Stripe shares your personal and financial data with a broad network of banks, payment processors, card networks, and other financial intermediaries involved in processing your transactions.
This analysis describes what Stripe's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
The policy authorizes sharing of payment and identity data with a broad category of Financial Partners, which includes entities consumers may not have a direct relationship with or awareness of.
Interpretive note: The full list of specific Financial Partners and the categories of data shared with each are referenced to supplemental disclosures rather than fully enumerated in this policy text.
Transaction data, payment card information, and identity information may be shared with financial institutions, card networks, acquirers, and other financial intermediaries as part of Stripe's service delivery, under the terms the policy authorizes for Financial Partners.
How other platforms handle this
We may share your personal data with third-party vendors, service providers, contractors, or agents who perform services for us or on our behalf and require access to such information to do that work. We may also share your personal data with advertising partners to display relevant advertising to y...
In order to provide you with services, Valve needs to share some data with the publisher or developer of the game (for example to verify your ownership of the game and register your Steam ID with the publisher), or with other third parties that Valve works with to provide services to you. Valve will...
Zoom may share personal data with third-party advertising partners and analytics providers to deliver targeted advertising and measure the effectiveness of advertising campaigns. This may include sharing identifiers, device information, and behavioral data with partners such as advertising networks.
Monitoring
Stripe has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 10 platforms.
""Financial Partners" are financial institutions, banks, and other partners such as payment method acquirers, payment intermediaries, payment aggregators, payout providers, payment method providers, payment processors, and card networks that we partner with, directly or indirectly, to provide the Services.— Excerpt from Stripe's Stripe Privacy Policy
(1) REGULATORY LANDSCAPE: Financial Partners data sharing engages GLBA privacy and data sharing rules for US financial data, GDPR Article 28 processor agreements and Article 49 for international transfers, and PCI DSS requirements for payment card data. Card network rules (Visa, Mastercard) also impose data use restrictions on acquirers and processors. CFPB has supervisory authority over nonbank financial data practices. (2) GOVERNANCE EXPOSURE: Medium. The broad definition of Financial Partners, which includes indirect partners, may make it difficult for consumers or regulators to identify all entities receiving their financial data. Business Users should assess whether this sharing is adequately disclosed in their own merchant privacy notices. (3) JURISDICTION FLAGS: EU/EEA transfers to Financial Partners outside the EEA require adequate transfer mechanisms under GDPR Chapter V. US users are subject to GLBA notice and opt-out requirements for certain financial data sharing. Cross-border payment processing creates multi-jurisdictional exposure. (4) CONTRACT AND VENDOR IMPLICATIONS: Business Users should review Stripe's sub-processor list (stripe.com/service-providers/legal) to identify which Financial Partners receive their customers' data. DPA terms should be confirmed to cover Financial Partner sub-processing. Card network data use rules should be assessed for compatibility with Financial Partner sharing practices. (5) COMPLIANCE CONSIDERATIONS: Compliance teams should confirm that Stripe's Financial Partner agreements include data protection obligations consistent with applicable law, and that any international Financial Partner data transfers are covered by appropriate transfer mechanisms. Merchant privacy notices should accurately describe downstream financial data sharing.
Full compliance analysis
Regulatory citations, enforcement risk, and due diligence action items.
Free: track 1 platform + weekly digest. Watcher: 10 platforms + same-day alerts. No credit card required.
ConductAtlas detected a major restructuring of Meta’s privacy policy that removed detailed consumer rights disclosures and relocated them to separate documents.
Your genetic data may be transferred to a new owner as a business asset. Here is what the Terms of Service actually say and what you can do right now.
Professional Governance Intelligence
Need to monitor specific governance provisions?
Professional includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
The policy authorizes sharing of payment and identity data with a broad category of Financial Partners, which includes entities consumers may not have a direct relationship with or awareness of.
Transaction data, payment card information, and identity information may be shared with financial institutions, card networks, acquirers, and other financial intermediaries as part of Stripe's service delivery, under the terms the policy authorizes for Financial Partners.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Stripe.