This Policy applies to BAM’s processing of any information or data that could potentially identify a specific individual (“Personal Information”) when using our Sites or Services.

We may collect the following information or data, which may be considered Personal Information, from you when:

Data you provide

Data we collect

You create an account with us You make a purchase or otherwise use our Sites or Services You contact us for customer service or other purposes, including via live chat You submit an entry in a contest or sweepstakes sponsored by us, respond to one of our surveys, or participate in another feature of our Sites You provide us with user content, ideas, information, user reviews, comments, feedback, or other submissions

You visit and interact with our app or website You create an account with us You view our newsletters or other email communications You interact with BAM social media You click through a marketing promotion

We collect the following categories of personal information:

Data you provide

Data we collect

Contact and Demographic Information: such as your full name, date of birth, gender, nationality, residential address, email address, and phone number. Identification Information: such as your driver’s license, federal/state ID card, Social Security Number, Tax ID number, photograph(s), or other government-issued ID information. Enhanced Due Diligence Information: including proof of address documents (e.g., bank, brokerage, and/or credit card statements, utility bills, mortgage statements, and/or property tax statements); employment or professional information (e.g., employer, job title/position, office location); and source of wealth (e.g., W2s, pay stubs). Institutional Information: such as Employer Identification Number (EIN), proof of legal formation (e.g., articles of incorporation/by-laws), and/or identification information for beneficial owners. Financial Information: such as your bank account number, payment card information, transaction history, trading data, tax identification number (TIN), and/or source of wealth. Correspondence: such as your feedback, quiz, questionnaire, and other survey responses, and information you provide to our support teams, including via our live or any AI-supported chatbot(s). Stored Content: such as photos from your mobile phone gallery or contacts stored in your mobile device or email accounts. We only collect this information when you grant us permission in your device settings. You may withdraw this permission at any time. Audio, Electronic, or Visual information: such as photographs and video recordings. Biometric Data: such as facial recognition and facial geometry data derived from photographs or videos you submit to us during the onboarding process. We only use biometric data to verify your identity for security and compliance purposes. You can learn more about our biometric data practices in our Biometric Data Privacy Policy.

Transaction Information: including information about the transactions you make using our Services, such as the names of the recipient, transaction amount, and timestamp. Website Metadata and Analytics: including Internet Protocol (IP) addresses and location data, device information, date/time of visits, new or returning visits, products viewed, page response times, URL clickstreams, how long you stay on our pages, what you do on those pages. Cookies and Other Tracking Technologies: We, and third parties we authorize, may use cookies, web beacons, and similar technologies (collectively, “cookies”) to record your preferences, track the use of our Sites, and collect information about the use of the Sites or Services, as well as about our interactions with you. This information may include IP addresses, browser type, Internet Service Provider (ISP), referring/exit pages and operating system, date/time stamp, and clickstream data, and information about your interactions with the communications we send to you. We may combine this automatically collected log information with other information we collect about you. Learn more about our cookie use below, or see BAM’s Cookie Policy for additional details on how we handle cookies. Blockchain Data: We may analyze public blockchain data, including wallet addresses, transaction IDs, timestamps of transactions or events, transaction amounts, and digital signatures. Additional Information from Third-Party Sources: such as information about you from other sources as required or permitted by applicable law, including third parties such as credit bureaus, identity verification services, and public databases. We may combine the information collected from these sources with the information we get from our Sites or Services in order to verify your identity, comply with our legal obligations, and ensure our Sites and Services are not used fraudulently or for other illicit activities.

We use your information, including your Personal Information, in accordance with your instructions, including any applicable terms you agree to in our Terms of Use, and as required or restricted by applicable law. We may also use the information we collect for:

