Other Covered Entities
Industries
- Financial Services
- Financial Technology
Participation
UK Extension to the EU-U.S. Data Privacy Framework Framework: Active
EU-U.S. Data Privacy Framework Framework: Active
Swiss-U.S. Data Privacy Framework Framework: Active
Purpose of Data Collection
Stripe’s data collection and data processing purposes vary based on the products and services Stripe offers to its Business Users, End Users and End Customers. In general, the purposes include, e.g., providing Stripe products and services, including facilitating financial transactions, fraud monitoring, prevention and detection, anti-monetary laundering screening, compliance with legal obligations, and conducting data analysis to improve Stripe products and services. HR data is processed for various employment, legal and business purposes as detailed in our relevant information notices and other policies.
Privacy Policy
HR Data
Describes our compliance approach with regard to the Data Privacy Framework Principles in relation to employees, applicants and others.
Non-HR Data
Describes our compliance approach with regard to the Data Privacy Framework Principles. The Data Privacy Framework Policy applies to Stripe, Inc. For further information, please see our Data Privacy Framework Policy at https://stripe.com/legal/data-privacy-framework. This Stripe Data Privacy Framework Policy (“DPF Policy”) and the Stripe Privacy Policy (“Privacy Policy”) describes the privacy practices that we implement for Personal Data received from the EEA, UK and Switzerland in reliance on the DPF. Stripe has certified to the Department of Commerce that it adheres to the DPR Principles with respect to such data. This DPF Policy uses terms that are defined in the Privacy Policy. If there is any conflict between the terms in this DPF Policy and the DPF Principles as concerns the Personal Data received under the DPF, the DPF Principles will prevail.
Verification Method
Self-Assessment
Dispute Resolution
Questions or Complaints?
If you have a question or complaint regarding the covered data, please contact Stripe, Inc. at:
Office of the DPO
South San Francisco, California 94080
Privacy Shield organizations must respond within 45 days of receiving a complaint.
If you have not received a timely or satisfactory response from Stripe, Inc. to your question or complaint, please contact the independent recourse mechanism listed below
NON-HR RECOURSE MECHANISM
Appropriate statutory body with jurisdiction to investigate any claims against Stripe, Inc. regarding possible unfair or deceptive practices and violations of laws or regulations covering privacy Federal Trade Commission