing; inaction is now treated as affirmative consent. This reverses the prior framing, in which users had discretion to allow or disallow cookies, and may affect how users' browsing data is collected and shared. The policy's explicit disclosure of data sharing with advertising and analytics partners and its statement that Strictly Necessary Cookies cannot be disabled reflect a more restrictive operational model on user control, even as transparency about third-party recipients is improved.
→ Review the updated Privacy Notice to understand the default tracking settings.
→ Toggle off optional cookie categories (Functional, Performance, etc.) by using the button controls in the Manage Consent Preferences interface if you prefer not to be tracked.
→ Note that Strictly Necessary Cookies cannot be disabled; these are required for site functionality.
→ If you do not select cookie preferences, the terms state that you agree to use of pixels and other tracking technologies.
→ Your browsing information and interactions will be shared with SoFi's social media, advertising, and analytics partners by default.
→ Strictly Necessary Cookies will be deployed automatically to maintain site functionality, logging, and account security.
ConductAtlas has recorded 3 material changes to this document (since April 2026). An additional minor or cosmetic changes were excluded.
Across all monitored documents, SoFi has made 4 significant changes.
3 of SoFi's significant changes have been classified as negative for consumers.
Users who do not affirmatively select preferences are presumed to consent to tracking and third-party data sharing.
These cookies cannot be disabled and users cannot opt-out, as they are required for site functionality.
The policy explicitly states that SoFi shares user information with social media, advertising, and analytics partners.
This change record describes what was added, removed, or modified in the document. Analysis reflects what the updated agreement states or permits. It does not constitute a legal determination about enforceability. Applicability may vary by jurisdiction. Methodology
If you do nothing, SoFi will use tracking technologies and share your data with marketing and analytics partners unless you actively opt out.
The updated terms now state that your information is shared with specific types of partners, whereas the previous version described this more generally.
+ 1 more obligation changes. Full breakdown available with Monitor.
Track changes →SoFi revised its privacy notice to establish a consent-by-inaction model for optional tracking technologies. The updated language explicitly states that failure to make a selection constitutes agreement to tracking and data sharing with third-party partners. This framing may trigger scrutiny under applicable consent frameworks (particularly GDPR, CCPA, and state privacy laws) regarding what constitutes valid, informed consent. Organizations integrating SoFi services should evaluate whether their own privacy notices and consent workflows accurately reflect this presumed-consent approach and whether this model aligns with their vendor compliance obligations.
GDPR (consent standards under Articles 6-7), CCPA (opt-in requirements for sensitive data sharing), state privacy laws (California Privacy Rights Act, Colorado Privacy Act, similar frameworks), FTC Act Section 5 (unfair or deceptive practices related to consent mechanics).
Full compliance analysis
Obligation analysis, escalation trigger, board language, and recommended action.
Monitor: regulatory citations + obligations. Compliance: full compliance memo.
ConductAtlas provides verified policy intelligence sourced directly from platform documents. All analysis is intended to support, not replace, legal and compliance review. Record CA-C-001768.
See the full side-by-side comparison of every sentence added, removed, and modified.
🔒 Full diff — MonitorNetflix updated its Privacy Statement on April 18, 2026, disclosing voice recording collection and expanded household ad profiling for the …
TikTok's data collection extends to device sensors, clipboard content, geolocation, and cross-site tracking. Here is what their Privacy Pol…
Google's Privacy Policy covers Search, Gmail, YouTube, Maps, and every site running Google Analytics. Here is what it actually authorizes.
Get alerted when this policy changes again — including what changed and why it matters.
Prefer a weekly summary instead?
Get the biggest policy changes across 320+ platforms every Sunday.