Netspend Privacy Notice

 Updated: April 20, 2026, Effective: April 20, 2026 

Disclosure Links

Bank Privacy Notices
Netspend Privacy Request Form
California Notice at Collection
Financial Incentive/Loyalty Opt-In Participation Form
Do Not Sell or Share My Personal Information
Limit the Use of My Sensitive Personal Information

This privacy notice (“Notice”) applies to Netspend Corporation and its affiliates (collectively, “Netspend”, “we”, “our”, or “us”). It applies to all the products and services offered by Netspend, including on our website (“Site”) and mobile application (“App”) (collectively, the “Services”) to U.S. consumers (“you”), except where a product or service has a separate Notice that does not incorporate this Notice.

Your Personal Data

We collect information that identifies, describes, or is reasonably capable of being associated with you (“Personal Data” or “Personal Information”) and other information that does not identify you personally or contain personal identifiers (“Anonymous Information”). We define Personal Data in its broadest sense, meaning any data (such as name, contact information, social security number, etc.) that can be used to identify an individual or household, either directly or indirectly. Anonymous Information may be treated as Personal Data when it can be linked with other information to personally identify you. Personal Data does not include publicly available information, such as information lawfully made available from government records, information we have a reasonable basis to believe is lawfully made available to the general public by you or by widely distributed media, or by a person to whom you have disclosed the information and not restricted it to a specific audience, or de-identified or aggregated information.

This Notice describes the types of Personal Data we collect, how we use the information, with whom we may share it, measures we take to protect the security of the information, your privacy rights, and choices available to you, and how you can contact us about our privacy practices. As described herein, we collect Personal Data directly from you, automatically when you use our Sites, Apps, and Services; communicate with us, interact with us on social media, and from third party sources. To the extent permitted by applicable law, we may combine the information we collect from publicly available or third-party sources. The Personal Data we collect varies based on your relationship with us.

Sensitive Personal Data

Some Personal Data we may collect is defined under law as sensitive personal information (“Sensitive Personal Data”). State laws may vary as to the definition of Sensitive Personal Data which generally includes social security number, driver’s license number, state identification card number, passport number, customer account log-in, financial account number, debit card number and credit card number in combination with any required security or access code, password, or credentials allowing access to an account, and precise geolocation information.

United States privacy laws permit us to collect and use Sensitive Data for providing the Services you requested; preventing, detecting, and investigating security incidents; resisting malicious, deceptive, fraudulent, or illegal actions and prosecuting those responsible; verifying or maintaining Service quality or safety; and ensuring physical safety of natural persons.

About Netspend & Our Bank Partners

Netspend is a financial technology company and service provider; not a bank. We are an authorized agent and program manager for bank products issued by Pathward®, National Association (“Pathward”), Republic Bank & Trust Company, (“Republic”), and The Bancorp Bank, N.A., (“Bancorp”), Members FDIC (each a “Bank”).

If you are a cardholder or have applied for a card, the principal Notice governing your card belongs to the Bank issuing your card. Please see the back of your card or the card program marketing materials for the name of your Bank. We are not responsible for our Banks’ information practices or Notices. For your convenience, we provide these links below.

Bank Privacy Notices

Notice for customers with cards issued by Pathward, National Association
Notice for customers with cards issued by Republic Bank & Trust Company
Notice for customers with cards issued by The Bancorp Bank, N.A.

How Federal and State Privacy Laws Apply to Your Data

Navigating the overlap between federal and state privacy laws can be confusing. Netspend is subject to the federal Gramm-Leach Bliley Act (“GLBA”) and may be subject to state privacy laws depending on the type of data we collect and the state where you live. Here is a simplified breakdown:

1. Your Financial Data (Federal GLBA Law) When you apply for or use one of our Financial Products, your financial privacy rights are governed by the GLBA. Most state privacy laws specifically exclude this financial data. Therefore, state-level privacy rights generally do not apply to data related to your financial account. To understand how your financial data is collected and shared, please consult the specific Bank’s Privacy Notice associated with your Financial Product.

2. Your Non-Financial Data In addition to financial data, we also process non-financial data, such as website visitor tracking (cookies and analytics), general marketing data, business contact information, and employee data. Most U.S. states apply a broad "entity-level exemption" to financial service providers like Netspend. This means that in most states, all the data we process—even non-financial data—is shielded from state privacy law coverage.

