Starbucks can collect your precise GPS location, including when the app runs in the background, and uses it for store-finding, analytics, and targeted marketing.
This analysis describes what Starbucks's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
Precise geolocation data is classified as sensitive personal information under California law and several other state statutes, meaning its collection and use carry heightened legal obligations and greater privacy implications than general location data.
If you have granted location permissions to the Starbucks app, your precise GPS coordinates may be collected even when the app is running in the background, and this data is used not only for finding stores but also for marketing analytics. You can limit this by adjusting location permissions in your device settings.
How other platforms handle this
We may collect the precise geographic location of your device when you use our services. We collect this information with your consent where required by law. You can withdraw your consent at any time by adjusting your device settings to disable location sharing.
We may collect information about your location, including precise geolocation information, when you use our Services. We use this information to provide location-based services, such as showing you products available in your area, and for other purposes described in this Privacy Policy.
Geolocation Information, if you have consented by enabling location access, we may receive and store your precise location information, including when our apps are running in the foreground (our app is open and on screen) or background (our app is open, not on screen) of your device. You may use our...
Monitoring
Starbucks has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 10 platforms.
"We collect precise geolocation information when you use our mobile applications, including when the app is running in the background, if you have granted us permission to do so. We use this information to provide location-based services, including finding nearby stores, and for analytics and marketing purposes.— Excerpt from Starbucks's Starbucks Privacy Policy
(1) REGULATORY LANDSCAPE: Precise geolocation is classified as sensitive personal information under the CPRA, triggering the right to limit its use and disclosure. The Washington My Health MY Data Act may also apply if geolocation is used to infer health-related behavior from visits to certain retail locations. The FTC has signaled strong enforcement interest in precise geolocation data collection and monetization. Background location collection requires explicit opt-in permission under both iOS and Android operating system frameworks, engaging platform-level policy compliance in addition to legal requirements. (2) GOVERNANCE EXPOSURE: High. Precise geolocation collection, particularly in the background, is one of the highest-scrutiny data types under current enforcement by the FTC and state privacy regulators. The use of geolocation for marketing purposes beyond core service delivery amplifies exposure. (3) JURISDICTION FLAGS: California CPRA classifies precise geolocation as sensitive personal information, requiring a 'Limit the Use of My Sensitive Personal Information' opt-out mechanism. Washington State's My Health MY Data Act may engage if location data is associated with health-adjacent retail visits. Illinois and other states with developing location privacy frameworks may also apply. (4) CONTRACT AND VENDOR IMPLICATIONS: Any third-party analytics or advertising vendor receiving precise geolocation data must be assessed for compliance with sensitive data handling requirements. Vendor agreements should specify permissible use cases and prohibit retention or onward transfer for independent purposes. (5) COMPLIANCE CONSIDERATIONS: Teams should confirm that the in-app permission prompts for location access meet platform and legal requirements for meaningful consent, including clear disclosure of background location use. The sensitive personal information opt-out mechanism should be tested to confirm it covers geolocation use for marketing purposes. Data retention limits for precise geolocation data should be documented and enforced.
Full compliance analysis
Regulatory citations, enforcement risk, and due diligence action items.
Free: track 1 platform + weekly digest. Watcher: 10 platforms + same-day alerts. No credit card required.
Netflix updated its Privacy Statement on April 18, 2026, disclosing voice recording collection and expanded household ad profiling for the first time.
Google's Privacy Policy covers Search, Gmail, YouTube, Maps, and every site running Google Analytics. Here is what it actually authorizes.
Professional Governance Intelligence
Need to monitor specific governance provisions?
Professional includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
Precise geolocation data is classified as sensitive personal information under California law and several other state statutes, meaning its collection and use carry heightened legal obligations and greater privacy implications than general location data.
If you have granted location permissions to the Starbucks app, your precise GPS coordinates may be collected even when the app is running in the background, and this data is used not only for finding stores but also for marketing analytics. You can limit this by adjusting location permissions in your device settings.
ConductAtlas has identified this type of provision across 9 platforms. See the full comparison.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Starbucks.