Plaid is a company that acts as a bridge between your bank account and financial apps — when you connect your bank to an app like Venmo or Robinhood, Plaid is often handling that connection. This legal page contains all of Plaid's rules about how your financial data is collected, used, and shared. It's important to know because Plaid processes sensitive banking credentials and transaction data on behalf of many popular apps.
Technical Summary
This document constitutes Plaid's legal hub page (plaid.com/legal), which serves as the central repository for Plaid's privacy and security policies, terms of service, and governance frameworks applicable to its financial data aggregation and API services. The page governs the relationship between Plaid, its developer/business customers, and end consumers whose financial account data is accessed via Plaid's infrastructure. Key obligations include consent-based data access, data use limitations, and security standards applicable to third-party application developers using Plaid's APIs. Notable provisions likely include data sharing terms, liability limitations, and consumer rights regarding financial data access. The document is directed at both business partners integrating Plaid's technology and end consumers whose bank credentials and financial data are processed through Plaid's platform.
Institutional Analysis
Plaid's legal framework engages with GLBA (Gramm-Leach-Bliley Act) financial data protections, CCPA/CPRA for California residents, and CFPB oversight given Plaid's role as a financial data aggregator…
Plaid's legal framework engages with GLBA (Gramm-Leach-Bliley Act) financial data protections, CCPA/CPRA for California residents, and CFPB oversight given Plaid's role as a financial data aggregator subject to evolving open banking regulation under Section 1033 of the Dodd-Frank Act. Legal and com…
🔒
Compliance intelligence locked
Regulatory exposure, material risk, and due diligence action items.
When you connect your bank account through an app powered by Plaid, you authorize Plaid to access your financial data — including account numbers, balances, and transaction history — and share it with the requesting application.
Plaid shares your financial data with the third-party app developers who use Plaid's API, and those developers are governed by their own separate terms of service with Plaid.
Plaid limits how much it can be held financially responsible if something goes wrong — such as a data breach or unauthorized access to your financial information — typically capping damages at a relatively low amount.
Disputes between you and Plaid may be required to go through private arbitration rather than a court, and you may be giving up your right to join a class action lawsuit.
California residents have specific rights under state law to know what personal data Plaid collects, request deletion of their data, and opt out of certain data sales or sharing.
Companies and developers that use Plaid's API to build apps must follow Plaid's usage policies, which govern how they can use consumer financial data they receive through Plaid's infrastructure.
Plaid retains your financial data for defined periods and outlines under what circumstances it will delete data, including when you disconnect an app or submit a deletion request.
Plaid or the apps using Plaid can terminate or suspend your access to services, and Plaid may discontinue connections between your bank account and specific applications.
Developer customers using Plaid's API agree to indemnify and hold harmless Plaid from legal claims arising from their use of the platform or misuse of consumer data.
Disputes with Plaid are governed by the laws of a specific state (typically California or Delaware) and must be brought in courts or arbitration in that jurisdiction.