3. State-Specific Applicability Several states have enacted laws that remove these broad exemptions for non-bank financial companies like Netspend. If you live in one of the following states, state privacy laws do apply to your non-financial data: California, Maryland, Nebraska, Tennessee, and Texas. While your financial data remains exempt under the GLBA , all other personal data we collect from residents of these states (such as marketing and employee data) is subject to your respective state's privacy rights.

Consent

Our procedures ensure that your consent is reviewed, approved, and implemented appropriately across all mediums and meets the following key principles to ensure that you understand and actively agree to how your Personal Data is being used, and that you have the power to withdraw your consent at any time. These principles are:

Freely Given: Consent must be obtained without coercion, pressure, or undue influence. 
Specific and Informed: Individuals should clearly understand what information is being collected, how it will be used, and who will have access to it. 
Unambiguous: Consent should be expressed in a clear and definitive manner, not through implied or ambiguous actions. 
Affirmative Action: Consent should require a positive action from the individual, like checking a box or clicking a button, rather than simply opting out by inaction. 
The Right to Revoke Consent: Individuals should have the ability to withdraw their consent at any time, with clear instructions on how to do so. 

What Information is Collected

We collect information that we need to provide our Services, to administer and improve the Services, to create and offer new Services, for research purposes, and to fulfill any legal and regulatory requirements.

The Personal Data that we may collect include the following categories:

Identifiers. Personal identifiers and contact information such as your name, address, email address, phone number, and other details for identity verification required for you to access our Services.
Government-Issued Identifiers. Government-issued personal identifiers such as your driver’s license number, social security number, or other government-issued identifiers.
Account Details. Bank routing number, account number, user ID, password, and other credentials used to access our Services.
Payment Card Information. Information necessary to process or verify past payments and process authorized Service transactions, including cardholder name, card number (PAN), card expiration data, card verification value, billing address, and other related information.
Transaction Information. Account transaction history, direct deposit information, and information obtained with your consent about your linked non-Netspend accounts (such as transaction information and balances, payroll account information, etc.).
Payment Information. If you pay a bill, we may collect information necessary to process your payment such as bank account information, billing address, and any other related information.
Employment information. Employee-specific information related to payroll and health benefits, including wages and deductions including approximate or expected income and pay frequency; occupation; and income details such as employment history, references, and other information for recruiting and tracking purposes.
Geolocation Data. Your IP address for identity verification and performance of Services.
Commercial Information. Information about the Services you use, including interest in a Service, purchasing or consuming tendencies, and receipts or records of purchase or enrollment in other products or services.
Message Contents. Messages, email contents, or any other information you choose to provide when interacting with Services, our customer service, or agents.
Audio or Similar Information. Recordings of your phone conversations with our customer service team to provide or enhance Services and for quality assurance and training purposes.
Preferences. Types of Services you use, your communications preferences, wish lists and other preferences you may select in your account or profile.
Other Information. Responses to online forms, surveys, offerings of Service reviews; suggestions for new products or Services; participation in contests; use of self-created content such as photographs; or any other actions you perform on the Services.

Sources of Personal Data

During the 12-month period prior to the effective date of this Notice, we may have obtained Personal Data about you from the following source categories:

