FACTS
WHAT DOES CREDIT ONE BANK, N.A. DO WITH YOUR PERSONAL INFORMATION?
If you click the 'Continue' button, you will be directed to a third-party website unaffiliated with Credit One Bank, which may offer a different privacy policy and level of security. Credit One Bank is not responsible or liable for, and does not endorse or guarantee, any products, services, information or recommendations that are offered or expressed on other websites.
Click the 'Return to CreditOneBank.com' button to return to the previous page or click 'Continue' to proceed to the third-party website.
M-132397
Rev 06/2021
FACTS
WHAT DOES CREDIT ONE BANK, N.A. DO WITH YOUR PERSONAL INFORMATION?
Why?
Financial companies choose how they share your personal information. Federal law gives consumers the right to limit some but not all sharing. Federal law also requires us to tell you how we collect, share, and protect your personal information. Please read this notice carefully to understand what we do.
What?
The types of personal information we collect and share depend on the product or service you have with us. This information can include:
How?
All financial companies need to share customers’ personal information to run their everyday business. In the section below, we list the reasons financial companies can share their customers’ personal information; the reasons Credit One Bank chooses to share; and whether you can limit this sharing.
Reasons we can share your personal information
Does Credit One Bank, N.A. share?
Can you limit this sharing?
For our everyday business purposes—
such as to process your transactions, maintain your account(s), respond to court orders and legal investigations, or report to credit bureaus
YES
NO
For our marketing purposes—
to offer our products and services to you
YES
NO
For joint marketing with other financial companies
YES
NO
For our affiliates’ everyday business purposes—
information about your transactions and experiences
YES
NO
For our affiliates’ everyday business purposes—
information about your creditworthiness
YES
YES
For our affiliates to market to you
YES
YES
For our nonaffiliates to market to you
YES
YES
To limit our sharing
For credit card accounts, call 800-796-6245 and one of our representatives will update your privacy choices. For deposit accounts, call 877-628-1610 and one of our representatives will update your privacy choices.
Please Note: If you are a new customer, we can begin sharing your information 30 days from the date we sent this notice. When you are no longer our customer, we continue to share your information as described in this notice.
However, you can contact us at any time to limit our sharing.
Questions?
For credit card accounts, call 800-796-6245
For deposit accounts, call 877-628-1610
What We Do
How does Credit One Bank protect my personal information?
To protect your personal information from unauthorized access and use, we use security measures that comply with federal law. These measures include computer safeguards, secured files and secured buildings.
How does Credit One Bank collect my personal information?
We collect your personal information, for example, when you
We also collect your personal information from others, such as credit bureaus, affiliates, or other companies.
Why can’t I limit sharing?
Federal law gives you the right to limit only
State laws and individual companies may give you additional rights to limit sharing. See below for your rights under state law.
What happens when I limit sharing for an account I hold jointly with someone else?
Your choices will apply to everyone on your account.
Definitions
Affiliates
Companies related by common ownership or control. They can be financial and nonfinancial companies.
Nonaffiliates
Companies not related by common ownership or control. They can be financial and nonfinancial companies.
Joint Marketing
A formal agreement between nonaffiliated financial companies that together market financial products or services to you.
Other Important Information
Vermont Residents: Except as permitted by law, we will not share information we collect about you with nonaffiliated or affiliated partners.
California Residents: Except as permitted by law, we will not share information we collect about you with nonaffiliated or joint marketing partners while you are a resident of California.
Nevada Residents: We are providing you this notice pursuant to Nevada law. To be placed on our Do Not Call List for credit cards, call 800-796-6245. To be placed on our Do Not Call List for deposit accounts, call 877-628-1610. For more information, visit www.CreditOneBank.com or mail your request to Credit One Bank, P.O. Box 98871, Las Vegas, NV 89193-8871. You may also contact the Bureau of Consumer Protection by phone at 702-486-3132, by email at aginfo@ag.nv.gov, or by mail at Bureau of Consumer Protection, Office of the Nevada Attorney General, 555 E. Washington St., Suite 3900, Las Vegas, NV 89101.
