What are the institutional and regulatory implications of this document?

REGULATORY LANDSCAPE: This policy engages the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA), administered by the California Privacy Protection Agency; the Bank Secrecy Act and FinCEN regulations governing AML and KYC obligations for money services businesses; and the FTC Act's prohibition on unfair or deceptive practices. To the extent biometric data is collected from users in Illinois, the Illinois Biometric Information Privacy Act (BIPA) may app…

How does Binance.US's Binance.US Privacy Policy affect users?

The policy establishes that Binance.US retains personal and financial data including government identification, Social Security numbers, biometric identifiers, bank account information, and transaction history, with authorization to disclose this data to service providers, analytics vendors, advertising partners, and law enforcement agencies. The platform implements data collection mechanisms including cookies and third-party analytics tools such as Google Analytics and RudderStack. Users opera…

How often is Binance.US's Binance.US Privacy Policy updated?

ConductAtlas monitors this document daily and captures every version with cryptographic hashing and timestamp verification. Update frequency varies — see the change timeline on this page for complete version history.

Can I get alerted when Binance.US updates this document?

Yes. Monitor subscribers ($19/month) can add Binance.US to their watchlist and receive same-day email alerts whenever this document or any other Binance.US document changes.

CA-D-000065

Binance.US Privacy Policy

Binance.US

Last change detected June 5, 2026 Privacy policy

SHA-256: a7f668098468908a698… 5 versions captured 5 changes documented

Create free account

Track 1 platform and get the weekly governance digest. No credit card required.

View original document at Binance.US ↗

This page describes what the document states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability may vary by jurisdiction. Methodology

7 Total

3 High severity

4 Medium severity

0 Low severity

Summary

This document establishes the privacy policy for Binance.US, operated by BAM Trading Services Inc., and specifies categories of personal data collected from account holders and permitted uses of that data. Binance.US collects government-issued identification, Social Security numbers, bank account details, biometric data, transaction records, device data, and browsing information, with authorization to share such data with third-party service providers, financial institutions, analytics vendors, advertisers, and law enforcement. The policy permits California residents to submit requests to access, delete, correct, or restrict sharing of their personal data through the Binance.US privacy request portal.

Technical / Legal Breakdown

This document is the Privacy Policy for BAM Trading Services Inc. (operating as Binance.US), governing the collection, use, and disclosure of personal information for users of the Binance.US cryptocurrency exchange platform. The policy states that BAM collects identifiers (name, email, phone, government ID), financial information (bank account numbers, transaction history), device and technical data (IP address, browser type, operating system, cookies), biometric data collected during identity verification, and behavioral data (browsing activity, trading patterns); the terms authorize sharing this information with service providers, financial partners, law enforcement, and affiliates. The policy asserts broad data retention authority and describes sharing personal data with third-party analytics, advertising, and compliance vendors, while also disclosing the use of cookies and tracking technologies for behavioral analytics and marketing. The policy engages the California Consumer Privacy Act (CCPA) and its amendment under CPRA, the Bank Secrecy Act, FinCEN regulations, and general FTC Act consumer protection standards; as a U.S.-based cryptocurrency exchange, BAM is subject to financial services compliance requirements including KYC and AML obligations that necessitate collection of government-issued identification and financial records. California residents are expressly identified as having additional rights including the right to know, delete, correct, and opt out of sale or sharing of personal information, though the practical scope of those rights under CCPA depends on enforcement context and how BAM classifies its data processing activities.

Institutional Analysis

Institutional analysis available with Compliance

Regulatory exposure by statute, material risk assessment, vendor due diligence action items, and enforcement precedent. Available on Compliance.

Start Compliance free trial

5 important changes detected

5 versions captured · Last updated: June 2026

June 5, 2026

low

What changed Binance.US updated the header formatting of its Privacy Policy on June 5, 2026, removing the word 'PRIVACY NOTICES' and retitling the document section to 'Binance.US Privacy Policy'. The opening commitment statement and scope of the policy remain unchanged. This is a formatting and presentation revision with no material change to the substantive privacy obligations or disclosures.

Why this matters This change is a formatting and header revision to the Privacy Policy document structure. The substantive privacy commitments, data collection practices, user rights, and operational obligations stated in the policy remain unchanged. No action is required from users.

View full change record →

May 5, 2026

medium

What changed Binance.US updated its privacy policy on May 5, 2026 to disclose expanded data collection and use practices related to artificial intelligence features. The policy now explicitly states that the platform collects information from interactions with AI chatbots, including prompts, market research, and uploaded information. The updated terms also specify that this information may be shared with the AI chatbot provider OpenAI, which may receive details about your account, portfolio, and communication contents along with associated metadata.