Directly from you, such as when you sign up for an account, initiate a transaction, contact customer service or support departments via phone, email, chat or other forms of communication, or from applications, forms, webinars, surveys, and other information you provide us.
Your devices, when you use our Platform or Services.
Your comments or suggestions, interaction with us, requests for information or contact with our customer service or support departments.
Our Bank partners
External banks (i.e., banks other than our Banks) if you link a non Netspend-serviced account.
Vendors who provide services on our behalf.
Our joint marketing partners.
Our business partners (such as referring websites)
Online advertising services and advertising networks.
Government entities.
Operating systems and platforms.
Identity verification and fraud prevention platforms.
Social networks.
Data brokers, lead generation partners, and identity resolution service providers.
Marketers and other websites on which we advertise.
Inferences derived from data you provide, data we collect from third parties and automated means to assess your likely preferences regarding current or potential future Service offerings. We use these inferences to assess your likely preferences, personalize your experience, deliver relevant content [and/or targeted advertising], and improve our Services. For example, we may infer your general geographic location (such as city, state, and country) based on your IP address to show you region-appropriate content, analyze navigation patterns to optimize our website, or infer which products might interest you based on your browsing history. We do not use automated means to infer sensitive characteristics, such as health status, race, sexual orientation, or religious beliefs.
Information Collected by Automated Means: We may use automated technologies on our Services to collect information about your equipment, browsing actions and usage patterns. These technologies help us (1) remember your information so you do not have to re-enter it; (2) track and understand how you use and interact with our Services, including our online forms, tools or content; (3) tailor the Services around your preferences; (4) measure the usability of our Services and the effectiveness of our communications; and (5) otherwise manage and enhance our products and Services, and help ensure they are working properly. Information collected by automated means may include:
• Site Visitor information: When you visit our Site, we may obtain certain information by automated means, such as cookies, web beacons, web server logs and other technologies. A “cookie” is a text file that websites send to a visitor’s computer or other internet-connected device to uniquely identify the visitor’s browser or to store information or settings in the browser. A “web beacon,” also known as an internet tag, pixel tag or clear GIF, links web pages to web servers and cookies and may be used to transmit information collected through cookies back to a web server. The information we collect in this manner may include your device IP address, unique device identifier, web browser characteristics, device characteristics, operating system, language preferences, referring URLs, clickstream data, and dates and times of website visits. Your browser may tell you how to be notified about certain types of automated collection technologies and how to restrict or disable them. Please note, however, that without these technologies, you may not be able to use all the features of our Services.
• App User Information: When you use our App, we also may collect certain information by automated means, such as through device logs, server logs and other technologies. The information we collect in this manner may include the device type used, the mobile operating system, device identifiers and similar unique identifiers, device settings and configurations, IP addresses, battery and signal strength, usage statistics, referring emails and web addresses, dates and times of usage, actions taken on the App, and other information regarding use of the App. In addition, we may collect your device’s geolocation information. Your device’s operating platform may provide you with a notification when the App attempts to collect your precise geolocation. Please note that if you decline to allow the App to collect your precise geolocation, you may not be able to use all the App’s features. Your device may tell you how to be notified about certain types of automated collection technologies and how to restrict or disable them. Please note, however, that without these technologies, you may not be able to use all the features of our Services. You can manage how your device and browser share certain device data by adjusting the privacy and security settings on your mobile device.

Important Note: Information collected in connection with your application or use of a particular Financial Product is covered under the applicable Bank’s and Insurer’s Notice.

Aggregated, Non-Personal, or Non-Identifiable Information: We may collect or process general, non-personal, or statistical information about the users of our Services. We may also de-identify, anonymize, and/or aggregate certain Personal Data collected from or about users of our Services, or when you interact with us. We may process and disclose this information without restriction (so long as no attempt is made to re-identify the data).

How We Collect Information

To access or use our Services, you may be required to provide Personal Data. Personal Data is primarily collected, submitted, and/or transmitted:

When you provide it to utilize the Services or facilitate our processing of data
From application, forms, webinars, surveys, and other information you provide us.
If you provide us with comments or suggestions, interact with us, request information about our Services, or contact our customer service or support departments by phone, email, chat, or other forms of communication.
From consumer and business reporting agencies regarding verification of your identity or financial accounts.
Between us, our business partners, and third-party vendors.
From information you may provide via social media.

We may append and enrich the information we have about you with information purchased from third party data suppliers.

We may collect both Personal Data and Anonymous Information such as connection, activity, and usage data, when visitors and users navigate to and around our Sites and Apps:

Through your browser when you visit the Site, which includes information such as your Media Access Control (MAC) address, browser type, device type, and operating system.
From your IP address, which is automatically logged in our server when you visit a Site.
Using cookies or other digital tracking tools such as web beacons (also known as pixel tags or clear GIFs). See the Use of Cookies and Web Beacons section below for more information.
From feedback that does not personally identify you voluntarily provided to us on a Site.
Using website analytics and session replay tools to improve user experience, troubleshoot errors, and prevent fraud. These technologies may record your interactions with our Services in real-time, including mouse clicks, movements, scrolls, and keystrokes. While these tools may temporarily process certain Personal Data you submit (such as an email address), they are configured with strict data masking and encryption controls to explicitly prevent the recording, collection, or storage of highly sensitive information, such as Social Security numbers, passwords, or full payment card details.
From de-identified or aggregated Personal Data, including payment data associated with a Financial Product.

