Users who register via Facebook login authorize Bumble to access profile pictures, relationship status, location data, and information about Facebook friends. The full scope of data accessed is described in the Privacy Policy rather than the Terms.
This analysis describes what Bumble's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
This provision authorizes access to Facebook friend information and location data at account creation, and the complete scope of accessed data is defined by reference to a separate Privacy Policy document rather than specified in the Terms themselves. This cross-document dependency means the full data access scope may not be apparent to users reading only the Terms.
The updated terms reframe BeePitched from a collaborative pitch-sharing feature to a standalone content generation and distribution tool under user control. Users are now solely responsible for obtaining permissions, ensuring content legality, and distributing completed pitches themselves. Bumble clarifies it does not host or distribute pitches after generation and retains content only briefly (24 hours post-download, 7 days if not completed) for moderation purposes. Bumble reserves the right to review, refuse to generate, remove, or restrict access to any content that violates the terms or community guidelines, and may suspend access to the feature if misuse is identified.
View change record →The updated terms state that Bumble's license to use your uploaded content is now limited to distribution to other app users when they are using the app, rather than the previously stated right to make content available to the general public. This represents a narrowing of the company's stated rights over user content. Additionally, the terms now explicitly disclose five scenarios in which Bumble may request account verification: to prevent fake accounts and fraud, to confirm age compliance in certain jurisdictions, to detect unusual account access, to prevent payment fraud, and to enforce community guidelines. The terms also clarify that uninstalling the app does not delete your account, and you must manually follow account deletion steps to permanently remove it.
View change record →This new provision explicitly authorizes Bumble to access and use Facebook user data, which represents a significant permission for third-party data collection that was not previously documented in these T&Cs.
View full change record →The agreement states that creating an account via Facebook login authorizes Bumble to access profile pictures, relationship status, location, and Facebook friend information. The complete scope of this data access is governed by the Privacy Policy rather than fully specified in the Terms.
How other platforms handle this
We keep your personal information for different lengths of time depending on the type of information and the business and legal requirements. For example, if you are a customer, we keep information that personally identifies you as long as you subscribe to one or more of our Services. If you no long...
International Data Transfers
Uber operates globally and may transfer personal data to countries outside of the country in which it was collected, including to the United States where Uber Technologies, Inc. is headquartered. Uber relies on Standard Contractual Clauses approved by the European Commission, and other approved tran...
Monitoring
Bumble has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 25 platforms.
"If you create an Account using your Facebook login details, you authorize us to access, display and use certain information from your Facebook account (e.g. profile pictures, relationship status, location and information about Facebook friends). For more information about what information we use and how we use it, please check out our Privacy Policy.— Excerpt from Bumble's Bumble Terms and Conditions
REGULATORY LANDSCAPE: For EU users, this provision engages GDPR requirements regarding specific, informed consent for data collection, particularly for social graph data (Facebook friends information) and location data. The collection of third-party social graph information (friends list) raises questions under GDPR regarding the lawful basis for processing data about individuals who have not themselves consented to Bumble's terms. The FTC Act is relevant to the adequacy of disclosure for US users regarding the scope of Facebook data access. GOVERNANCE EXPOSURE: Medium. The reference to Facebook friend information introduces third-party personal data into the collection scope, which may raise independent consent and lawful basis questions. The cross-reference to the Privacy Policy for the full data scope creates a disclosure architecture that requires users to consult multiple documents to understand the complete data collection at account creation. JURISDICTION FLAGS: EU and UK users have GDPR rights that may limit the scope of social login data collection, particularly regarding third-party data (friend information). California residents have CCPA rights regarding the collection and use of personal information obtained via social login. The adequacy of the Facebook login data disclosure may vary by jurisdiction depending on local consent and transparency requirements. CONTRACT AND VENDOR IMPLICATIONS: The data access through Facebook login constitutes a third-party data integration that should be covered in Bumble's data processing documentation. Any changes to Facebook's Graph API access policies may affect the scope of data available under this authorization, and compliance teams should monitor for such changes and assess their impact on disclosed data practices. COMPLIANCE CONSIDERATIONS: Compliance teams should assess whether the Facebook login data access authorization meets GDPR specificity requirements for EU users, particularly regarding location and friend data. The Privacy Policy should be reviewed in conjunction with this provision to confirm that the full scope of Facebook-sourced data is disclosed and supported by an appropriate lawful basis. Data mapping documentation should include Facebook login as a data source with the associated data categories.
Full compliance analysis
Regulatory citations, enforcement risk, and due diligence action items.
Free: track 3 platforms + weekly digest. Monitor: 25 platforms + same-day alerts. No credit card required.
Ad personalization controls removed. Contact scanning added. Advertiser data partnerships quietly dropped. A timeline of every change.
Compliance Governance Intelligence
Need to monitor specific governance provisions?
Compliance includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
This provision authorizes access to Facebook friend information and location data at account creation, and the complete scope of accessed data is defined by reference to a separate Privacy Policy document rather than specified in the Terms themselves. This cross-document dependency means the full data access scope may not be apparent to users reading only the Terms.
The agreement states that creating an account via Facebook login authorizes Bumble to access profile pictures, relationship status, location, and Facebook friend information. The complete scope of this data access is governed by the Privacy Policy rather than fully specified in the Terms.
ConductAtlas has identified this type of provision across 163 platforms. See the full comparison.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Bumble.