Rev 12/2022
This Online Privacy Statement ("Privacy Statement") describes Credit One Bank's online and mobile privacy practices and applies to websites, mobile applications that run on smartphones, tablets, and other devices ("apps"), and additional services (collectively, the “Services”) that we offer which link to this Privacy Statement.
Information you provided Credit One Bank when you applied for or obtained a product or service from us is also governed by a separate "Privacy Policy” notice at the top of this document. If you are such an applicant or customer, please refer to that notice for additional information about our privacy practices.
By using the Services, you agree that your personal information will be collected, used, and shared in accordance with the terms and conditions of this Privacy Statement. Your use of the Services is subject to this Privacy Statement and our Terms of Use, which are incorporated by reference into this Privacy Statement.
Our Services are not intended to be used by children. We do not intentionally collect personal information from children under 13 without permission from their parent or legal guardians. If you become aware that a child has provided us with personal information without parental consent, please call us at 877-825-3242. For more information about the Children's Online Privacy Protection Act (COPPA), please refer to the FTC's website at https://www.ftc.gov/business-guidance/privacy-security/childrens-privacy.
When you use our Services, we may collect Personal Information that you submit to us voluntarily, or Online Activity Data that we collect.
Personal Information is information such as your name, mailing address, email address, telephone number, Social Security number, or other information that identifies you. This information may be collected when you voluntarily provide it to us through forms on our website or in our apps. These forms could include survey forms, credit card applications, contest entries, and sign in pages for online banking or mobile application access.
Online Activity Data includes information such as your IP address, browser type, and display/screen settings; how you interact with our website and apps; mobile device and advertising IDs; social media preferences and other social media data. This data may be collected using cookies and other online tracking devices such as web beacons, depending on your browser settings. Cookies are small pieces of data sent from a website and stored on your computer by your web browser that can allow other websites that you visit to track your browsing activities. A web beacon is a small string of HTML code that represents a graphic image on a website or email. Credit One Bank may also associate with third parties to deliver advertisements and monitor activities on our own website and other websites. These business partners may use their own cookies, web beacons, and/or other monitoring technologies to compile statistics about website visitors. Additionally, Credit One Bank may collect Online Activity Data when you use our apps or your mobile device browser to access our website, such as geolocation data (if you have enabled location services on your device). Credit One Bank may also collect Online Activity Data or information such as your likes, interests, feedback, and preferences when you interact with our official pages on social media platforms including Facebook, Twitter, LinkedIn, YouTube, and Instagram. Please refer to the policies of those companies to better understand your rights and obligations with regard to your activity on those websites.
We may use Personal Information and Online Activity Data we have collected for a variety of reasons, including:
We may share your information with our affiliates, business partners, and third parties, including:
You are not required to provide Personal Information to browse our websites. If you provide us with Personal Information to obtain a product or service from us, our Privacy Policy above governs how we share Personal Information with our affiliates and third parties.
As you access our online services, cookies and similar technologies allow us to customize content and advertisements for our products and services on our websites or apps. In order to make content and advertising as relevant as possible, we may use information about your relationship with us (such as types of accounts and transactional information). Using cookies can give you additional or easier access to certain features on our website (such as allowing you to sign in easier), and can allow us to provide you with more personalized offers. You can set your browser to not accept cookies or to indicate when cookies are sent.
Some mobile devices come with a non-permanent advertising identifier or ID which gives companies the ability to serve targeted ads to a specific mobile device. In many cases, you can turn off mobile device ad tracking or you can reset the advertising identifier at any time within your mobile device privacy settings. You may also choose to turn off location tracking on your mobile device. By turning off ad tracking or location tracking on your mobile device, you may still see the same number of ads as before, but they may be less relevant because they will not be based on your interests. User mobile data will not be shared.
Currently, our website does not respond to browser "do not track" signals.
