The notice discloses that Segment analytics is deployed on twilio.com using a write key, configured with cookie parameters including a 90-day maxage, and loaded conditionally via the TrustArc consent wrapper, with page-level tracking and user identification methods enabled.
This analysis describes what Segment's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
This provision establishes that Segment is used to track page views, user interactions, and potentially identified user data on twilio.com, with cookies persisting for up to 90 days, and that the scope of tracking is conditioned on TrustArc consent state.
Interpretive note: The downstream Segment destinations and the full scope of data collected via Segment tracking methods are not described in the available document text.
The updated policy establishes a new opt-out mechanism allowing users to decline having their data disclosed to third parties (other than service providers) or used for purposes materially different from the original collection purpose. The policy also explicitly discloses that Twilio Inc. is subject to FTC investigatory and enforcement powers, providing users with notice of the regulatory authority overseeing the company's privacy practices. You can exercise this opt-out right by contacting Segment through the mechanism specified in their privacy policy.
View change record →The updated terms establish clearer disclosure of how Segment transfers personal data internationally. Segment now explicitly certifies its compliance with the EU-U.S. Data Privacy Framework, UK Extension, and Swiss-U.S. Data Privacy Framework, and states that these DPF Principles take precedence if they conflict with other policy terms. The updated policy also adds specific rights allowing you to opt out of: (i) disclosure of your personal data to third parties other than service providers acting under Segment's instructions, or (ii) use of your personal data for purposes materially different from the original purpose or your subsequent authorization. You can exercise these rights by contacting privacy@twilio.com.
View change record →New provision specifically documenting Segment's own analytics tracking practices, distinguishing company tracking from third-party tracking handled through its platform.
View full change record →The agreement establishes that Segment analytics collects page view data, user identifiers, and interaction data from twilio.com visitors, with tracking cookies set for up to 90 days. This data is processed by Segment, which is a Twilio-owned customer data platform, and may be used for analytics and personalization purposes as described in the notice.
How other platforms handle this
TrustArcWrapper.withTrustArc(analytics, { alwaysLoadSegment: true }).load(segmentKey, cookieConfig);
At Ledger, earning and maintaining our users' trust is a top priority. That's why we are deeply committed not only to protecting your privacy and securing your personal data, but also to being fully transparent about how we handle it.
If you are located in the European Economic Area, Switzerland, or the United Kingdom, you have the right to access, correct, or erase your personal data; the right to restrict or object to our processing of your personal data; the right to data portability; and, where our processing is based on your...
Monitoring
Segment has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 25 platforms.
(1) REGULATORY LANDSCAPE: This provision engages GDPR and ePrivacy Directive requirements for cookie consent and data retention, as well as CCPA/CPRA regarding data collection and use disclosures. The 90-day cookie maxage constitutes a data retention parameter that should be documented in Twilio's records of processing activities under GDPR Article 30. (2) GOVERNANCE EXPOSURE: Medium. The use of Segment as both the analytics platform and a Twilio-owned product creates a first-party data collection architecture, but the data collected via Segment may flow to downstream Segment destinations depending on platform configuration, which is not described in the notice. (3) JURISDICTION FLAGS: EU/EEA users have heightened exposure given GDPR and ePrivacy requirements; the 90-day cookie duration and the scope of identifiers collected via Segment should be assessed against applicable data minimization principles. California users should assess whether Segment-collected data is used in ways that constitute sharing for cross-context behavioral advertising under CPRA. (4) CONTRACT AND VENDOR IMPLICATIONS: As Segment is a Twilio-owned entity, the data controller and processor relationship may differ from third-party vendor arrangements; however, compliance teams should confirm that intra-group data transfers are governed by appropriate agreements, particularly for EU/EEA data. (5) COMPLIANCE CONSIDERATIONS: Compliance teams should document the Segment tracking configuration in data maps, confirm that the 90-day cookie retention is consistent with stated purposes and applicable data minimization requirements, and verify that Segment destination configurations do not result in undisclosed third-party data flows.
Full compliance analysis
Regulatory citations, enforcement risk, and due diligence action items.
Free: track 1 platform + weekly digest. Monitor: 25 platforms + same-day alerts. No credit card required.
Compliance Governance Intelligence
Need to monitor specific governance provisions?
Compliance includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
This provision establishes that Segment is used to track page views, user interactions, and potentially identified user data on twilio.com, with cookies persisting for up to 90 days, and that the scope of tracking is conditioned on TrustArc consent state.
The agreement establishes that Segment analytics collects page view data, user identifiers, and interaction data from twilio.com visitors, with tracking cookies set for up to 90 days. This data is processed by Segment, which is a Twilio-owned customer data platform, and may be used for analytics and personalization purposes as described in the notice.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Segment.