Segment updated its privacy policy on May 22, 2026 to add two new provisions and clarify one existing process. The company added explicit notice that Twilio Inc. (Segment's parent company) is subject to FTC investigatory and enforcement powers, and introduced a new opt-out right allowing users to decline disclosure of their data to third parties or use for materially different purposes than originally authorized. The policy also revised its dispute resolution language to refer to 'Data Privacy Frameworks' instead of 'Data Protection Frameworks' in the context of JAMS arbitration. These changes establish new user controls and regulatory transparency without removing existing protections.
The updated policy establishes a new opt-out mechanism allowing users to decline having their data disclosed to third parties (other than service providers) or used for purposes materially different from the original collection purpose. The policy also explicitly discloses that Twilio Inc. is subject to FTC investigatory and enforcement powers, providing users with notice of the regulatory authority overseeing the company's privacy practices. You can exercise this opt-out right by contacting Segment through the mechanism specified in their privacy policy.
The updated terms establish a new user control mechanism over data sharing and secondary use, which operationally empowers users to restrict how their data flows to third parties and how it is deployed for new purposes. The explicit FTC oversight disclosure establishes regulatory transparency about which federal authority has enforcement jurisdiction over Segment's privacy practices. For organizations using Segment as a vendor, these changes may require privacy notice updates to ensure customer-facing representations remain accurate.
→ Review Segment's privacy policy to locate the opt-out mechanism for third-party data disclosure and secondary use.
→ Exercise the opt-out right if you wish to restrict sharing of your data to third parties or use for materially different purposes.
→ Your data may be disclosed to third parties and used for purposes materially different from the original collection purpose as permitted by the policy.
→ You will not have exercised your opt-out right, and Segment's default practice regarding third-party disclosure will apply to your account.
ConductAtlas has recorded 2 material changes to this document (since May 2026).
Across all monitored documents, Segment has made 4 significant changes.
Users can now decline data disclosure to third parties (other than service providers) or use for materially different purposes.
Policy explicitly states Twilio Inc. is subject to FTC investigatory and enforcement powers.
References updated from 'Data Protection Frameworks' to 'Data Privacy Frameworks' in JAMS arbitration clause; operational process unchanged.
This change record describes what was added, removed, or modified in the document. Analysis reflects what the updated agreement states or permits. It does not constitute a legal determination about enforceability. Applicability may vary by jurisdiction. Methodology
You now have the right to opt out of letting Segment share your data with third parties or use it for new purposes you didn't originally authorize.
Segment added new user-facing opt-out rights and regulatory transparency disclosures on May 22, 2026. The opt-out mechanism addresses secondary use and third-party disclosure restrictions, which may align with state privacy law requirements in California and other jurisdictions. The explicit FTC oversight disclosure serves as regulatory transparency. Organizations using Segment as a vendor should review whether these new user-available controls affect their own privacy notices, DPA obligations, or customer-facing disclosures. No immediate action appears required unless the organization's existing vendor contracts or privacy certifications specifically reference Segment's opt-out procedures or regulatory oversight disclosures.
FTC Act (general privacy and unfair practice authority), California Consumer Privacy Act (CCPA) / California Privacy Rights Act (CPRA) (if applicable to Segment's user base, secondary use and opt-out requirements), potential state privacy law alignment (opt-out mechanisms for secondary use)
Full compliance analysis
Obligation analysis, escalation trigger, board language, and recommended action.
Monitor: regulatory citations + obligations. Compliance: full compliance memo.
ConductAtlas provides verified policy intelligence sourced directly from platform documents. All analysis is intended to support, not replace, legal and compliance review. Record CA-C-002277.
See the full side-by-side comparison of every sentence added, removed, and modified.
🔒 Full diff — MonitorSegment updated its privacy policy on May 19, 2026 to provide more detailed disclosure of its Data Privacy Framework (DPF) …
Segment updated its Terms of Service on May 9, 2026, removing Mexico-specific terms from Section 10.5 and replacing Japan-specific dispute …
Segment updated its Terms of Service on May 5, 2026 to restructure dispute resolution and country-specific terms. The agreement previously …
Get alerted when this policy changes again — including what changed and why it matters.
Prefer a weekly summary instead?
Get the biggest policy changes across 320+ platforms every Sunday.