Coinbase · Coinbase User Agreement · View original document ↗

Identity Verification and AML Data Collection

Medium severity High confidence Explicitdocumentlanguage Unique · 0 of 343 platforms
Share 𝕏 Share in Share 🔒 PDF
Recent governance activity Coinbase recorded 4 documented changes in the last 30 days.
Start monitoring updates
Monitor governance changes for Coinbase Create a free account to receive the weekly governance digest and monitor one platform for governance changes.
Create free account No credit card required.

This analysis describes what Coinbase's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology

ConductAtlas Analysis

Why it matters (compliance & governance perspective)

The clause operationalizes Coinbase's compliance obligations under financial regulations by specifying that identity and AML documentation collection is a condition of account access and by establishing a mechanism for regulatory information requests. This directly ties account eligibility to completion of identity verification workflows.

Recent Activity

This document changed recently

High May 15, 2026

The updated terms establish a new arrangement for USDC designated as 'Secured USDC' in connection with the Coinbase One Card. Under the revised language, if you designate USDC in your wallet as Secured USDC, you agree that Coinbase may transfer that amount to a third party designated as the secured party, and you will be restricted from withdrawing or transferring those funds. Additionally, the secured party's instructions to Coinbase regarding those assets take priority over any conflicting instructions you provide. The agreement states that you consent to all such permitted transfers. This arrangement operates independently of amounts owed to Coinbase, meaning Secured USDC will not be debited to satisfy debts you owe to Coinbase.

View change record →
Medium May 2, 2026

The updated terms eliminate language that previously allowed Coinbase to restrict your withdrawals if you designated USDC as Secured USDC and to comply with third-party secured party instructions without your consent. Under the revised agreement, Coinbase will not transfer, loan, or otherwise handle your Supported Digital Assets except as required by law or as you instruct. This means the One Card Secured USDC mechanism is no longer integrated into the core asset protection clause, and users no longer face withdrawal restrictions or loss of instruction authority tied to that designation. If you currently hold Secured USDC under a separate One Card cardholder agreement, that agreement remains in effect but is no longer cross-referenced in the main User Agreement's asset protection section.

View change record →
Medium May 1, 2026

The updated terms establish a new exception to the prior prohibition on transferring user digital assets. Previously, Coinbase stated it would not transfer assets except as required by law or per user instruction. The revised language now permits Coinbase to transfer USDC designated as 'Secured USDC' to third parties pursuant to a Coinbase One Card cardholder agreement. Users who elect to use this feature agree they will be restricted from withdrawing or transferring the secured portion, and they consent to Coinbase following instructions from a designated secured party without further user approval, even if those instructions conflict with the user's own orders to Coinbase. The full terms of this arrangement are stated to be in Appendix 4, which is not included in this summary.

View change record →

Clause Stability Stable

0
Changes
3
Months Monitored
May 9, 2026
First Seen
May 11, 2026
Last Seen
This clause type exists across 967 other provisions on other platforms.

Consumer impact (what this means for users)

Users must provide accurate identifying information during account registration and agree to submit additional documentation or information upon Coinbase's request if required by applicable law or regulatory authorities. The provision places the obligation on users to maintain current registration data and accept risks associated with their own information security practices.

How other platforms handle this

Paramount+ Medium

"By clicking 'Next', you are indicating that you have read and agree to the TERMS OF USE AND PRIVACY POLICY"

OpenAI Medium

We automatically collect certain information from your device, including information about your web browser, IP address, time zone, and some of the cookies that are installed on your device. Additionally, as you browse the Service, we collect information about the individual web pages or products th...

Microsoft Azure Medium

Location data. Data about your device's location, which can be either precise or imprecise. For example, we collect location data using Global Navigation Satellite System (GNSS) (e.g., GPS) and data about nearby cell towers and Wi-Fi hotspots. Location can also be inferred from a device's IP address...

See all platforms with this clause type →

Monitoring

Coinbase has changed this document before.

Receive same-day alerts, structured change summaries, and monitoring for up to 25 platforms.

Start Monitor free trial Or create a free account →
▸ View Original Clause Language DOCUMENT RECORD
"
To use the Services, you must register for a Coinbase Account. By creating an Account, you agree to: (a) provide accurate, current and complete information as may be prompted by any registration forms on the Site; (b) maintain the security of your password and identification; (c) maintain and promptly update the registration information and any other information you provide to Coinbase, to keep it accurate, current and complete; and (d) accept all risks of unauthorized access to information and registration information you provide to Coinbase. Coinbase may require you to provide additional information and documents at the request of any competent authority or in case of application of any applicable law or regulation, including laws related to anti-money laundering or for counteracting financing of terrorism.

— Excerpt from Coinbase's Coinbase User Agreement

Applicable regulations

CCPA/CPRA
California, USA
Connecticut Data Privacy Act Amendments
US-CT
CAN-SPAM
United States Federal
ePrivacy Directive
European Union
FCRA
United States Federal
FTC Act Section 5
United States Federal
GDPR
European Union
GLBA
United States Federal
Indiana Consumer Data Protection Act
US-IN
Kentucky Consumer Data Protection Act
US-KY
TCPA
United States Federal
UK GDPR
United Kingdom
Universal Opt-Out Mechanism Expansion 2026
US

Provision details

Document information
Document
Coinbase User Agreement
Entity
Coinbase
Document last updated
May 5, 2026
Tracking information
First tracked
May 9, 2026
Last verified
May 12, 2026
Record ID
CA-P-007545
Document ID
CA-D-00047
Evidence Provenance
Source URL
Wayback Machine
Content hash (SHA-256)
3dc307b902ef1098b4f25d2d193ebebf46ef33ac6e1077fba19c28563a37eb5d
Analysis generated
May 9, 2026 19:59 UTC
Methodology
Evidence
✓ Snapshot stored   ✓ Hash verified
Citation Record
Entity: Coinbase
Document: Coinbase User Agreement
Record ID: CA-P-007545
Captured: 2026-05-09 19:59:08 UTC
SHA-256: 3dc307b902ef1098…
URL: https://conductatlas.com/platform/coinbase/coinbase-user-agreement/identity-verification-and-aml-data-collection/
Accessed: July 4, 2026
Permanent archival reference. Stable identifier suitable for legal filings, compliance documentation, and research citation.
Classification
Severity
Medium
Categories

Other risks in this policy

Related Analysis

Compliance Governance Intelligence

Need to monitor specific governance provisions?

Compliance includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.

Arbitration clauses AI governance Data rights Indemnification Retention policies
Start Compliance free trial

Or start with Monitor →

Built from archived source documents, structured governance mappings, and historical version tracking.

Frequently Asked Questions

What does Coinbase's Identity Verification and AML Data Collection clause do?

The clause operationalizes Coinbase's compliance obligations under financial regulations by specifying that identity and AML documentation collection is a condition of account access and by establishing a mechanism for regulatory information requests. This directly ties account eligibility to completion of identity verification workflows.

How does this clause affect you?

Users must provide accurate identifying information during account registration and agree to submit additional documentation or information upon Coinbase's request if required by applicable law or regulatory authorities. The provision places the obligation on users to maintain current registration data and accept risks associated with their own information security practices.

Is ConductAtlas affiliated with Coinbase?

No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Coinbase.