What is the severity of this clause?

ConductAtlas classifies this Identity Verification and AML Data Collection clause as medium severity. Severity reflects the magnitude of rights affected, the breadth of users impacted, and the degree of discretion the platform retains.

Identity Verification and AML Data Collection — Coinbase

Share 𝕏 Share in Share 🔒 PDF

Recent governance activity Coinbase recorded 9 documented changes in the last 30 days.

Start monitoring updates

Monitor governance changes for Coinbase Create a free account to receive the weekly governance digest and monitor one platform for governance changes.

Create free account No credit card required.

ⓘ

This analysis describes what Coinbase's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology

ConductAtlas Analysis

Why it matters (compliance & governance perspective)

Coinbase collects and retains substantial personal and financial identity information that is shared with regulators on request, and you can be required to provide more documentation at any time or risk account restrictions.

Recent Activity

This document changed recently

Medium May 2, 2026

The updated terms eliminate language that previously allowed Coinbase to restrict your withdrawals if you designated USDC as Secured USDC and to comply with third-party secured party instructions wit…

Medium May 1, 2026

The updated terms establish a new exception to the prior prohibition on transferring user digital assets. Previously, Coinbase stated it would not transfer assets except as required by law or per use…

Medium Apr 19, 2026

The updated User Agreement now includes explicit disclosures about virtual currency risks that apply to Connecticut residents and other jurisdictions. These disclosures state that virtual currency is…

Consumer impact (what this means for users)

The agreement states that Coinbase may suspend, restrict, or terminate accounts and limit access to funds at its discretion, which could affect a user's ability to access their cryptocurrency holdings during volatile market conditions. The terms authorize a mandatory individual arbitration process and prohibit class action lawsuits, meaning users who have disputes with Coinbase must resolve them individually through arbitration rather than through court proceedings. You can opt out of the mandatory arbitration clause by sending written notice to Coinbase's legal department within 30 days of first accepting the agreement or within 30 days of receiving notice of a material change to the arbitration terms.

How other platforms handle this

PlanetScale Medium

When you visit the Careers portion of our websites, we collect the information that you provide to us in connection with your job application. This includes but is not limited to business and personal contact information, professional credentials and skills, educational and work history and other in...

American Airlines Medium

American does not knowingly collect personal information directly from children – persons under the age of 13, or another age if required by applicable law – other than when required to comply with the law or for safety and security reasons. Due to the nature of our Services, we may collect travel i...

GOAT Medium

We may collect information about your location, including precise geolocation information, when you use our Services. We use this information to provide location-based services, such as showing you products available in your area, and for other purposes described in this Privacy Policy.

See all platforms with this clause type →

Monitoring

Coinbase has changed this document before.

Receive same-day alerts, structured change summaries, and monitoring for up to 10 platforms.

Start Watcher free trial Or create a free account →

▸ View Original Clause Language DOCUMENT RECORD

"
To use the Services, you must register for a Coinbase Account. By creating an Account, you agree to: (a) provide accurate, current and complete information as may be prompted by any registration forms on the Site; (b) maintain the security of your password and identification; (c) maintain and promptly update the registration information and any other information you provide to Coinbase, to keep it accurate, current and complete; and (d) accept all risks of unauthorized access to information and registration information you provide to Coinbase. Coinbase may require you to provide additional information and documents at the request of any competent authority or in case of application of any applicable law or regulation, including laws related to anti-money laundering or for counteracting financing of terrorism.

— Excerpt from Coinbase's Coinbase User Agreement

Applicable regulations

CCPA/CPRA

California, USA

Connecticut Data Privacy Act Amendments

US-CT

CAN-SPAM

United States Federal

ePrivacy Directive

European Union

FCRA

United States Federal

FTC Act Section 5

United States Federal

GDPR

European Union

GLBA

United States Federal

Indiana Consumer Data Protection Act

US-IN

Kentucky Consumer Data Protection Act

US-KY

TCPA

United States Federal

UK GDPR

United Kingdom

Universal Opt-Out Mechanism Expansion 2026

Provision details

Document information

Document

Coinbase User Agreement

Entity

Coinbase

Document last updated

May 5, 2026

Tracking information

First tracked

May 9, 2026

Last verified

May 12, 2026

Record ID

CA-P-007545

Document ID

CA-D-00047

Evidence Provenance

Source URL

https://www.coinbase.com/legal/user_agreement/united_states

Wayback Machine

View archived versions →

Content hash (SHA-256)

3dc307b902ef1098b4f25d2d193ebebf46ef33ac6e1077fba19c28563a37eb5d

Analysis generated

May 9, 2026 19:59 UTC

Methodology

summarize_document-v8

Evidence

✓ Snapshot stored ✓ Hash verified

Citation Record

Entity: Coinbase
Document: Coinbase User Agreement
Record ID: CA-P-007545
Captured: 2026-05-09 19:59:08 UTC
SHA-256: 3dc307b902ef1098…
URL: https://conductatlas.com/platform/coinbase/coinbase-user-agreement/identity-verification-and-aml-data-collection/
Accessed: May 13, 2026

Permanent archival reference. Stable identifier suitable for legal filings, compliance documentation, and research citation.

Classification

Severity

Medium

Other risks in this policy

Mandatory Individual Arbitration and Class Action Waiver high
Limitation of Liability high
Account Suspension and Fund Access Restrictions high
Unilateral Amendment Clause medium
User Indemnification Obligation medium
Digital Asset Custody and Title medium

Related Analysis

Netflix Updated Terms Authorize Voice Data Collection: April 2026
Netflix updated its Privacy Statement on April 18, 2026, disclosing voice recording collection and expanded household ad profiling for the first time.
What Google Actually Knows About You
Google's Privacy Policy covers Search, Gmail, YouTube, Maps, and every site running Google Analytics. Here is what it actually authorizes.

Professional Governance Intelligence

Need to monitor specific governance provisions?

Professional includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.

Arbitration clauses AI governance Data rights Indemnification Retention policies

Start Professional free trial

Or start with Watcher →

Built from archived source documents, structured governance mappings, and historical version tracking.

Frequently Asked Questions

What does Coinbase's Identity Verification and AML Data Collection clause do?

Is ConductAtlas affiliated with Coinbase?

No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Coinbase.