What can I do about this clause?

{'method': 'PHONE', 'recipient': 'Contact Chime customer support or The Bancorp Bank, N.A. to inquire about state-specific privacy rights', 'difficulty': 'MODERATE', 'action_type': 'DELETE_DATA', 'instructions': 'If you are a California resident, contact Chime or The Bancorp Bank to request information about your additional rights under California FIPA, including potential opt-in rights for certain data sharing that exceeds the federal GLBA baseline. Request written confirmation of the rights available to you.', 'deadline_days': None, 'deadline_hours': None}

Which regulatory agencies enforce this type of clause?

{'agency': 'CFPB', 'reason': 'The CFPB enforces GLBA Regulation P annual notice requirements and UDAAP standards applicable to misleading or incomplete privacy disclosures.', 'complaint_url': 'https://www.consumerfinance.gov/complaint/'}, {'agency': 'State_AG', 'reason': 'State Attorneys General enforce state financial privacy laws including California FIPA, which provides opt-in rights stronger than the federal GLBA baseline disclosed in this notice.', 'complaint_url': 'https://www.naag.org/find-my-ag/'}

What is the severity of this clause?

ConductAtlas classifies this Annual Privacy Notice Delivery clause as medium severity. Severity reflects the magnitude of rights affected, the breadth of users impacted, and the degree of discretion the platform retains.

Annual Privacy Notice Delivery — Chime

Share 𝕏 Share in Share 🔒 PDF

Monitor governance changes for Chime Create a free account to receive the weekly governance digest and monitor one platform for governance changes.

Create free account No credit card required.

Document Record

What it is

Federal law limits your opt-out rights to specific categories of data sharing, but state laws — particularly in California — may give you additional rights to control how your financial information is used.

ⓘ

This analysis describes what Chime's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology

ConductAtlas Analysis

Why it matters (compliance & governance perspective)

If you live in California or another state with stronger privacy laws, you may have more control over your financial data than this notice's federal baseline suggests — but you need to proactively ask about those additional rights.

Recent Activity

This document changed recently

Medium Apr 20, 2026

The updated notice states Chime no longer shares your personal information (such as transaction history and creditworthiness) with other financial companies for joint marketing purposes. This is a na…

Consumer impact (what this means for users)

California residents and consumers in states with stricter financial privacy laws may have additional opt-out or opt-in rights not fully described in this federal GLBA notice, meaning you should separately inquire about your state-specific rights to ensure you are exercising full control over your financial data.

What you can do

⚠️ These actions may provide transparency or partial mitigation but may not fully address the underlying issue. Effectiveness varies by jurisdiction and individual circumstances.

Delete Your Data

If you are a California resident, contact Chime or The Bancorp Bank to request information about your additional rights under California FIPA, including potential opt-in rights for certain data sharing that exceeds the federal GLBA baseline. Request written confirmation of the rights available to you.

How other platforms handle this

Zelle Medium

Changes to this Privacy Notice

ADP Medium

If you are a California resident, you may have certain rights under the California Consumer Privacy Act (CCPA). These rights may include: the right to know about personal information collected, disclosed, or sold; the right to delete personal information collected from you; the right to opt-out of t...

TransUnion Medium

Depending on where you live, you may have certain rights with respect to your personal information. These rights may include: The right to know what personal information we have collected about you, including the categories of personal information, the categories of sources from which we collected i...

See all platforms with this clause type →

Monitoring

Chime has changed this document before.

Receive same-day alerts, structured change summaries, and monitoring for up to 10 platforms.

Start Watcher free trial Or create a free account →

▸ View Original Clause Language DOCUMENT RECORD

"
Federal law gives you the right to limit only: sharing for affiliates' everyday business purposes — information about your creditworthiness; affiliates from using your information to market to you; sharing for nonaffiliates to market to you. State laws and individual companies may give you additional rights to limit sharing.

— Excerpt from Chime's Chime Privacy Policy

ConductAtlas Analysis

Institutional analysis (Compliance & governance intelligence)

1) REGULATORY FRAMEWORK: This provision references the GLBA limitation on federal preemption, acknowledging that state laws may provide additional consumer rights (15 U.S.C. §6807). California FIPA (Cal. Fin. Code §4050 et seq.) provides stronger protections than GLBA for California residents. Vermont, North Dakota, and other states have enacted additional financial privacy protections. The CFPB, OCC, and state banking regulators all have potential enforcement authority depending on jurisdiction. 2)

Full compliance analysis

Regulatory citations, enforcement risk, and due diligence action items.

Track 1 platform — free Try Watcher free for 14 days

Free: track 1 platform + weekly digest. Watcher: 10 platforms + same-day alerts. No credit card required.

Applicable agencies

CFPB

The CFPB enforces GLBA Regulation P annual notice requirements and UDAAP standards applicable to misleading or incomplete privacy disclosures.
File a complaint →
State AG

State Attorneys General enforce state financial privacy laws including California FIPA, which provides opt-in rights stronger than the federal GLBA baseline disclosed in this notice.
File a complaint →

Applicable regulations

CCPA/CPRA

California, USA

Connecticut Data Privacy Act Amendments

US-CT

CAN-SPAM

United States Federal

FCRA

United States Federal

FTC Act Section 5

United States Federal

GLBA

United States Federal

Indiana Consumer Data Protection Act

US-IN

Kentucky Consumer Data Protection Act

US-KY

TCPA

United States Federal

Universal Opt-Out Mechanism Expansion 2026

Provision details

Document information

Document

Chime Privacy Policy

Entity

Chime

Document last updated

May 5, 2026

Tracking information

First tracked

May 8, 2026

Last verified

May 8, 2026

Record ID

CA-P-006625

Document ID

CA-D-00078

Evidence Provenance

Source URL

https://www.chime.com/privacy-policy/

Wayback Machine

View archived versions →

Content hash (SHA-256)

2abe49718004a1f397ca825b6b38f54ec9b89102654fa3ae82ef2e8ffea944af

Analysis generated

May 8, 2026 12:08 UTC

Methodology

summarize_document-v7

Evidence

✓ Snapshot stored ✓ Hash verified

Citation Record

Entity: Chime
Document: Chime Privacy Policy
Record ID: CA-P-006625
Captured: 2026-05-08 12:08:44 UTC
SHA-256: 2abe49718004a1f3…
URL: https://conductatlas.com/platform/chime/chime-privacy-policy/annual-privacy-notice-delivery/
Accessed: May 13, 2026

Permanent archival reference. Stable identifier suitable for legal filings, compliance documentation, and research citation.

Classification

Severity

Medium

Other risks in this policy

Sharing for Everyday Business Purposes — No Opt-Out medium
Joint Marketing Partner Data Sharing medium
Limited Opt-Out for Non-Affiliated Third Party Sharing medium
Types of Personal Information Collected high
Sharing with Affiliates medium
Data Security and Protection Obligations medium

Professional Governance Intelligence

Need to monitor specific governance provisions?

Professional includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.

Arbitration clauses AI governance Data rights Indemnification Retention policies

Start Professional free trial

Or start with Watcher →

Built from archived source documents, structured governance mappings, and historical version tracking.

Frequently Asked Questions

What does Chime's Annual Privacy Notice Delivery clause do?

How does this clause affect you?

Is ConductAtlas affiliated with Chime?

No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Chime.