Chime and its advertising partners use tracking tools like cookies and pixels to collect your browsing and app behavior, which may be used to show you targeted ads.
This analysis describes what Chime's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
Chime's website actively loads tracking pixels from Facebook, TikTok, Google, Reddit, Taboola, Bing, and LiveRamp, meaning your visit to Chime's site or use of its app may contribute to advertising profiles across multiple third-party platforms.
Interpretive note: The precise scope of data shared with each advertising technology vendor is not fully enumerated in the policy text; the extent of sharing is inferred from the third-party integrations visible in the page source rather than from explicit policy language.
The updated privacy notice now explicitly discloses that Chime shares customer information with other financial companies for joint marketing purposes, whereas the prior 2017 version stated Chime did not engage in this sharing. This represents a material change in the stated data handling practice. Under the updated terms, customers can limit this sharing by logging into their Chime account at chime.com or through the Chime Mobile application and updating their Privacy Settings.
View change record →The updated policy no longer explicitly discloses whether Chime or its banking partner The Bancorp shares personal information for specific purposes such as marketing, joint marketing, or affiliate use. Previously, each sharing scenario included a 'Yes' or 'No' answer and stated whether customers could limit sharing. The revised policy directs users to login to chime.com or the Chime Mobile application and update their Privacy Settings to control sharing. You can adjust sharing preferences through your account settings, but the policy no longer itemizes which sharing practices are subject to customer limits.
View change record →The updated notice states Chime no longer shares your personal information (such as transaction history and creditworthiness) with other financial companies for joint marketing purposes. This is a narrowing of third-party data sharing compared to the prior language. The notice also clarifies that Chime does not share certain affiliate information, which may further limit how your data is used by related companies. These changes reduce the scope of data sharing disclosed in the privacy notice.
View change record →Your behavioral data collected while using Chime's website or app, including page visits and interaction patterns, may be shared with a wide network of advertising platforms and identity resolution services, potentially linking your financial app activity to your broader online advertising profile.
How other platforms handle this
We may display advertisements on our Services and those advertisements may be targeted to your interests based on your personal information. We may share your personal information with advertising partners for interest-based advertising purposes. You may opt out of interest-based advertising by visi...
src="https://trc.taboola.com/1142432/trc/3/json" ... src="https://www.googletagmanager.com/gtag/js?id=DC-15299257" ... src="https://tr.snapchat.com/config/com/af90c7f8-bd28-4988-b1ce-1711aad792f4.js" ... src="https://tr.snapchat.com/config/com/8fbe1595-8c5a-46b1-bbb2-66f3d57debde.js" ... src="https:...
At Ledger, earning and maintaining our users' trust is a top priority. That's why we are deeply committed not only to protecting your privacy and securing your personal data, but also to being fully transparent about how we handle it.
Monitoring
Chime has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 25 platforms.
"We use cookies, web beacons, pixel tags, and similar technologies to collect information about your use of our website and app. We and our advertising partners may use this information to deliver targeted advertisements, measure the effectiveness of our advertising campaigns, and for other marketing purposes.— Excerpt from Chime's Chime Privacy Policy
REGULATORY LANDSCAPE: This provision engages the GLBA's restrictions on sharing nonpublic personal information with nonaffiliated third parties for marketing purposes, requiring adequate notice and opt-out mechanisms. The FTC Act's unfair or deceptive practices standards apply to whether the scope of third-party data sharing is accurately and fully disclosed. The CCPA and CPRA impose requirements on disclosure of selling or sharing personal information with advertising partners and mandate operational opt-out mechanisms. The use of identity resolution services such as LiveRamp may also engage FTC guidance on data broker practices. GOVERNANCE EXPOSURE: High. The volume and variety of advertising technology integrations visible in the page source, spanning Facebook Pixel, TikTok Pixel, Google Tag Manager, Taboola, Reddit Ads, Bing Ads, and LiveRamp, creates significant compliance surface area. For a financial services provider subject to GLBA, the question of whether behavioral and device-level data collected through these integrations constitutes nonpublic personal information subject to GLBA opt-out requirements is a material unresolved question that warrants legal evaluation. JURISDICTION FLAGS: California residents face heightened exposure under CCPA and CPRA, which define the sharing of personal information with advertising partners for cross-context behavioral advertising as a regulated activity requiring opt-out. The FTC has signaled increased scrutiny of financial services companies using advertising technology that may conflict with GLBA obligations. Illinois and other states with emerging privacy frameworks may impose additional requirements. CONTRACT AND VENDOR IMPLICATIONS: Procurement and legal teams should audit data processing agreements with each named advertising technology vendor to confirm that contractual terms align with GLBA and CCPA requirements, including restrictions on onward use of shared data. Standard advertising platform data processing terms may not satisfy GLBA's requirements for sharing with service providers versus marketing partners. COMPLIANCE CONSIDERATIONS: Compliance teams should conduct a data flow mapping exercise to document all third-party recipients of data collected through advertising pixels and confirm that the GLBA privacy notice adequately discloses each category of sharing. The opt-out mechanism for CCPA's sale or sharing right should be tested to confirm it suppresses data transmission to all relevant advertising technology integrations, including server-side and pixel-based transmissions.
Full compliance analysis
Regulatory citations, enforcement risk, and due diligence action items.
Free: track 1 platform + weekly digest. Monitor: 25 platforms + same-day alerts. No credit card required.
Ad personalization controls removed. Contact scanning added. Advertiser data partnerships quietly dropped. A timeline of every change.
Compliance Governance Intelligence
Need to monitor specific governance provisions?
Compliance includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
Chime's website actively loads tracking pixels from Facebook, TikTok, Google, Reddit, Taboola, Bing, and LiveRamp, meaning your visit to Chime's site or use of its app may contribute to advertising profiles across multiple third-party platforms.
Your behavioral data collected while using Chime's website or app, including page visits and interaction patterns, may be shared with a wide network of advertising platforms and identity resolution services, potentially linking your financial app activity to your broader online advertising profile.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Chime.