Biometric Information: For the purposes of this Notice, “biometrics” may include an individual’s physiological characteristics that can be used, singularly or in combination with each other or with other identifying data, to establish individual identity. Examples of biometrics include, but are not limited to, imagery of the iris, retina, fingerprint, face, hand, palm, vein patterns, and voice recordings, from which an identifier template, such as a faceprint, a minutiae template, or a voiceprint, can be extracted. We do not collect biometric information, but smartphones do for access. The consent process is part of the smartphone and is controlled by the user.

How We Use Your Information

Our collection of Personal Data is limited to the business and commercial purposes described below:

Perform services, including maintaining or servicing accounts, processing transactions, and/or other benefits, providing customer service, and other related activities (“Services”).
Verify customers’ information, identity, and eligibility to receive Services.
Send transactional communications as part of our Services and marketing communications that we believe may interest you.
Determine your eligibility for, and administer your participation in, certain features of the Services, including, but not limited to, surveys, contests, sweepstakes, promotions and rewards;
Conduct research, assessments, and analytics relating to our Services and develop new services, products and technological improvements.
Administer, audit, and improve our Platform.
Improve, upgrade, or enhance our Services or business operations.
Administer quality and safety maintenance for our Platform or Services.
Facilitate applicant tracking and employee recruitment.
Contact customers and consumers with information on Services, new Services or products, or upcoming events, including via SMS or MMS text messaging if mobile phone number is provided for that purpose and auditing those interactions.
Perform advanced analytics and provide insights to customers.
Detect fraud, theft, or other activities to ensure security and integrity by detecting security incidents, protecting against malicious, deceptive, fraudulent, or illegal activity, and prosecuting those responsible for that activity.
Comply with legal, reporting, and regulatory requirements or to defend against a legal claim.
For other purposes that are compatible with this Notice or where permitted by applicable law.
In any other way we may describe when you provide the information, or for which you provide authorization.

Anonymous Information: We may use Anonymous Information in the following ways:

To evaluate the Site’s effectiveness and usability
To improve our products or services
To ensure the Site displays properly and diagnose problems
To measure the number of visitors to the Site
For other activities to the extent permitted by law.

We will not collect additional categories of Personal Data or use the Personal Data we collected for materially different, unrelated, or incompatible purposes without providing you with notice.

We Do Not Sell Your Personal Data

We do not sell Personal data for monetary consideration. We only make business purpose Personal Data disclosures as detailed above and pursuant to written contracts that describe the purposes of use, require the recipient to keep Personal Data confidential, and prohibit using the disclosed Personal Data for any purpose except performing the contract.

How We Share the Information We Obtain

We may share the information we obtain about you with our affiliates and subsidiaries; our Banks, and other companies in connection with co-branded products, services or programs; joint marketing partners; research study partners; and consumer reporting agencies. We also may share the information we obtain about you with vendors and other entities we engage to perform services on our behalf, such as payment and check deposit processors, risk detection and mitigation tools, and modeling and analytics tools.

We also may disclose Personal Data (1) if we are required to do so by law or legal process (such as a court order or subpoena); (2) in response to requests by government agencies, such as law enforcement authorities; (3) to establish, exercise or defend our legal rights; (4) when we believe disclosure is necessary or appropriate to prevent physical or other harm or financial loss; (5) in connection with an investigation of suspected or actual illegal activity; (6) to defend our decisions related to a dispute, which includes sharing limited dispute and decision related information, as permitted by law, with the press if the member has shared related details of the dispute with the press already; (7) in connection with the sale, transfer, merger, acquisition, joint venture, reorganization, divestiture, dissolution, or liquidation of our business or asset (disclosure associated with these events includes full transfer of your Personal Data to the resulting entitles); or (8) otherwise with your consent.

Security

We maintain organizational, technical, and physical safeguards designed to protect the Personal Data you provide against accidental, unlawful or unauthorized destruction, loss, alteration, access, disclosure or use. SSL encryption also is used on our Site when you are asked to enter confidential information as part of your application. You can tell you have entered an encrypted session in several ways. Whenever you see an unbroken key, a locked padlock, or similar icon on your browser screen, you have entered an encrypted session. In addition, when your session changes from “http” to “https,” you are in an encrypted session. More information about our online security can be found here.

Children

We do not knowingly collect or use Personal Data from children under 16 years of age without obtaining verifiable consent from their parents. We are not responsible for the data collection and use practices of non-affiliated third parties to which our Site may link.