• Providing Our Sites, Services and Features.We may use the information we collect to provide, personalize, maintain, and improve our products, Sites and Services, including as described in the Terms of Use. This includes using information to:
  1. operate, maintain, customize, measure, and improve our Sites and Services, and manage our business;
  2. create and update users’ accounts;
  3. process transactions;
  4. send information including confirmations, notices, invoices, technical notices, updates, security alerts, and support and administrative messages; and
  5. to create de-identified or aggregated data.
• Safety and Security. We may use your information to help maintain the safety, security, and integrity of our Sites and Services, including to:
  1. protect, investigate, respond to, and deter against fraudulent, unauthorized, or illegal activity;
  2. monitor and verify identity or service access;
  3. protect against spam, malware, or security risks;
  4. perform internal operations necessary to provide our Services, including to troubleshoot software bugs and operational issues;
  5. enforce our agreements with third parties, and address violations of our Terms of Use or agreements for other services; and
  6. comply with applicable laws and regulations.
• Customer Support. We may use information we collect to provide customer support, including to:
  1. direct questions to the appropriate customer support person;
  2. communicate with you, including via social media channels;
  3. investigate and address user concerns; and
  4. monitor and improve our customer support responses and processes.
• Research and Development. We may use the information we collect for testing, research, analysis, and product development to improve your experience, enhance the safety and security of our Sites and Services, improve our ability to prevent the use of our Sites or Services for illegal or improper purposes, develop new features and products, and facilitate payment solutions in connection with our Sites and Services.
• Legal and Regulatory Compliance. Many of our Sites and Services are subject to laws and regulations requiring us to collect, use, and store your personal information in certain ways. For example, we must identify and verify customers using our Sites or Services in order to comply with anti-money laundering and anti-terrorism laws. This may include collection and storage of your photo identification. We also use third parties to verify your identity by comparing the personal information you provide against third party, authoritative sources and databases, including public records. When you attempt to link a bank account to your account, we may require you to provide additional information which we may use in collaboration with service providers acting on our behalf to verify your identity or address, and/or to manage risk as required under applicable law. If you do not provide information required by law, we will have to close your account. We may also use the information we collect to investigate or address claims or disputes relating to use of our Sites and Services, or as otherwise allowed by applicable law, or as requested by regulators, government entities, and official inquiries.
• Direct Marketing. We may use the information we collect to market our Sites and Services to you. This may include sending you communications via emails or mobile app notifications about our Sites, Services, features, promotions, surveys, news, updates, and events; managing your participation in these promotions and events; and to deliver targeted marketing. Our marketing will be conducted according to your advertising and marketing preferences and as permitted by applicable law.

We may disclose your information, including your Personal Information, in the following circumstances:

