What are the institutional and regulatory implications of this document?

REGULATORY LANDSCAPE: Chase's Online Privacy Policy engages the Gramm-Leach-Bliley Act, which governs financial institutions' obligations to protect consumer financial information and provide opt-out rights for sharing with non-affiliated third parties. The policy also engages the California Consumer Privacy Act as amended by the California Privacy Rights Act, which grants California residents rights to access, delete, and opt out of the sale or sharing of personal information. FTC Act Section …

How does Chase's Chase Privacy Notice affect users?

The document establishes that personal and financial data collected through Chase digital platforms may be shared across JPMorgan Chase affiliates and with third-party partners for marketing and analytics purposes. Users retain the ability to review and adjust privacy preferences through chase.com or by contacting the phone number listed in the policy, and California residents have additional options to submit data deletion requests or opt-out requests through the same channels.

How often is Chase's Chase Privacy Notice updated?

ConductAtlas monitors this document daily and captures every version with cryptographic hashing and timestamp verification. Update frequency varies — see the change timeline on this page for complete version history.

Can I get alerted when Chase updates this document?

Yes. Watcher subscribers ($9.99/month) can add Chase to their watchlist and receive same-day email alerts whenever this document or any other Chase document changes.

CA-D-000042

Chase Privacy Notice

Chase

Last change detected April 19, 2026 Privacy policy

SHA-256: 0bde20104caa93f89dd… 2 versions captured 0 changes documented

Create free account

Track 1 platform and get the weekly governance digest. No credit card required.

View original document at Chase ↗

This page describes what the document states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability may vary by jurisdiction. Methodology

8 Total

0 High severity

5 Medium severity

3 Low severity

Summary

The Chase Privacy Notice establishes the data collection, use, and sharing practices for Chase's website, mobile app, and digital services. The document authorizes collection of personal and financial data including account details, device identifiers, location data, and browsing behavior, and permits sharing this information with JPMorgan Chase affiliated companies and third-party service providers for purposes including marketing, analytics, and fraud prevention. California residents are granted rights to request data deletion and opt out of certain data sharing activities through Chase's privacy settings.

Technical / Legal Breakdown

This document is Chase's Online Privacy Policy governing the collection, use, and sharing of personal information obtained through Chase's websites, mobile applications, and digital platforms operated by JPMorgan Chase & Co. The policy states that Chase collects information users provide directly, information collected automatically through cookies and tracking technologies, and information from third parties, and the terms authorize use of this data for product delivery, marketing, fraud prevention, and analytics. Notably, the policy describes sharing of personal information with affiliates across the JPMorgan Chase enterprise and with third-party service providers, and it reserves the right to use location data, device identifiers, and browsing behavior for targeted advertising, which is operationally distinct from minimalist data practices but consistent with large financial institution norms. As a U.S. financial institution, Chase's data practices engage the Gramm-Leach-Bliley Act, the California Consumer Privacy Act as amended by the California Privacy Rights Act for California residents, and FTC Act Section 5 unfair or deceptive practices standards, with the CFPB holding supervisory authority over data practices tied to consumer financial products. California residents have specific opt-out and deletion rights under CCPA/CPRA that may materially differ from protections available to users in other states, creating jurisdiction-dependent compliance considerations.

Institutional Analysis

Institutional analysis available with Professional

Regulatory exposure by statute, material risk assessment, vendor due diligence action items, and enforcement precedent. Available on Professional.

Start Professional free trial

Medium — 5 provisions

Affiliate and Third-Party Data Sharing Compare →

Chase can share your personal and financial information with other JPMorgan Chase companies and with outside vendors or partners who help run its business, including for marketing and risk management purposes.

Added May 10, 2026 Standard Seen across 246 platforms
Cookie and Behavioral Tracking Compare →

Chase uses cookies and tracking technologies to monitor your activity on its websites and apps, and this data is used to customize your experience and show you targeted ads both on Chase's platforms and on other websites.

Added May 10, 2026 Standard Seen across 251 platforms
Location Data Collection Compare →

Chase may collect your real-time GPS or device location with your permission and use it to offer location-based services or targeted offers.

Added May 10, 2026 Standard Seen across 251 platforms
California Consumer Privacy Rights Compare →

If you live in California, you have specific legal rights to see what data Chase has about you, ask Chase to delete it, correct it, limit use of sensitive data, and opt out of Chase sharing your data for advertising purposes.

Added May 10, 2026 Standard Seen across 262 platforms
Data Collection from Third Parties Compare →

Chase may obtain information about you from outside sources including credit bureaus, marketing firms, and social media platforms, and may combine that information with what it already knows about you.

Added May 10, 2026 Standard Seen across 251 platforms

Low — 3 provisions

Marketing Communications and Opt-Out Compare →

Chase may send you promotional messages about its products and services, but you can opt out by following the unsubscribe instructions in those messages or by contacting Chase directly.

Added May 10, 2026 Standard Seen across 262 platforms
Children's Privacy Compare →

Chase's websites and digital services are not intended for children under 13, and Chase states it does not knowingly collect personal data from children under 13 without parental consent.

Added May 7, 2026 Common Seen across 155 platforms
Security and Data Protection Disclosure Compare →

Chase states that it uses technical and administrative security measures and limits access to your data to personnel and contractors who need it for their work.

Added May 10, 2026 Standard Seen across 262 platforms