Links to Other Websites

Our Site may include links to third-party websites. We are not responsible for the information collection practices of third-party links you click to from our Site. We cannot guarantee how these third parties use cookies or whether they place cookies on your computer that may identify you personally. We urge you to review the privacy policies of each of the linked websites you visit before you provide them with any Personal Data.

Cookies and Similar Tracking Technologies

We use cookies or other similar tracking technologies when you visit our Site. Cookies are text files containing small amounts of information, which your computer or mobile device downloads when you visit a Site. When you return to our Sites – or visit websites that use the same cookies – they recognize these cookies and therefore your browsing device.

We use cookies and other tracking technologies to do lots of different jobs, like letting you navigate between pages efficiently, remembering your preferences and generally improving your browsing experience. They can also help ensure that ads you see online are more relevant to you and your interests. We also use similar technologies such as pixel tags and JavaScript to undertake these tasks.

We use cookies to:

Ensure your security and privacy when in our secure Sites
Store login details for our secure sites
Temporarily store input information in our calculators, tools, illustrations and demonstrations
Provide you with ads that are more relevant to you and your interests, and improve our targeting and enhance your journey through our sites and partner sites
 Improve our understanding of how you navigate through our sites so we can identify improvements
Evaluate our sites’ advertising and promotional effectiveness; and
We use both our own (first-party) and partner companies’ (third-party) cookies to support these activities

We may also allow our business partners to place web beacons on our site or to place cookies on your device for advertising or other purposes.

Disabling Cookies and Do-Not-Track: While you may disable the usage of cookies through your browser settings, we do not change our practices in response to a “Do Not Track” signal in the HTTP header from your browser or mobile application. We track your activities if you click on advertisements for our Services on third-party platforms such as search engines and social networks and may use analytics to track what you do in response to those advertisements. We may also use web beacons and tracking URLs in our messages to you to determine whether you have opened a certain message or accessed a certain link.

AI Privacy and Automated Decision Making

To continuously improve our services, we use artificial intelligence (AI) and machine learning (ML). We want to be completely transparent about how this technology works, how it evaluates your information, and the steps we take to protect your privacy.

1. How We Protect Your Identity During AI Training We respect your privacy and will never share your Personal Data with third parties to train their AI models outside of our secure environment. Before we use any of your data to teach our systems, we remove direct personal identifiers, such as your name, email address, unique account numbers, and IP address. Your information is then combined with large sets of data so that your individual behavior cannot be isolated or tracked.

2. What We Learn From Your Interactions We analyze general interactions—such as your transactions, calls with customer service, chat logs, and app usage patterns—to identify overall trends. Specifically, our AI evaluates:

Behavioral Trends: We look at common ways customers use our services and navigate our platforms.
Customer Sentiment: We assess the general emotional tone and satisfaction levels expressed during interactions with our support team.
Topics of Interest: We analyze common themes and subjects to understand what our user base cares about.

3. Automated Profiling and Account Decisions Where permitted by law, we use automated decision-making technology to evaluate your account for risk, fraud, and creditworthiness. This means our systems use profiling techniques to analyze and predict your economic situation, reliability, and behavior.

Why we do this: These automated assessments help us determine if an account displays traits of potential credit risk, money laundering, or fraudulent activity. It also helps us verify that information you have submitted is accurate and that you are not hiding your real identity.

4. Your Right to Opt Out You are in control of your data. You have the right to opt out of having your Personal Data included in our AI and machine learning training pipelines. Choosing to opt out will not negatively affect your ability to use our standard business services. If you wish to opt out, or if you have questions about exercising your other privacy rights (such as accessing or deleting your data), please follow the instructions in the “How to Exercise Your Privacy Rights” section or contact us using the information provided in this Notice. 

Notice of Financial Incentives

We may offer rewards or prizes for participation in certain activities that may be considered a “financial incentive”. These activities may involve the collection of Personal Data. The categories of Personal Data we collect are limited to what information you provide us, but may include: identifiers, protected class/demographic information, commercial information, online activities, geolocation information (general and precise), sensory information, employment information, and inferences. Activities we engage in that may be considered as a financial incentive include surveys where we may provide compensation such as a gift card in exchange for your time and responses, or a prize through your participation in promotions and sweepstakes. Participation in these programs may be subject to separate terms and conditions. Your participation in these programs is voluntary and you can terminate at any time as explained in any applicable terms. 

