Stripe Connect

Stripe Connect

Stripe Connect is Stripe's platform payments product enabling marketplaces and SaaS platforms to process payments on behalf of third-party sellers. Scripts manage connected account onboarding flows, payment routing, and split payment configurations. OAuth tokens and account identifiers are stored to facilitate multi-party transactions.

Stripe
Part of Stripe
Back to Vendor Library

Overview

Stripe Connect extends Stripe's payment infrastructure to support multi-party transactions, enabling marketplaces, platforms, and SaaS businesses to facilitate payments between buyers and sellers. The platform handles complex payment routing — splitting funds between multiple recipients, managing onboarding of connected accounts, and handling compliance requirements like KYC (Know Your Customer) verification. Stripe Connect scripts appear on websites that operate as platforms processing payments on behalf of third parties.

What This Script Does

Stripe Connect integrates through Stripe.js (js.stripe.com/v3/) and additional Connect-specific components for account onboarding and payment management.

  • Scripts loaded: js.stripe.com/v3/ — the core Stripe.js library that handles payment tokenization, Connect account onboarding flows, and Express dashboard embeds
  • Connect Onboarding: The Connect Onboarding flow opens a Stripe-hosted page (or embedded component) where connected accounts provide identity documents, banking details, and business information for KYC verification
  • Payment flow: When a buyer makes a purchase, Stripe.js tokenizes payment details and routes funds according to the platform's configured split — the platform's share, the connected account's share, and Stripe's fees
  • Cookies set:
    • __stripe_mid — First-party cookie (1-year expiry). Machine identifier for fraud detection across the platform's payment flows.
    • __stripe_sid — First-party cookie (30-minute expiry). Session identifier correlating payment interactions within a single visit.
  • Data transmitted: Payment method details (tokenized), connected account identifiers, transaction amounts, and platform metadata are sent to Stripe's servers. OAuth tokens are exchanged during account connection flows.
  • No tracking: Stripe Connect does not perform advertising or behavioral tracking. All data collection serves payment processing and fraud prevention.

Consent & Compliance

Stripe Connect falls under the essential consent category.

Under GDPR and ePrivacy, Stripe Connect is a strictly necessary payment processing service. The cookies set (__stripe_mid, __stripe_sid) serve fraud prevention and payment security purposes, which are essential for completing transactions explicitly requested by the user. The ePrivacy Directive exempts cookies that are strictly necessary for a service the user has requested. GDPR legal basis is Article 6(1)(b) — processing necessary for contract performance.

Under CCPA/CPRA, payment and identity data processed through Connect is necessary for completing the requested transaction and onboarding flow. Stripe acts as a service provider processing data on behalf of the platform. This does not constitute a "sale" or "sharing" of personal information.

Stripe is certified under the EU-US Data Privacy Framework and offers data processing agreements compliant with GDPR requirements.

Should You Block This Without Consent?

No. Stripe Connect is essential payment infrastructure that enables multi-party transactions. Blocking it would prevent sellers from receiving payments and buyers from completing purchases on marketplace platforms. The cookies set serve fraud prevention, not tracking, and are strictly necessary for the payment service.

Visit website

Consent Categories

Essential

Also Known As

stripe connectstripe marketplacestripe platform paymentsstripe oauthstripe connected accounts

Industries

Computers Electronics and TechnologyProgramming and Developer Software

Tracked Domains (1)

connect.stripe.comEssential

Frequently Asked Questions

Do I need consent to use Stripe Connect on my website?

No. Stripe Connect is essential payment infrastructure for multi-party transactions. Fraud prevention cookies (__stripe_mid, __stripe_sid) are strictly necessary for completing user-initiated payments, qualifying for the ePrivacy exemption. GDPR legal basis is contract performance (Article 6(1)(b)).

What cookies does Stripe Connect set?

Stripe Connect sets __stripe_mid (1-year expiry) as a machine identifier for fraud detection and __stripe_sid (30-minute expiry) as a session identifier. Both cookies are set on the stripe.com domain, not the merchant domain, keeping the merchant site cookie footprint minimal.

How does ConsentStack handle Stripe Connect?

ConsentStack classifies Stripe Connect as essential and does not block it. It is detected via js.stripe.com/v3/ script loads. Because it serves payment processing and fraud prevention — not tracking — no consent gate is applied.

Other Stripe Products

Stripe Billing
Stripe Billing
Stripe Billing is Stripe's subscription and recurring revenue management module. Scripts embedded in checkout and account pages handle subscription lifecycle events, billing cycles, proration calculations, and payment retry logic. Stores session data and payment method tokens to support subscription management flows.
Stripe Identity
Stripe Identity
Stripe Identity is a document-based identity verification service. Scripts load a verification flow that captures government-issued ID images and selfie photos via device camera, transmitting them to Stripe for automated document analysis and liveness detection. Collected biometric data and document details are processed to verify user identity.
Stripe Radar
Stripe Radar
Stripe Radar is Stripe's machine learning-based fraud detection system. Scripts collect browser signals including device fingerprints, behavioral patterns, and network metadata during payment flows to assess transaction risk. This data is used to score transactions and trigger 3D Secure challenges for suspicious activity.
Stripe Tax
Stripe Tax
Stripe Tax is an automated tax calculation and collection module integrated into Stripe checkout flows. Scripts calculate applicable sales tax, VAT, or GST in real time based on customer location and product type during payment. Tax calculations and jurisdiction data are transmitted to Stripe's servers for compliance reporting.

Related Vendors

Firebase
Firebase
Firebase is Google's mobile and web application development platform offering authentication, real-time database, cloud functions, and analytics. Web SDK scripts initialize Firebase services and may track app events via Firebase Analytics, which is powered by Google Analytics 4. Widely used in single-page apps and PWAs for backend infrastructure and usage tracking.
Google Fonts
Google Fonts
Google Fonts is a free font hosting service that serves hundreds of typeface families via a global CDN. Stylesheets and font files load from fonts.googleapis.com and fonts.gstatic.com to deliver web fonts to visitors. No advertising or tracking functionality is included.
Google
Google
Google is the dominant provider of web analytics, advertising, and infrastructure tools. Scripts like Google Analytics, Tag Manager, Ads, and reCAPTCHA collect behavioral data, manage tag firing, serve targeted ads, and detect bots. Sets persistent cookies to track users and correlate activity across sites.
Google Tag Manager
Google Tag Manager
Google Tag Manager is a tag management system that lets marketers deploy and update analytics and marketing scripts without code changes. The GTM container script loads synchronously in the page head and injects configured tags, triggers, and variables on behalf of other vendors. No data collection of its own — acts as a loader for other scripts.
reCAPTCHA
reCAPTCHA
Google reCAPTCHA is a bot detection and spam prevention service protecting web forms, login pages, and checkout flows. Scripts analyze user behavior, mouse movements, and browser fingerprints to distinguish humans from bots. The invisible reCAPTCHA v3 scores interactions without requiring user challenges.
Sign in with Google
Sign in with Google
Sign in with Google is an OAuth-based authentication service that enables users to log into websites using their Google account credentials. Scripts load the Google Identity Services library, display sign-in buttons, and handle token exchange for secure authentication. Stores session tokens and authentication cookies to maintain login state across page visits.

Manage consent for Stripe Connect

ConsentStack automatically detects and manages Stripe Connect trackers so your site stays compliant with global privacy regulations.

Get started free