When you become an active Redfin client buying or selling a home, Redfin collects highly sensitive financial documents including loan pre-approval paperwork and detailed property information.
This analysis describes what Redfin's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
The clause defines the scope of personal and financial data collection as a procedural requirement of the client relationship, establishing that such information gathering is a standard operational component of real estate transaction facilitation through Redfin's platform.
This provision means that when you work with a Redfin agent, the platform collects detailed financial documents containing sensitive personal and financial information, which is subject to the broader sharing and retention provisions described elsewhere in this policy.
Cross-platform context
See how other platforms handle Collection of Financial Data from Home Buyers and Sellers and similar clauses.
Compare across platforms →Monitoring
Redfin has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 10 platforms.
"When you are getting ready to buy or sell a home and you start working with our coordinators and agents, you become a Redfin client. As part of the home purchase or sale process, you will need to provide a lot of information as is customary for a home purchase or sale transaction. This information can include, without limitation, your name, address, phone number, email address, financial or payment information, including without limitation, buyer loan pre-approval documentation and seller property information.— Excerpt from Redfin's Redfin Privacy Policy
REGULATORY LANDSCAPE: Collection and handling of financial information including loan pre-approval documentation may engage the Gramm-Leach-Bliley Act (GLBA) if Redfin or affiliated entities qualify as financial institutions under that statute; applicability depends on the nature of financial services offered and is not explicitly addressed in the policy. The FTC's Safeguards Rule (updated 2023) applies to non-bank financial institutions handling consumer financial data. State data breach notification laws impose obligations when financial data is compromised. The CFPB has authority over entities involved in mortgage-related activities. GOVERNANCE EXPOSURE: High. Loan pre-approval documentation is among the most sensitive categories of consumer financial data, containing income, employment, asset, and credit information. The policy does not specify distinct retention periods or access controls for this category of data, instead applying the general retention framework, which may not reflect the heightened care appropriate for financial documents under applicable regulatory standards. JURISDICTION FLAGS: All U.S. jurisdictions with data breach notification laws create exposure if financial data is compromised. California's CPRA classifies financial information as sensitive personal information. New York's SHIELD Act and Illinois's PIPA impose specific safeguards for financial data. GLBA applicability may vary based on whether Redfin's mortgage referral or related services constitute financial institution activity. CONTRACT AND VENDOR IMPLICATIONS: Vendor agreements with coordinators, agents, and any technology platforms handling client financial data should include contractual safeguards consistent with applicable financial data protection standards. If this data is accessible to third-party service providers, those providers must be assessed under both CPRA's contractor framework and any applicable GLBA or FTC Safeguards Rule requirements. COMPLIANCE CONSIDERATIONS: Compliance teams should conduct a data mapping exercise specific to loan pre-approval and financial document data flows, including storage location, access controls, retention schedules, and deletion procedures. The policy's general retention language should be assessed for adequacy against GLBA and FTC Safeguards Rule standards. A separate privacy impact assessment for this data category may be warranted.
Full compliance analysis
Regulatory citations, enforcement risk, and due diligence action items.
Free: track 1 platform + weekly digest. Watcher: 10 platforms + same-day alerts. No credit card required.
Professional Governance Intelligence
Need to monitor specific governance provisions?
Professional includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
The clause defines the scope of personal and financial data collection as a procedural requirement of the client relationship, establishing that such information gathering is a standard operational component of real estate transaction facilitation through Redfin's platform.
This provision means that when you work with a Redfin agent, the platform collects detailed financial documents containing sensitive personal and financial information, which is subject to the broader sharing and retention provisions described elsewhere in this policy.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Redfin.