Stripe collects government IDs, facial images, and potentially biometric data to verify your identity when you sign up for certain services, to comply with financial regulations and prevent fraud.
This analysis describes what Stripe's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
The provision establishes the operational basis for Stripe's collection and processing of identity verification data as a condition of financial services provision. KYC and identity verification processes are required under applicable financial regulations, and this clause documents the data categories and purposes supporting those regulatory compliance obligations.
Removal of explicit disclosure about collection and use of sensitive biometric data (facial images, government IDs) for KYC/identity verification, reducing transparency about sensitive data handling.
View full change record →If you use Stripe-powered services that require identity verification, Stripe collects and processes your government ID and potentially facial biometric data — sensitive information that carries heightened breach risk and is subject to specific legal protections in states like Illinois and Texas.
Cross-platform context
See how other platforms handle Identity Verification and Know Your Customer Data and similar clauses.
Compare across platforms →Monitoring
Stripe has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 25 platforms.
"We collect Personal Data as part of our identity verification and Know Your Customer (KYC) processes, which may include government-issued identification documents, facial images or biometric data, and other verification information. This data is used to verify your identity, comply with financial regulations, and prevent fraud.— Excerpt from Stripe's Stripe Privacy Policy
REGULATORY FRAMEWORK: Illinois Biometric Information Privacy Act (BIPA, 740 ILCS 14) imposes strict consent, retention, and destruction requirements for biometric identifiers including facial geometry, with a private right of action and statutory damages of $1,000-$5,000 per violation. Texas CUBI (Tex. Bus. & Com. Code §503.001) and Washington MIPA provide similar protections. GDPR Art. 9 designates biometric data used for unique identification as a 'special category' requiring explicit consent or specific legal basis under Art. 9(2). Bank Secrecy Act and FinCEN Customer Identification Program (CIP) rules (31 CFR §1020.220) mandate KYC collection. CCPA grants additional rights over biometric data as 'sensitive personal information' under CPRA.
Full compliance analysis
Regulatory citations, enforcement risk, and due diligence action items.
Free: track 1 platform + weekly digest. Monitor: 25 platforms + same-day alerts. No credit card required.
Compliance Governance Intelligence
Need to monitor specific governance provisions?
Compliance includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
The provision establishes the operational basis for Stripe's collection and processing of identity verification data as a condition of financial services provision. KYC and identity verification processes are required under applicable financial regulations, and this clause documents the data categories and purposes supporting those regulatory compliance obligations.
If you use Stripe-powered services that require identity verification, Stripe collects and processes your government ID and potentially facial biometric data — sensitive information that carries heightened breach risk and is subject to specific legal protections in states like Illinois and Texas.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Stripe.