• With Your Consent. You may permit us to disclose your personal information with others for any other purposes disclosed to you with your consent.
• With Our Affiliates. Where appropriate, we may disclose your information with BAM Management US Holdings Inc, and its wholly-owned subsidiaries and/or affiliates in the course of conducting business and offering our Services to you. Please be advised that BAM Trading and its affiliated companies are separate and distinct legal entities from Binance Holdings Limited (“BHL”). BAM Trading does not have any records for, and cannot respond to record requests, addressed to BHL. For more information, please refer to our Law Enforcement Guide.
• To Comply With Our Legal Obligations. We may disclose your information with courts, law enforcement authorities, regulators, attorneys or other parties: (A) to comply with laws and legal obligations; (B) for the establishment, exercise, or defense of a legal or equitable claim; (C) to respond to law enforcement and regulatory requests, including (1) when we are compelled to do so by a subpoena, court order, search or seizure warrant, or similar legal procedure, or (2) for international law enforcement requests, pursuant to a mutual legal assistance treaty or letter rogatory; (D) to comply with one or more forms of “travel rules” that require our transmitting of your information to another financial institution; (E) when we believe in good faith that the disclosure of personal information is necessary to protect the rights, property or safety of our customers, us, or others, including to prevent imminent physical harm or material financial loss; (F) to investigate violations of our Terms of Use or other applicable policies; or (G) to report suspected illegal activity or to assist law enforcement in the investigation of suspected illegal or wrongful activity.
• With Third-Party Identity Verification Services. We may disclose your information with third party identity verification service providers for the purposes of identity verification, fraud prevention, and denial of service to persons presenting an unacceptable level of money-laundering or terrorism-financing risks. These service providers confirm your identity by comparing the information you provide us to public records and other authoritative third-party databases (e.g., credit bureaus). These providers may create derivative data based on your personal information that they can use in connection with provision of identity verification and fraud prevention services. We do not control these providers’ privacy policies and we contractually require these service providers to only use your information in accordance with our legal agreements.
  1. For example, we use Plaid, Inc. (“Plaid”) for identity verification services to identify and authenticate you when you create or reactivate an account with us. Specifically, Plaid will verify that the selfie you provide matches the photo on your government-issued ID. The information collected during this process may constitute biometric data (to learn more about our Biometric Data Practices, please review our Biometric Data Privacy Policy). To learn more about Plaid’s privacy practices, please visit the Plaid End User Privacy Policy. By submitting your information, you agree to Plaid’s Privacy Policy.
• For Regulatory Compliance Purposes. Binance.US is subject to Anti-Money Laundering (‘AML’) and Know Your Customer (‘KYC’) laws in order to prevent fraud, money laundering, and other potential illegal activities. We may disclose your information to comply with these obligations, including with service providers who use your personal information to determine whether or not to provide their services, and to provide their services. Specifically, if you are a customer who is onboarding United States Dollars (a.k.a. fiat currency), your information may be shared with third-party service providers for compliance purposes.
• With Service Providers. We may disclose your information on a confidential basis with service providers who help facilitate business operations such as payment processing, marketing, security, or information technology services. Our legal agreements require these service providers to only use your information according to our instructions.
  1. For example, we may disclose your information with our support platform provider, Intercom, Inc. Intercom may receive information about you, your account and the contents of your communication as well as metadata including cookie data uniquely associated with you. Such information will not be used for any purpose other than to support us, but are also subject to Intercom’s applicable terms of service, privacy policy, cookie policy, and other policies.
• For Advertising Purposes. Some U.S. state laws classify service providers engaged in select advertising services as ‘third party businesses’ or ‘independent controllers.’ As noted below in our ‘Online Tracking Opt-Out Guide’, you have the right to restrict these types of advertising services providers’ use of your personal information. For clarity, Binance.US does not ‘sell’ personal information with these advertising services for monetary consideration, but disclosure may be classified as a ‘sale’ under various state privacy laws.
• With Financial Institutions. We may disclose your information with financial institutions to process payments you have authorized.
  1. For example, we use Plaid to connect your Binance.US account with your bank account, verify your bank account, and confirm your bank account balance prior to approving a transaction. Information disclosed to Plaid is treated by Plaid in accordance with the Plaid End User Privacy Policy. By linking your bank account through Plaid, you consent to Plaid’s Privacy Policy.
• With Our Professional Advisors. We may disclose your information with our professional advisors such as accountants, auditors, lawyers, insurers, bankers, and blockchain forensic services in order to complete third party audits and/or to comply with our legal and regulatory obligations.
• With Other Binance.US Users (Pay and Crypto Box). We may disclose your information with other users when you redeem a Crypto Box or use our Pay feature to send, request, or receive cryptocurrency. For example, when you redeem a Crypto Box, your first name, last initial, and amount received will be visible to other recipients of that particular Crypto Box. If you do not wish your Binance.US account to be searchable by other users, you may go to Account Settings → Security and toggle off the “Discoverable” option.
• During A Change To Our Business. If we engage in a merger, acquisition, bankruptcy, dissolution, reorganization, sale of some or all of our assets or stock, financing, public offering of securities, acquisition of all or a portion of our business, a similar transaction or proceeding, or steps in contemplation of such activities, some or all of your information may be disclosed or transferred.
• Aggregated or De-identified Data. We may create de-identified or anonymous data from Personal Information by removing certain data components (such as your name or email address) that makes the data personally identifiable to you, or through obfuscation. We may disclose aggregated and/or anonymized data with third parties for their own uses.

Our retail Services are directed and offered only to individuals within supported regions in the United States. Our institutional Services are available to companies, or companies with beneficial owners, that may be located outside of the United States. All data is stored in the United States using Amazon Web Services (“AWS”). As such, if you are a resident of the European Economic Area (“EEA”) or the United Kingdom (“UK”), we may transfer to, and store the data we collect about you, to countries other than the country in which the data was originally collected, including the United States. Those countries may not have equivalent data protection laws as the country in which you provided the data. When we transfer your data to other countries, we will protect the data as described in this Privacy Policy and comply with applicable legal requirements providing adequate protection for the transfer of data to countries outside the EEA and UK. We rely on Standard Contractual Clauses (“SCCs”) for the transfer of personal data (as defined by the General Data Protection Regulation, or “GDPR”) to countries that have not received an applicable adequacy decision, as well as the UK’s International Data Transfer Addendum to the SCCs. By using the Site and Services you agree to the privacy practices laid out in this Policy.

