📄 Notice Information

cash.app/legal/us/en-us/privacy
June 8, 2026
Block, Inc. (formerly Square)
Commerce media, effective on or after Feb 9, 2026

⚠ Data Sensitivity: Tier 2 (Highly Sensitive)

A payment app processes financial data, transaction history, bank account information, and government identity data, and the published Privacy Notice also lists a biometric and facial-scan category. This data profile warrants heightened attention under the methodology. Automated assessment, as of June 28, 2026.

Privacy Score Breakdown

How Cash App's published Privacy Notice rates across the methodology's data-rights categories. Automated assessment, as of June 28, 2026.

📊 Data Collection Scope 25/100

The notice lists identity, financial, transaction, device and location, biometric, customer-support, and third-party-source categories. Broad and sensitive by nature for a financial app.

🧬 Sensitive & Biometric Data 25/100

The notice lists a biometric category: photographs, facial scan, and biometric information extracted from such images for verification purposes. Biometric data is among the most sensitive categories.

🎯 Sharing & Advertising 28/100

Commerce-media language, effective on or after February 9, 2026, contemplates using and sharing activity data in connection with the commerce media network. Confirm opt-out scope in the current notice.

⚙ User Control & Retention 35/100

State privacy laws (for example the CCPA) give residents access, deletion, and opt-out rights. A financial app may be required to retain certain records for legal and AML reasons, so total erasure is not always available.

👁 Transparency 45/100

The notice is published and itemizes categories and a dated advertising change, which is reasonably specific. The opacity is on the downstream use and the exact opt-out scope.

Compare With Other Processors