Strava shares your personal information, including activity and location data, with third-party service providers who help run Strava's platform, and with business partners for co-branded events and other purposes.
This analysis describes what Strava's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
This provision establishes the operational framework for data distribution across Strava's service ecosystem, defining which external entities receive access to user information and under what functional constraints those recipients operate.
Your Strava activity and location data is shared with unnamed third-party service providers and business partners, meaning your fitness information may be processed by companies you have no direct relationship with and whose privacy practices you cannot directly review.
How other platforms handle this
We receive some of the data mentioned above from third parties... If you connect your Spotify account to a third party application, service or device, we may collect and use information from them. This collection is to make the integration possible... We work with technical service partners that giv...
If you use a third-party service — like a social network or login service — to access our services, those services will tell us basic information about you, like your username and profile picture. In addition, information about you may be shared with other businesses within the Snap Inc. corporate f...
We do not share your personal data with any third-party advertisers or ad networks for their advertising except for: (i) hashed or device identifiers (to the extent they are personal data in some countries), (ii) with your separate permission (e.g., in a lead generation form) or (iii) data already v...
Monitoring
Strava has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 10 platforms.
"We may share your information with third parties to support, improve, promote, and secure the Services; process payments; or fulfill orders. These service providers only have access to the information necessary to perform specified functions on our behalf. We require them to protect and secure your information.— Excerpt from Strava's Strava Privacy Policy
(1) REGULATORY FRAMEWORK: Third-party data sharing implicates GDPR Art. 28 (data processor agreements), GDPR Art. 13(1)(e) (disclosure of recipients or categories of recipients in privacy notice), GDPR Art. 46 (transfer safeguards for international transfers to service providers outside EEA), CCPA/CPRA §1798.115 (right to know third parties to whom data is sold or disclosed), and FTC Act Section 5 for deceptive disclosures about data sharing scope. If service providers qualify as 'third parties' under CCPA rather than 'service providers,' different opt-out rights apply. (2)
Full compliance analysis
Regulatory citations, enforcement risk, and due diligence action items.
Free: track 1 platform + weekly digest. Watcher: 10 platforms + same-day alerts. No credit card required.
ConductAtlas detected a major restructuring of Meta’s privacy policy that removed detailed consumer rights disclosures and relocated them to separate documents.
Your genetic data may be transferred to a new owner as a business asset. Here is what the Terms of Service actually say and what you can do right now.
Professional Governance Intelligence
Need to monitor specific governance provisions?
Professional includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
This provision establishes the operational framework for data distribution across Strava's service ecosystem, defining which external entities receive access to user information and under what functional constraints those recipients operate.
Your Strava activity and location data is shared with unnamed third-party service providers and business partners, meaning your fitness information may be processed by companies you have no direct relationship with and whose privacy practices you cannot directly review.
ConductAtlas has identified this type of provision across 7 platforms. See the full comparison.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Strava.