For more information on cross-border transfers of your Personal Information, the appropriate safeguards in place, please refer to the Supplemental EEA/UK Privacy Policy.

We maintain administrative, technical, and physical safeguards (“Security Controls”) designed to protect the personal information we maintain against unauthorized access or disclosure. While no system is completely secure due to real-time and emerging cyber threats and bad actors, we take reasonable steps to secure your information. When registering for our Sites or Services, choose a complex password and turn on advanced security features, such as two-factor authentication. Never share your account credentials with third-parties and submit a Customer Support ticket here if you become aware of unauthorized access to or use of your account.

BAM retains your Personal Information for as long as is necessary for the purposes set out in this Privacy Policy and to the extent necessary to comply with our legal and regulatory obligations (i.e., if we are required to retain your data or the information you provided to us to comply with applicable laws, including anti-money-laundering, anti-terrorism, or other financial laws and regulations). In addition, we will retain and use your personal information to resolve disputes and enforce our legal agreements and policies.

To determine how long we will retain your personal information, we consider the amount, nature, and sensitivity of the personal information, the potential risk of harm from unauthorized use or disclosure of your Personal Information, the purposes for which we process your personal information, and whether we can achieve those purposes through other means, and applicable legal, regulatory, tax, accounting, or other requirements.

BAM will retain your Personal information for marketing purposes, where applicable, until you unsubscribe from our marketing communications. At that time, we may retain the Sites and Services’ usage data for internal analysis purposes. Usage data is generally retained for a shorter period of time, except when this data is used to strengthen the security or to improve the functionality of our Sites and Services, or we are legally obligated to retain this data for longer periods.

BAM will retain biometric data as part of customer identification information for the retention period required by financial laws and regulations. You can learn more about our biometric data practices in our Biometric Data Privacy Policy.

It is BAM’s policy to offer certain privacy rights to all individuals, regardless of whether a statutory right exists. The rights that BAM offers to all individuals include the following:

• Right to Know. You have the right to request what Personal Information we collect, use, disclose, or share about you, as applicable.
• Right to Access/Portability. You can request access to and/or a copy of the personal information that we maintain about you.
• Right to Delete. You can ask us to delete the Personal Information that we have collected or maintain about you, subject to exceptions. Please note that we are required to retain certain Personal Information and related data to comply with our legal obligations, including compliance with recordkeeping requirements contained in anti-money laundering, anti-terrorism, or other financial laws and regulations.
• Right to Correct. You can ask us to correct inaccurate personal information we maintain about you.
  1. To request updates or corrections to your personal information, please contact Customer Support at https://support.binance.us/hc/en-us/requests/new. You can also update certain account profile information by logging into your account.
• Right to Opt Out. You can opt out of certain uses of your personal information:
  1. Marketing and Promotional Communications. If you would like to stop receiving marketing or promotional messages, notifications, or updates, you may do so by following the unsubscribe instructions that appear in these email communications, or you may contact us at privacy@binance.us to opt out of direct marketing. Please be advised that you may not be able to opt out of receiving certain service or transactional messages from us, including legal notices.
  2. Targeted Advertising. You may opt out of targeted advertising (see Online Tracking Opt-Out Guide below).

Some U.S. states have enacted comprehensive privacy laws. For example, the California Consumer Privacy Act, as amended by the California Privacy Rights Act or “CPRA” (collectively, the “CCPA”), the Virginia Consumer Data Protection Act (“VCDPA”), Colorado Privacy Act (“CPA”), the Connecticut Data Privacy Act (“CTDPA”), Utah Consumer Privacy Act (“UCPA”), the Oregon Consumer Privacy Act (“OCPA”), the Texas Data Privacy and Security Act (“TXDPSA”), the Montana Consumer Data Privacy Act (“MTCDPA”), the Iowa Consumer Data Protection Act (“IACDPA”), the Delaware Personal Data Privacy Act (“DEPDPA”), the Nebraska Data Privacy Act (“NEDPA”), the New Hampshire Privacy Act (“NHPA”), the New Jersey Data Privacy Act (“NJDPA”), the Tennessee Information Protection Act (“TNIPA”), the Minnesota Consumer Data Privacy Act (“MNCDPA”), and the Maryland Online Data Privacy Act (“MDODPA”) create additional privacy obligations for businesses and provide their residents with additional privacy rights. In addition to the rights granted above (see “Your Privacy Rights”), if you are a resident of these states you may have the right to:

