Chargebee

Risk Level: Medium Risk
Updated: May 7, 2025
Provider Overview

The overall risk score of 0.58 indicates significant compliance gaps, primarily in User Consent & Control where explicit consent mechanisms, granular consent options, withdrawal processes, and legitimate interest documentation are entirely missing. Additionally, automated decision-making lacks transparency and safeguards, children's data protections are insufficient, and data retention lacks automated deletion. Strong areas include Data Subject Rights and International Data Transfers. Immediate action is required to address consent management, automated processing disclosures, and retention policies to mitigate regulatory penalties.

Tracked Documents
Terms of Service
May 7, 2025
Privacy Policy
May 7, 2025
Modern Slavery Act
May 7, 2025
Security
May 7, 2025
Responsible Disclosure Policy
May 7, 2025
PCI DSS Compliance
May 7, 2025
PCI DSS Responsibility Matrix
May 7, 2025
Subprocessors
May 7, 2025