How We Calculate the Value of Your Data for Financial Incentives: When we offer financial incentives, promotions, or sweepstakes in exchange for the collection or retention of your personal information, we ensure that the value of the incentive provided is reasonably related to the value of the personal information we receive. To comply with applicable state privacy laws, including the California Consumer Privacy Act (CCPA), we utilize concrete, good-faith methods to estimate the value of your data depending on the nature of the collection:

The Replacement Cost Method (For Surveys and One-Off Data Collection) When we offer incentives in exchange for specific, one-off data collection events—such as participating in user feedback surveys or market research questionnaires—we value your data using the Replacement Cost Method. Under this approach, we estimate the value of your personal information by determining what it would cost us to acquire comparable data, insights, or market research from a third-party data provider or research firm. The incentive offered (such as a cash credit or gift card) is calibrated to be reasonably related to, and generally not to exceed, the anticipated replacement cost of that data.
The Average Revenue / Lifetime Value (LTV) Method (For Promotions and Sweepstakes) When we collect personal information as part of ongoing promotional campaigns, loyalty programs, or sweepstakes entries, we value your data using the Average Revenue or Customer Lifetime Value (LTV) Method. Under this approach, we estimate the value of your personal information by analyzing the historical financial value of our customer base. We calculate the average increase in revenue or LTV generated by consumers who participate in these promotional programs compared to those who do not. We then subtract the operational expenses and costs incurred by Netspend to run the promotion. The net difference represents our good-faith estimate of the data’s value, which justifies the rewards, discounts, or sweepstakes entries provided to you.

By participating in any of our financial incentive programs, you agree that the benefits are reasonably related to the value of the personal information collected based on these good-faith calculation methods.

Right to Withdraw from Financial Incentives: You have the right to withdraw (opt-out) from any of our financial incentive programs at any time. Withdrawing from a program will not affect your standard Netspend account services or result in discriminatory treatment. However, upon withdrawal, you will no longer receive the specific financial rewards, discounts, or sweepstakes entries associated with that particular incentive.

How to Withdraw: To opt out of an ongoing financial incentive, promotion, or survey program, you may submit a request using one of the following methods:

Email: Send an email to privacy@netspend.com with the subject line "Withdraw from Financial Incentive" and include the name of the specific program you are opting out of.
Phone: Call our Customer Service team toll-free using the phone number on the back of your card.
Unsubscribe Links: For email-based promotions or surveys, you may click the "unsubscribe" or "opt-out" link provided at the bottom of the communication.

Impact of Withdrawal: Please note that if you withdraw from a financial incentive program, we will cease providing the financial benefit associated with the collection or retention of your data going forward.

For ongoing promotions (like sweepstakes or loyalty rewards): You will forfeit future entries or rewards tied to the data collection.
For one-off incentives (like surveys): Opting out will prevent you from being selected for future incentivized surveys, but it will not impact previously awarded benefits unless explicitly stated in the specific terms of that promotion.

Opt-in Rights: Residents of California must affirmatively "opt-in" to consent to participate in a financial incentive/loyalty program should we require the collection of Personal Data additional to that required for the provision of our basic Services. Your election to “opt-in” does not affect your eligibility or access to our basic Services. To opt-in, email your completed Financial Incentive/Loyalty Opt-In Participation Form to privacy@netspend.com. To withdraw your consent at anytime without penalty, please email us at privacy@netspend.com

Data Retention

We retain your personal data only for as long as is necessary to fulfill the purposes outlined in this Notice. Because these needs vary by data type, our retention periods vary. We determine these periods based on the following framework:

Account and Service Data: Retained for the lifespan of your active account to provide you with the Services. If you delete your account, this data is deleted or anonymized within 45 days.
Transaction and Financial Records: Retained for 10 years after account deletion to comply with mandatory tax, accounting, and financial reporting laws.
Usage and Analytics Data: Retained for up to 6 months for legitimate business purposes, such as improving our systems and preventing fraud, after which it is aggregated or deleted.

We may retain specific data longer if required to resolve disputes, enforce our agreements, or comply with lawful legal requests.

How to Exercise Your Privacy Rights

Consumers or their authorized agents may submit a request by phone at 1-866-387-7363, or by submitting a Privacy Request Form to us by mail at P.O. Box 2136, Austin, TX 78768-2136, or by email at privacy@netspend.com.

