What are the institutional and regulatory implications of this document?

1) REGULATORY LANDSCAPE: This policy engages the Gramm-Leach-Bliley Act (GLBA), which governs financial privacy notices and limits sharing of nonpublic personal information with nonaffiliated third parties; the California Consumer Privacy Act (CCPA) and its amendments under CPRA, enforced by the California Privacy Protection Agency and California Attorney General; the Children's Online Privacy Protection Act (COPPA), enforced by the FTC, relevant to the Acorns Early product involving minor bene…

How does Acorns's Acorns Privacy Policy affect users?

The agreement establishes that Acorns collects financial account information, transaction data, device identifiers, browsing and app activity, geolocation, and communications content across its platform. Under these terms, collected data may be shared with service providers, advertising and analytics partners, and affiliated entities for purposes including marketing, product improvement, and targeted advertising. You can opt out of the sale or sharing of your personal information for cross-cont…

How often is Acorns's Acorns Privacy Policy updated?

ConductAtlas monitors this document daily and captures every version with cryptographic hashing and timestamp verification. Update frequency varies — see the change timeline on this page for complete version history.

Can I get alerted when Acorns updates this document?

Yes. Monitor subscribers ($19/month) can add Acorns to their watchlist and receive same-day email alerts whenever this document or any other Acorns document changes.

CA-D-000172

Acorns Privacy Policy

Acorns

Last change detected May 28, 2026 Privacy policy

SHA-256: a19f7029bdbc0f70b3c… 8 versions captured 8 changes documented

Create free account

Track 1 platform and get the weekly governance digest. No credit card required.

View original document at Acorns ↗

This page describes what the document states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability may vary by jurisdiction. Methodology

7 Total

2 High severity

3 Medium severity

2 Low severity

Summary

This is Acorns' Privacy Policy, covering how the company collects and uses personal data across its investment, banking, and family financial products. The policy authorizes collection of financial account data, transaction history, device identifiers, browsing activity, geolocation, and communications, and permits sharing that data with service providers, advertising partners, analytics providers, and affiliated companies. California residents have specific rights under CCPA to request deletion of their data and to opt out of the sale or sharing of their personal information for cross-context behavioral advertising.

Technical / Legal Breakdown

This document is Acorns' Privacy Policy governing the collection, use, storage, and sharing of personal information across its financial services platform, including brokerage accounts, IRA accounts, banking products, and the Acorns Early family investing product. The policy states that Acorns collects identifiers, financial account data, transaction history, device information, browsing and app activity, geolocation data, and communications content; the terms authorize sharing this information with service providers, financial institution partners, advertising and analytics partners, and affiliated entities. The policy includes a California Consumer Privacy Act (CCPA) section granting California residents rights to know, delete, and opt out of the sale or sharing of personal information, and separately addresses children's data practices under COPPA in connection with the Acorns Early product. As a registered investment adviser and broker-dealer adjacent platform operating in financial services, Acorns' data practices engage the FTC Act, CCPA, Gramm-Leach-Bliley Act (GLBA), and COPPA, with GLBA's financial privacy notice requirements creating a distinct compliance layer governing information sharing with nonaffiliated third parties. The document's stated authority to share personal information with advertising and analytics partners warrants evaluation against GLBA opt-out requirements and CCPA's opt-out-of-sale provisions, as applicable law may limit the scope of sharing that can proceed without consumer consent or opt-out opportunity.

Institutional Analysis

Institutional analysis available with Compliance

Regulatory exposure by statute, material risk assessment, vendor due diligence action items, and enforcement precedent. Available on Compliance.

Start Compliance free trial

8 important changes detected

8 versions captured · Last updated: May 2026

May 28, 2026

unknown

What changed Acorns updated their Acorns Privacy Policy on May 28, 2026. Change detected: 2 sentence(s) modified. Document contained 346 sentences after update.

View full change record →

May 16, 2026

low

What changed Acorns added two new promotion terms documents to its privacy policy footer on May 16, 2026: 'Acorns $50 Opendorse Promotion Terms and Conditions' and 'Acorns $20 Money Therapy Bonus Investment Promotion Terms and Conditions'. These are promotional offerings listed alongside existing bonus and incentive programs. The change is purely administrative, adding references to new promotional campaigns without modifying the substantive privacy policy text or data practices.

Why this matters This change adds administrative references to two new promotional campaigns within Acorns' privacy policy documentation structure. The updated policy footer now includes links to 'Acorns $50 Opendorse Promotion Terms and Conditions' and 'Acorns $20 Money Therapy Bonus Investment Promotion Terms and Conditions' alongside existing promotion terms. No changes were made to core privacy practices, data handling, or collection methods. The substantive privacy notice remains effective as of April 30, 2026.

View full change record →

May 12, 2026 low

Acorns updated its privacy policy navigation on May 12, 2026. The change added a new navigation link labeled 'Our Pledge' to the main menu alongside existing links like 'Learn' and …

View change record →

May 6, 2026 low

Acorns added a new promotion to its privacy policy document table of contents on May 6, 2026. The change is a single-sentence addition listing 'Acorns Research Promotion Terms and Conditions' …

View change record →

May 5, 2026 low

Acorns added a link to its Privacy Policy in the navigation menu of its website on May 5, 2026. This is a navigation and disclosure change, not a modification to …

View change record →

May 1, 2026 low

Acorns updated the effective date of its Privacy Notice from May 19, 2025 to April 30, 2026. This is a administrative update to when the policy takes effect. The change …

View change record →

April 30, 2026 low

Acorns updated its privacy policy on April 30, 2026 to disclose how it handles third-party sign-in services like Apple and Google, and clarified its use of AI chatbots for financial …

View change record →

April 18, 2026 medium

Acorns removed detailed language about third-party sign-in services (Apple, Google) that previously explained what data these services could share, how that data is controlled, and how it would be used. …

View change record →

Recent Provision Changes May 28, 2026

Added (2)

Data Retention Low

This new provision establishes data retention and deletion standards, providing transparency on how long Acorns keeps personal information.