• Information. For details about the personal information we have collected over the last 12 months, including the categories of sources, please see the What We Collect section above. We collect this information for the business and commercial purposes described in the How We Use Information section above. We share this information with the categories of third parties described in the How and Why We Disclose Information section above.
• Opt out of the “sale” or “share” of your personal information for targeted advertising. BAM does not ‘sell’ your personal information for monetary benefit. However, some third-party cookies placed on our website may be considered a ‘sale’ or a ‘share’ for the purposes of targeted advertising as defined under these privacy laws. Note, advertising partners are contractually restricted from using personal information collected by Binance.US for their own independent marketing purposes. You may opt out of such advertising cookies that may be classified as a ‘sale’ or ‘share’ for targeted advertising as detailed in the Online Tracking Opt-Out Guide below.
• Limit the Use and Disclosure of Your Sensitive Personal Information. BAM only collects that sensitive personal information which is necessary for us to provide our Services. As such, limiting our use of your sensitive personal information would result in us not being able to provide our Services.

Like many companies, we use cookies, pixels, web beacons, SDKs, and other tracking technologies (“cookies”) to collect information about your browsing activities, your interactions with websites (including our Sites) and apps (including our mobile app), and to serve tailored ads. You can opt out of our use of cookies via our Cookie Preference Center.

To learn more about our use of cookies and similar tracking technologies, visit our Cookie Policy.

The Binance.US app uses software code provided by our business partners (software development kits or SDKs) that let our software interact with the services those partners provide. Sometimes these interactions will involve that business partner collecting some information from the device on which the software is run.

To learn more, visit our Cookie Policy or email us at privacy@binance.us.

The Gramm-Leach-Bliley Act (“GLBA”) requires financial institutions to explain their information-sharing practices to their customers and to provide the customer the ability to opt out of certain disclosures of their personal information. In addition, the GLBA prescribes certain safeguards for sensitive data held by financial institutions. You can review our GLBA Consumer Privacy Notice here.

We do not allow use of our Services and Sites by anyone younger than 18 years old. If you learn that anyone younger than 18 has unlawfully provided us with Personal Information, please contact us at privacy@binance.us and we will take steps to delete such information, close any such accounts, and prevent the user from continuing to use our Services.

Our Services or Sites may contain links to other websites or services. We do not exercise control over the information you provide or is collected by these third-party websites. We encourage you to read the privacy policies or statements of the other websites you visit.

We may update this Privacy Policy from time-to-time as we update or expand our Services or Sites and to comply with applicable laws. If we make any changes, we will change the Last Updated date above. We encourage you to review this Policy to stay informed. If we make material changes, we will provide additional notice, such as via the email specified in your account or through the Services or Sites.

Please contact us if you have any questions about this Policy or if you are seeking to exercise any of your privacy rights. You may contact us at privacy@binance.us or at phone number +1 (844) 900-1450 or at our mailing address below:

This Privacy Notice for Employees & Applicants (the “Notice”) sets out the basis on which BAM Management US Holdings Inc. and its affiliates (collectively “BAM”, “we”, “us” and “our”) will Process the Personal Information of employees and applicants or candidates for employment (the “Employees” or “you”). For the purpose of this Notice, “Personal Information” means any information relating to an identified or identifiable person, and “Processing” means any operation or set of operations which is performed on that Personal Information.

Please read this Notice carefully because it explains important information about the Processing of your Personal Information by BAM, including your rights with respect to your Personal Information. We may amend this Notice from time to time and advise you to consult this Notice on a regular basis to ensure you stay informed of any such amendments. If you are a California, Europe, or UK resident, please be sure to review the relevant jurisdiction-specific information below.