Authentication/Verification: To help protect your privacy and maintain security when you submit a privacy request, we are required to reasonably validate your identity. To fulfill your request, we may require you to verify that you are the consumer whose Personal Data is the subject of the request. If we cannot validate the requestor based on the information provided, we will notify the requestor that we are unable to fulfill the request. We will only use Personal Data provided in the request to verify the requestor’s identity or authority to make it. We will confirm receipt of a request within ten (10) business days. We endeavor to respond to a verifiable consumer request within forty-five (45) days of its receipt. If we require more time (up to another 45 days), we will inform you of the reason and extension period. We do not charge a fee to process or respond to a verifiable consumer request unless it is excessive, repetitive, or manifestly unfounded. If we determine that the request warrants a fee, we will detail why we made that decision and provide a cost estimate before completing the request. 

Declining Requests: Except for the automated controls described in this Notice, if you send us a request to exercise your rights or the choices in this section, to the extent permitted by applicable law, we may charge a fee or decline requests in certain cases. For example, we may decline requests where granting the request would be prohibited by law, could adversely affect the privacy or rights of another person, would reveal a trade secret or other confidential information, would interfere with a legal or business obligation that requires retention or use of the data, or because the data at issue is not covered under the law you are asserting. 

Appeal: You have the right to appeal our decision to refuse to act on a data privacy request within a reasonable period after you receive our decision. To appeal our decision, forward your denial email to privacy@netspend.com for our Privacy Team to review your data subject request. In response, we will provide you with a written explanation of the justification for declining to act on your request.

Miscellaneous

Changes to This Notice. This Notice may be revised from time to time due to legislative changes, changes in technology, our privacy practices, or new uses of your information not contemplated in this Notice. Revisions are effective upon posting and your continued use of this Platform or Services will indicate your acceptance of those changes. Please refer to this Notice regularly. 

Contact Information. If you have any comments, concerns, or questions about this Notice, please contact us at privacy@netspend.com.

Unified U.S. State Privacy Notice Addendum

This State Privacy Notice Addendum supplements the information contained in the Netspend Privacy Notice. Any conflicts between this Addendum and the Notice shall be construed in favor of this Addendum.

Your Unified Privacy Rights

Depending on your U.S. state of residence (such as California, Maryland, Nebraska, Tennessee, or Texas), you may be entitled to the following specific rights regarding your non-financial Personal Data:

Right to Inquire and Access: You have the right to ask if we have collected Personal Data about you and to request that we disclose that Personal Data to you at no charge.
Right to Correction: You have the right to request that we correct inaccurate Personal Data under certain circumstances, subject to a number of exceptions.
Right to Delete: You have the right to request that we delete your Personal Data under certain circumstances, subject to a number of exceptions.
Right to Opt-Out of Selling, Sharing, or Targeted Advertising: You have the right to opt out of the selling or sharing of your Personal Data for targeted advertising purposes. We do not knowingly receive monetary compensation for the sale or sharing of information to third parties; however, we may let advertising and analytics providers collect unique identifiers when you access our Services.
Right to Opt-Out of Automated Profiling: You have the right to opt out of our use of automated decision-making technology, including profiling, used to evaluate personal characteristics, predict financial behavior, or assess economic situations. Should you not elect to opt-out, you have the right to request an explanation of an automated decision.
Right to Limit Use or Disclosure of Sensitive Personal Data: You have the right to limit our use or disclosure of Sensitive Personal Data (such as precise geolocation, account credentials, or racial/ethnic origins) strictly to essential business purposes, such as providing requested goods/services, ensuring security, and preventing fraud.
Right to Non-Discrimination: You have the right not to be discriminated against for exercising any of your privacy rights.
Right to Appeal: You have the right to appeal our decision to refuse to act on a data privacy request within a reasonable period after you receive our decision. Depending on your state of residence, we will provide a written explanation of the justification for declining your request within 45 to 60 days. If you disagree with our explanation, you have the right to file a complaint with your state’s Attorney General.

Categories of Personal Data Collected, Disclosed, and Shared

To satisfy the comprehensive transparency requirements of applicable state laws (including the CPRA), the following table details the categories of Personal Data we may have collected and disclosed for a business purpose over the past 12 months. We do not sell Personal Data for monetary consideration.