Use of Personal Information for Marketing Low

This clarifies permissible uses of personal information for marketing and communications, creating more transparent disclosure about promotional activities.

Removed (3)

Data Collection from Third-Party Sources Including Data Brokers

Removal of explicit third-party data broker sourcing language may indicate stricter controls on data aggregation or represents a de-emphasis of this practice in the updated policy.

Business Transfer Data Disclosure

Removal of explicit M&A data transfer language may indicate this provision was incorporated elsewhere or deprioritized, reducing transparency about business transaction disclosures.

Account Linking and Third-Party Data Aggregator Access

Removal of specific data aggregator disclosure for account linking reduces transparency about third-party tools used to access external financial institutions.

Modified (5)

Financial and Account Data Collection

Severity increased from medium to high, and collection scope narrowed to exclude investment preferences, employment data, and address/date of birth, while adding transaction history detail.

Device, Behavioral, and Geolocation Data Collection

Changed from 'may collect' to 'automatically collect,' added explicit tracking technology methods (cookies, web beacons), and clarified conditional consent for precise geolocation.

Sharing with Advertising and Analytics Partners

Removed language explicitly allowing sharing 'for their own marketing purposes,' added clarification that partners assist in providing services/advertisements, and introduced 'service providers' and 'business partners' categories.

California Consumer Privacy Rights

Removed explicit mention of CCPA and CPRA statutes, dropped the right to correct inaccurate information, removed right to limit use, and added right to non-discrimination.

Children's Data and Acorns Early Product

Added commitment to delete minor's data if accidentally collected, replaced 'may collect' language with more neutral description of Acorns Early as accounts 'established by adults for the benefit of minor beneficiaries.'

View full change record →

High — 2 provisions

Financial and Account Data Collection Compare →

The policy states that Acorns collects financial account numbers, investment account data, transaction history, government-issued identification numbers including Social Security numbers, and standard contact identifiers from users who engage with its services.

Added May 20, 2026 Standard Seen across 284 platforms
Sharing with Advertising and Analytics Partners Compare →

The policy authorizes sharing of user personal information with service providers, business partners, advertising partners, and analytics providers, with advertising partners specifically described as receiving information to deliver targeted advertisements.

Added May 20, 2026 Standard Seen across 284 platforms

Medium — 3 provisions

Device, Behavioral, and Geolocation Data Collection Compare →

The policy states that Acorns automatically collects device identifiers, operating system and browser data, in-app and web usage activity, IP address-based location, and precise geolocation when permitted, along with data gathered through cookies, web beacons, and similar tracking technologies.

Added May 20, 2026 Standard Seen across 284 platforms
California Consumer Privacy Act Rights Compare →

The policy discloses that California residents have CCPA rights to request disclosure of collected personal information categories and specific pieces, to request deletion of their personal information, to opt out of the sale or sharing of personal information, and to be free from discrimination for exercising those rights.

Added May 20, 2026 Standard Seen across 284 platforms
Children's Data and Acorns Early Product Compare →

The policy states that Acorns' general services are not directed at children under 13 and that the company does not knowingly collect personal information from such children, while separately acknowledging that the Acorns Early product involves accounts established by adults for minor beneficiaries.

Added May 20, 2026 Standard Seen across 284 platforms

Low — 2 provisions

Data Retention Compare →

The policy states that personal information is retained for as long as necessary to provide services, meet legal obligations, resolve disputes, and enforce agreements, and that data will be deleted or anonymized when no longer needed.

Added May 7, 2026 Standard Seen across 284 platforms
Use of Personal Information for Marketing Compare →

The policy authorizes use of personal information for service delivery, communications about promotional offers, personalization of user experience, and internal research and analytics.

Added May 20, 2026 Standard Seen across 284 platforms

Monitoring

Acorns has updated this document before.

Monitor includes same-day alerts, structured change summaries, and monitoring for up to 25 platforms.

Start Monitor free trial Or create a free account →

Compliance Governance Intelligence

Need provision-level monitoring and regulatory mapping?

Compliance includes governance timelines, compliance memos, audit-ready analysis, and full provision tracking.

Start Compliance free trial

Cross-platform context

See how other platforms handle Behavioral Analytics and Session Tracking and similar clauses.

Compare across platforms →

Archival ProvenanceSource & Archival Record

Last Captured May 28, 2026 00:16 UTC

Capture Method Automated scheduled archival capture

Document ID CA-D-000172

Version ID CA-V-003064

Source URL https://www.acorns.com/privacy/

Wayback Machine View external archival references →

SHA-256 a19f7029bdbc0f70b3c920059c45dc4f32ab9fb5311c3fefcac26f6803c0ae89

✓ Snapshot stored ✓ Text extracted ✓ Change verified ✓ Hash verified

Acorns Privacy Policy

May 28, 2026

May 16, 2026

Recent Provision Changes May 28, 2026

Monitor governance changes across the platforms you rely on.