If you live in California, you have legal rights to see, delete, correct, and opt out of the sale or sharing of your personal information held by Chime.
This analysis describes what Chime's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
California residents have stronger privacy protections than most other US users, including the right to stop Chime from sharing your data with advertising partners, which is directly relevant given the breadth of advertising technology integrations the company uses.
The updated notice states Chime no longer shares your personal information (such as transaction history and creditworthiness) with other financial companies for joint marketing purposes. This is a na…
California residents can submit requests to access or delete their personal information, correct inaccurate data, and opt out of having their information sold or shared with advertising platforms, which may limit Chime's ability to use your data for targeted advertising purposes.
Cross-platform context
See how other platforms handle CCPA Rights for California Residents and similar clauses.
Compare across platforms →Monitoring
Chime has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 10 platforms.
"If you are a California resident, you have certain rights under the California Consumer Privacy Act (CCPA), as amended by the California Privacy Rights Act (CPRA), including the right to know what personal information we collect, use, disclose, and sell or share; the right to delete your personal information; the right to correct inaccurate personal information; the right to opt out of the sale or sharing of your personal information; and the right not to be discriminated against for exercising your privacy rights.— Excerpt from Chime's Chime Privacy Policy
REGULATORY LANDSCAPE: The CCPA as amended by the CPRA is enforced by the California Privacy Protection Agency (CPPA) and the California Attorney General. The CPRA expanded consumer rights beyond the original CCPA to include correction rights and broader restrictions on sharing for cross-context behavioral advertising. For financial institutions, the CCPA provides a partial carve-out for data subject to GLBA, but data held by Chime in its capacity as a technology company rather than a financial institution may not qualify for this exemption, creating dual compliance obligations. GOVERNANCE EXPOSURE: High for California users. The policy explicitly acknowledges CCPA and CPRA rights, which creates an affirmative obligation to operationalize each right including access, deletion, correction, and opt-out of sale or sharing. The extent of advertising technology integrations creates heightened exposure for the opt-out of sharing right, as each third-party pixel integration may constitute sharing under CCPA. JURISDICTION FLAGS: These rights apply specifically to California residents. Other state privacy laws in Virginia, Colorado, Texas, and Connecticut create similar but not identical rights and may require separate compliance analysis. The GLBA carve-out in CCPA must be carefully applied to distinguish which data Chime holds as a GLBA-covered entity versus which data it holds purely as a technology company. CONTRACT AND VENDOR IMPLICATIONS: Vendor agreements with advertising technology partners must include CCPA-required contractual terms, including restrictions on the selling or sharing of personal information received from Chime. Service provider agreements must distinguish service providers from third parties under CCPA to determine whether data transfers constitute selling or sharing. COMPLIANCE CONSIDERATIONS: Compliance teams should audit the opt-out of sale or sharing mechanism to confirm it is technically effective across all advertising technology integrations, including those using server-side data transmission. The data subject rights fulfillment process should be tested to confirm timely and complete responses within CCPA-mandated timeframes. The application of the GLBA exemption should be documented and reviewed with legal counsel.
Full compliance analysis
Regulatory citations, enforcement risk, and due diligence action items.
Free: track 1 platform + weekly digest. Watcher: 10 platforms + same-day alerts. No credit card required.
Professional Governance Intelligence
Need to monitor specific governance provisions?
Professional includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
California residents have stronger privacy protections than most other US users, including the right to stop Chime from sharing your data with advertising partners, which is directly relevant given the breadth of advertising technology integrations the company uses.
California residents can submit requests to access or delete their personal information, correct inaccurate data, and opt out of having their information sold or shared with advertising platforms, which may limit Chime's ability to use your data for targeted advertising purposes.
ConductAtlas has identified this type of provision across 8 platforms. See the full comparison.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Chime.