Why this matters The updated privacy policy now discloses that Binance.US collects information from interactions with AI chatbots, including prompts, market research, and uploaded information. The policy states this data may be shared with OpenAI, which according to the revised language may receive information about your account, portfolio, and communication contents along with associated metadata. The updated terms also broaden the stated use of personal information to include generating interactive responses through AI chatbots that provide market research and portfolio-specific analysis, as well as collecting inferences about your service use. Your continued use of the platform constitutes acceptance of these updated data collection and sharing practices.

View full change record →

April 19, 2026 medium

Binance.US updated its privacy policy on April 19, 2026 with five new sentences and modifications to eleven existing sentences. The policy now explicitly authorizes disclosure of user information to law …

View change record →

March 12, 2026 medium

Binance.US updated its Privacy Policy on March 12, 2026, adding explicit language authorizing disclosure of customer information to law enforcement and third parties to detect and prevent fraud and financial …

View change record →

March 8, 2026 medium

Binance.US removed explicit language describing fraud prevention disclosures and narrowed the channels available for filing privacy rights appeals. The policy previously stated that user information may be disclosed to law …

View change record →

Recent Provision Changes Jun 5, 2026

Added (3)

Biometric Data Collection High

New explicit disclosure of biometric data collection during KYC processes represents a significant privacy expansion that was not previously disclosed.

Government ID and Social Security Number Collection High

Newly granular disclosure of highly sensitive personal identifiers (government ID, SSN) that were previously bundled under KYC collection.

Financial Account and Transaction Data Collection High

New explicit provision detailing collection of transaction history and payment information, expanding disclosure beyond basic financial account data.

Removed (3)

Data Retention Post-Account Closure

Removal of explicit retention policy disclosure post-account closure reduces transparency on data lifecycle management.

Cross-Border Data Transfers

Removal of cross-border data transfer provision obscures where user data may be processed internationally.

Affiliate Data Sharing

Removal of affiliate-specific data sharing disclosure consolidates sharing practices into broader third-party provisions, reducing specificity.

Modified (5)

Law Enforcement and Regulatory Disclosure

Severity downgraded from high to medium and provision expanded to explicitly mention regulatory authorities and government agencies alongside law enforcement.

California Consumer Privacy Rights (CCPA/CPRA)

Renamed from 'CCPA Rights for California Residents' and now explicitly lists specific rights (know, delete, correct, opt out of sale/sharing).

Cookies and Behavioral Tracking Technologies

Renamed to include 'Behavioral' and now specifies named tracking tools (Google Tag Manager, Google Analytics, RudderStack) with explicit purposes.

Third-Party Data Sharing with Advertising and Analytics Partners

Renamed from 'Third-Party Data Sharing for Marketing' and expanded to explicitly include analytics and service provider partners beyond marketing; severity downgraded from high to medium.

KYC Identity Data Collection

Split into two separate provisions (Government ID and SSN Collection, and Financial Account Data) with more granular detail on specific data types collected.

View full change record →

High — 3 provisions

Biometric Data Collection Compare →

Binance.US collects biometric data from users as part of its identity verification process, which is required to open and maintain an account on the platform.

Added April 3, 2026 Standard Seen across 284 platforms
Government ID and Social Security Number Collection Compare →

Binance.US requires users to provide government-issued identification and Social Security numbers as part of the account opening and identity verification process, consistent with federal KYC and AML requirements applicable to money services businesses.

Added May 12, 2026 Standard Seen across 284 platforms
Financial Account and Transaction Data Collection Compare →

Binance.US collects bank account numbers, cryptocurrency wallet addresses, transaction records, and payment information from users in connection with account funding, trading, and withdrawal activities.

Added May 12, 2026 Standard Seen across 284 platforms

Medium — 4 provisions

Third-Party Data Sharing with Advertising and Analytics Partners Compare →

Binance.US shares user data with third-party advertising and analytics vendors, including (as evidenced by the page's technical implementation) Google Analytics, Google Tag Manager, and RudderStack, for purposes including behavioral analytics and marketing.

Added May 12, 2026 Standard Seen across 252 platforms
Law Enforcement and Regulatory Disclosure Compare →

Binance.US may disclose user personal data, including transaction records and identification information, to law enforcement agencies, financial regulators, or other government authorities when legally required or when the company determines disclosure is appropriate.

Added May 10, 2026 Standard Seen across 284 platforms
California Consumer Privacy Rights (CCPA/CPRA) Compare →

California residents have specific legal rights under the CCPA and CPRA to request access to, deletion of, or correction of their personal data held by Binance.US, and to opt out of the sale or sharing of their personal information with third parties.

Added May 7, 2026 Standard Seen across 284 platforms
Cookies and Behavioral Tracking Technologies Compare →

Binance.US uses cookies, web beacons, and third-party tracking tools to collect device identifiers, browsing activity, and behavioral data from users of the platform, including for analytics and marketing purposes.

Added May 12, 2026 Standard Seen across 284 platforms