Strava requires access to your device's precise GPS location to use its core features like activity tracking and route mapping, though you can revoke this permission in your device settings at any time.
This analysis describes what Strava's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
The operational significance is that precise location data collection is a functional prerequisite for the service's primary features rather than an optional data practice. This creates a direct connection between location permission authorization and feature availability.
Using Strava's core features requires granting continuous access to your precise GPS location, which creates a detailed record of your physical movements that Strava stores and processes for multiple purposes including AI training and public features.
How other platforms handle this
Uber collects precise or approximate location data from riders' and order recipients' mobile devices when the Uber app is running in the foreground (app open and on-screen) or background (app open but not on-screen) of their device. Uber collects this data from the time a ride or order is requested ...
We collect information about your precise or approximate location as determined through data such as your IP address, GPS, and other inputs from your device, with your permission where required. We may use this information to provide, personalize, and improve our services, and for safety purposes.
Device and Connection Information. Consistent with your device or browser permissions, your device or browser automatically sends us information about when and how you install, access, or use our Services. This includes information such as your device type, operating system information, browser info...
Monitoring
Strava has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 10 platforms.
"We collect or infer location information when you sign up for and use the Services. For our core features to function (e.g., GPS activity tracking, routes, segments), you must grant us permission through your device to track your device's precise location. You can stop sharing precise location at any time with your device settings.— Excerpt from Strava's Strava Privacy Policy
REGULATORY FRAMEWORK: Precise geolocation is classified as sensitive personal information under CPRA §1798.140(ae)(1)(C), requiring a right to limit use and disclosure; consumers must be notified at or before collection. Under GDPR Art. 6(1)(b) (contract performance) and Art. 9 (where location data reveals health-related patterns), precise location processing requires a clear lawful basis. The EU ePrivacy Directive and national implementing laws may require separate consent for location access via device APIs. FTC guidance on geolocation data (2022 policy statement) establishes that precise location tracking warrants heightened scrutiny. Illinois BIPA does not directly apply, but state wiretapping and location tracking statutes (e.g., California Penal Code §637.7) may impose additional constraints.
Full compliance analysis
Regulatory citations, enforcement risk, and due diligence action items.
Free: track 1 platform + weekly digest. Watcher: 10 platforms + same-day alerts. No credit card required.
Netflix updated its Privacy Statement on April 18, 2026, disclosing voice recording collection and expanded household ad profiling for the first time.
Google's Privacy Policy covers Search, Gmail, YouTube, Maps, and every site running Google Analytics. Here is what it actually authorizes.
Professional Governance Intelligence
Need to monitor specific governance provisions?
Professional includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
The operational significance is that precise location data collection is a functional prerequisite for the service's primary features rather than an optional data practice. This creates a direct connection between location permission authorization and feature availability.
Using Strava's core features requires granting continuous access to your precise GPS location, which creates a detailed record of your physical movements that Strava stores and processes for multiple purposes including AI training and public features.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Strava.