Bumble Privacy Policy — Bumble

10 Total

5 High severity

4 Medium severity

1 Low severity

Summary

Bumble's privacy policy explains what personal information the app collects about you — including your location, photos, messages, and even biometric data if you verify your profile — and how it uses and shares that data. Bumble shares your information with third-party partners for advertising and service delivery, and may transfer your data internationally. You have rights to access, correct, delete, or export your data, and California residents have additional rights under state law.

Technical Summary

The Bumble Group Privacy Policy governs the collection, use, disclosure, and storage of personal information by Badoo Trading Limited and Bumble Trading LLC across the Bumble mobile application, desktop platform, and associated websites. The policy establishes Bumble as the GDPR data controller and sets out lawful bases for processing, including consent, legitimate interests, and contractual necessity. Notable provisions include the collection of biometric data for profile verification, use of automated matching algorithms and profiling, cross-border data transfers to the United States and other jurisdictions, sharing with third-party service providers and advertising partners, and comprehensive user rights frameworks for GDPR, CCPA/CPRA (California), and US state-level privacy laws. The policy also addresses sensitive data categories including sexual orientation, religious beliefs, and health information, and provides specific retention and deletion obligations.

Institutional Analysis

This policy engages GDPR (EU and UK), CCPA/CPRA (California), and emerging US state privacy laws, with Bumble acting as data controller under GDPR Article 13/14 obligations. The collection and processing of special category data — including biometric identifiers, sexual orientation, and health info…

🔒

Compliance intelligence locked

Regulatory exposure, material risk, and due diligence action items.

Watcher $9.99/mo Professional $149/mo

Evidence Provenance

Captured March 21, 2026 06:06 UTC

Document ID CA-D-000226

Version ID CA-V-000244

Source URL https://bumble.com/en-us/privacy

Wayback Machine View archived versions →

SHA-256 5dd453abd78efd6d811ea40e15112baaf2ce4a0812d8323dc755aa665dd55f5b

✓ Snapshot stored ✓ Text extracted ✓ Change verified ✓ Cryptographically signed

Change Timeline

March 21, 2026 — Document updated medium

Bumble quietly removed the UK from the list of server locations in their Privacy Policy on March 21, 2026. The policy previously stated that their network includes servers in the US, UK, and the EU; it now only mentions the US and the EU. This matters because UK users may have different data protection expectations, and the removal of UK servers could affect where their personal data is physically stored and processed.

· 1 modified
View changes → View record →
5dd453ab…
March 19, 2026 — Initial capture

First snapshot archived

013fa835…

Analyzed Changes

1 change analyzed since monitoring began.

Updated March 21, 2026

medium

What changed Bumble updated their Bumble Privacy Policy on March 21, 2026. Change detected: 1 sentence(s) modified. Document contained 891 sentences after update.

Consumer impact Bumble has removed the UK from its stated server locations, meaning UK users' personal data may no longer be processed or stored within the UK. This could affect the legal protections that apply to your data under UK data protection law, including the UK GDPR. If you are a UK user concerned about where your data is stored, you can submit a subject access request to Bumble to ask for more information about how and where your personal data is processed.

Why it matters UK users may no longer have their data processed on UK soil, which changes the legal framework governing their data protection rights. This removal lacks any explanation of alternative safeguards, leaving a transparency gap that could concern regulators and affected users alike.

High Severity — 5 provisions

Biometric Data Collection
Bumble collects biometric information — such as facial recognition data — when you use their profile verification or ID verification features to confirm your identity.

Added March 24, 2026
Sensitive Personal Data Processing
Bumble collects and processes sensitive categories of personal data including your sexual orientation, religious beliefs, political views, ethnicity, and health information that you voluntarily provide on your profile.

Added March 24, 2026
Third-Party Advertising Data Sharing
Bumble shares your personal information with third-party advertising and analytics partners to serve you targeted ads and measure marketing effectiveness.

Added March 24, 2026
Geolocation Data Collection
Bumble collects your precise location data when you use the app to help show you matches nearby, and this data is stored and processed as part of your profile.

Added March 24, 2026
California Residents — CCPA/CPRA Rights
California residents have specific rights under CCPA/CPRA, including the right to know what data is collected, the right to delete it, the right to opt out of the sale or sharing of personal information, and the right to non-discrimination for exercising these rights.

Added March 24, 2026

Medium Severity — 4 provisions

Automated Profiling and Matching Algorithms
Bumble uses automated algorithms to analyse your profile, behaviour, and preferences to determine who you are shown and matched with, which constitutes automated decision-making and profiling.

Added March 24, 2026
International Data Transfers
Bumble may transfer your personal information to the United States and other countries outside your home country, which may have different (and potentially weaker) privacy protections.

Added March 24, 2026
User Data Rights (GDPR & CCPA)
You have the right to access, correct, delete, or export your personal data, and to object to or restrict certain types of processing, with additional rights for California residents under CCPA/CPRA.

Added March 24, 2026
Data Retention Policy
Bumble keeps your personal information only as long as necessary for the purposes it was collected, but the specific retention periods vary by data type and applicable law.

Added March 24, 2026

Low Severity — 1 provision

Policy Change Notification
Bumble reserves the right to update this privacy policy at any time, and will notify users of material changes by email or in-app notice, with the latest version always controlling.

Added March 24, 2026