What are the institutional and regulatory implications of this document?

REGULATORY LANDSCAPE: This notice engages GDPR for EU/EEA users (including data subject rights, lawful basis requirements, and international transfer mechanisms), CCPA/CPRA for California residents (including rights to know, delete, and opt out of sale or sharing of personal information), and COPPA insofar as children's privacy is addressed. The FTC has enforcement authority over unfair or deceptive data practices in the U.S. context. The notice's assertion that using the services constitutes a…

How does Twitch's Twitch Privacy Notice affect users?

The document establishes Twitch's collection of personal data including financial information, communications, and biometric data (voice and image), with authorized sharing to Amazon entities, advertisers, and analytics providers. Connecting third-party social media or gaming accounts authorizes Twitch to access engagement and content data from those platforms. The document permits users to access privacy preference controls and marketing communication settings through their account and at lega…

How often is Twitch's Twitch Privacy Notice updated?

ConductAtlas monitors this document daily and captures every version with cryptographic hashing and timestamp verification. Update frequency varies — see the change timeline on this page for complete version history.

Can I get alerted when Twitch updates this document?

Yes. Watcher subscribers ($9.99/month) can add Twitch to their watchlist and receive same-day email alerts whenever this document or any other Twitch document changes.

CA-D-000108

Twitch Privacy Notice

Twitch

Last change detected April 18, 2026 Privacy policy

SHA-256: bdefefe280034db808b… 1 version captured 0 changes documented

Create free account

Track 1 platform and get the weekly governance digest. No credit card required.

View original document at Twitch ↗

This page describes what the document states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability may vary by jurisdiction. Methodology

10 Total

0 High severity

7 Medium severity

3 Low severity

Summary

This Privacy Notice describes the personal data Twitch collects from users of its streaming platform, applications, and live events, including name, date of birth, payment information, chat messages, voice and image data, and usage patterns. The document establishes that Twitch shares collected data with Amazon affiliates, third-party advertisers, analytics providers, and live event exhibitors. Users may authorize Twitch to collect additional data from connected third-party accounts including YouTube, Discord, and Steam.

Technical / Legal Breakdown

This document is Twitch Interactive Inc.'s Privacy Notice (last modified January 15, 2026), governing the collection, use, and disclosure of personal information across Twitch's websites, applications, services, and live in-person events, with Twitch Interactive Inc. designated as the data controller under data protection law. The notice states that Twitch collects a broad range of user-provided data including name, voice, image, chat communications, date of birth, credit card and billing information, and automatically collected data such as IP address, device identifiers, and behavioral interaction data; the terms authorize use of this information for service operation, content recommendations, advertising, fraud prevention, and analytics, and permit disclosure to Amazon affiliates, third-party advertisers, analytics providers, and other service integrations. Notably, the policy explicitly authorizes data collection from connected third-party platforms such as Discord, Steam, YouTube, and Riot without specifying granular limits on the scope of data obtained, and it permits badge scanning at live events with attendee data transferred to exhibitors subject to those exhibitors' separate privacy policies, which represents a potential gap in Twitch's direct accountability for downstream data handling. The notice references compliance obligations under U.S. federal and state laws and applicable international law, and includes jurisdiction-specific supplemental sections addressing GDPR requirements for EU/EEA users and rights frameworks for California residents under the CCPA/CPRA; regulatory exposure is heightened for EU and California populations, and the Amazon affiliate relationship creates additional data-sharing considerations that compliance teams should evaluate under applicable transfer and processor frameworks.

Institutional Analysis

Institutional analysis available with Professional

Regulatory exposure by statute, material risk assessment, vendor due diligence action items, and enforcement precedent. Available on Professional.

Start Professional free trial

Medium — 7 provisions

Third-Party Social Media and Platform Data Collection Compare →

If you link your Discord, YouTube, Steam, or other accounts to Twitch, Twitch can collect data about your activity on those external platforms, not just on Twitch itself.

Added May 10, 2026 Standard Seen across 251 platforms
Live Event Badge Scanning and Exhibitor Data Transfer Compare →

If you let an exhibitor scan your badge at a Twitch live event, your personal information is handed to that exhibitor and becomes governed by their privacy policy, not Twitch's.

Added May 10, 2026 Standard Seen across 246 platforms
Amazon Affiliate Data Sharing Compare →

Twitch is owned by Amazon, and its affiliates are part of the same corporate family, meaning data practices and sharing within that group are governed by this notice and Amazon's broader policies.

Added April 18, 2026 Standard Seen across 246 platforms
Automatically Collected Behavioral and Device Data

Every time you use Twitch or open one of their emails, data about your device, IP address, and browsing behavior is automatically collected and used for advertising personalization and marketing analytics.

Added May 10, 2026 Rare
Children's Privacy Age Restriction Compare →

Twitch's services are not intended for children below a specified age, and the policy includes a section addressing how children's data is handled.

Added May 10, 2026 Standard Seen across 262 platforms
User-Provided Sensitive Personal Information Collection

Twitch collects a broad range of personal information you provide directly, including your voice, image, chat messages, date of birth, and full billing and credit card details.

Added May 10, 2026 Rare
International Data Transfers Compare →

Twitch transfers personal data across international borders, which affects users outside the United States whose data may be sent to U.S.-based servers or other locations with different privacy standards.

Added May 10, 2026 Standard Seen across 246 platforms

Low — 3 provisions

Merger or Sale Data Transfer Compare →

In the event of a merger, acquisition, or sale of Twitch, your personal data may be transferred to a new owner as part of that transaction.

Added April 18, 2026 Common Seen across 122 platforms
Do Not Track Non-Response Disclosure

Twitch addresses the Do Not Track browser signal in a dedicated section, indicating how the platform responds (or does not respond) to this browser-level privacy preference.

Added May 10, 2026 Rare
Data Retention Discretion Compare →

Twitch retains your personal data for periods it determines are appropriate, which means there is no fixed deletion timeline communicated to users in this section of the notice.

Added May 10, 2026 Standard Seen across 223 platforms