Your data processed under EU or UK privacy law may be transferred to the US, where it could be subject to broader government surveillance access under US law — a key concern highlighted in the Schrems II ruling.
Coinbase collects a wide range of sensitive personal data — including government-issued identity documents, Social Security numbers, financial account details, transaction history, biometric data, IP addresses, and device identifiers — as a condition of using its platform, and this data may be retained long after account closure due to regulatory obligations. Users' financial transaction data may be shared with blockchain analytics companies, advertising networks, and government agencies without individual notification in many circumstances, creating meaningful privacy and surveillance risks. You can review, download, or request deletion of your personal data by visiting the Coinbase Privacy Center at coinbase.com/settings/privacy.