Privacy policy clauses for Drift
Drift is a conversational marketing and live chat platform that enables real-time communication between websites and visitors. Websites use Drift to engage customers, qualify leads, and provide instant support through chat interfaces embedded on their pages.
Free scan · No signup · Results in 60 seconds
What data Drift collects
Your privacy policy must disclose each of the following data types when you use Drift.
When does Drift trigger privacy obligations?
Installation triggers immediate obligations
The moment you embed Drift on your website or app, you begin collecting chat messages, email addresses, IP addresses, and device information from visitors. This data collection is automatic—it does not require visitor action—which triggers compliance obligations immediately.
Applicable regulations by jurisdiction
GDPR (EEA visitors): If any visitor is in the EEA, GDPR Article 6 requires a lawful basis for processing Drift data. Article 5 requires transparency. You must document a Data Processing Agreement (DPA) with Drift (Salesloft Inc., US-based). GDPR Article 13 requires you to provide privacy notice *before* data collection begins, covering the specific categories Drift collects: chat content, email, IP, and device identifiers.
