Strava may disclose your personal data, including GPS routes and health data, to law enforcement or government agencies when required by law or in response to legal process.
Your detailed location history and health data could be disclosed to police or government bodies without your knowledge, which has significant implications for personal safety and civil liberties.
Law enforcement disclosure obligations must balance compliance with applicable data protection law (GDPR Article 23, CCPA law enforcement exemptions) and user transparency commitments; institutional buyers should review Strava's published Law Enforcement Guidelines for disclosure standards.
Compliance intelligence locked
Regulatory citations, enforcement risk, and due diligence action items.
Watcher: regulatory citations. Professional: full compliance memo.
Strava collects highly sensitive personal data including precise GPS location history, health metrics (heart rate, HRV, VO2max), and biometric data, which is used for AI training, advertising personalization, and aggregated into publicly visible features like the Global Heatmap. Your activity data may be shared with third-party advertising partners, though Strava commits not to use health data for advertising. You can adjust your data sharing and visibility settings by navigating to Privacy Controls in the Strava app settings, and can request data deletion by visiting strava.com/athlete/delete_your_account.