Advertising on Third-Party Websites
Behavioral advertising is when companies provide you ads that are intended to be tailored to your specific interests based upon your website browsing history and online activity. Certain Credit One Bank business partners may collect Online Activity Data and provide you with behavioral advertising for Credit One Bank products and services on third-party websites. Our business partners are subject to their own privacy policies. To explore options for opting out of behavioral advertising, visit http://optout.aboutads.info/ or click on the AdChoices icon in an ad and follow the instructions. You may also use the Network Advertising Initiative's (NAI) Opt-Out Tool or other tools provided by the publishing platform. Opting out relies on information in the unique cookies placed on your web browser by our business partners, so if you delete cookies, use a different device, or change web browsers, you may need to opt out of behavioral advertising again.
Additionally, we may work with websites like Google and Yahoo to display ads to you based on search terms you use on those websites. Please review the privacy policies of those websites for instructions on how to limit these ads.
Please note that you may still receive general online advertising from Credit One Bank even after you adjust your ad preferences with certain web search engines or opt out of behavioral advertising through AdChoices or the NAI tool. Such advertising, however, will not be based on Online Activity Data or search term information. Our marketing emails include instructions on how to opt out of receiving such emails in the future.
Keeping your account information up-to-date is important. You may review or update certain account information by signing in to your account online. If you cannot change the incorrect information online, or you prefer to request changes offline, please see the Customer Service section on our website, or call 877-825-3242 or write to us using the contact information listed on your account statements, records, or other account materials.
Our websites or apps may include links to third-party websites. These third parties are not subject to this Privacy Statement or to the Privacy Policy. Please review their privacy notices when visiting these websites.
Biometric information includes automatic measurements of an individual's biological characteristics, such as a fingerprint, voiceprint, eye retinas, irises, hand or face geometry, or other unique biological patterns or characteristics. If you provide your consent, our Services may collect your biometric information to allow you to log on to your account more quickly, to confirm your identity, or to secure your account. Credit One Bank will never sell, lease, or disclose your biometric information to any third party. If you close all of your Credit One Bank accounts, we will delete any biometric information we may have about you within a reasonable time, but in no event more than one year after you close your account.
At Credit One Bank, we are committed to protecting your personal and financial information. If we collect identifying information from you, we will protect that information with security measures based on internationally recognized security standards, regulations, and industry-based best practices.
Credit One Bank may change its online privacy practices in the future and we may revise this Privacy Statement. If we make material changes to our privacy statement, we will provide you notice of such changes. If you use our Services after we revise the Privacy Statement, you agree to the updated terms and conditions of this Privacy Statement.
This Privacy Statement was last revised December 5, 2022 and is effective as of that date.
AdChoices: Allows individuals to opt out of browser-enabled interest-based advertising by some or all participating companies, using opt-out cookies to store your preferences in your browser.
Browser: An application used for accessing websites or information on a computer network. Examples include Chrome, Safari, Edge, Internet Explorer, and Firefox.
Business partners: Companies we work with to jointly market and/or deliver products and services to you. Business partners include affinity or co-brand business partners. They may not use this information to independently market to you unless you consent.
Cookies: Small pieces of data sent from a website and stored on your computer by your web browser that can allow other websites that you visit, and the advertising companies and content partners for those websites, to track your browsing activities.
Privacy Policy: A Credit One Bank product-specific privacy notice, which we provide to customers at account opening and annually thereafter pursuant to federal law. It describes our privacy practices and provides you the right to opt out of certain types of information sharing.
IP address: A unique "Internet Protocol" number assigned to a device connected to the Internet. Credit One Bank treats IP addresses as non-personal information unless otherwise required by law.
Service providers: Vendors with whom we have a contractual relationship to perform services on our behalf. Vendors may not use personal information for any purpose other than carrying out those services.
Social media: Websites and apps that enable users to create and share content or to participate in social networking, such as Facebook, Twitter, LinkedIn, YouTube, and Instagram.
Third-party websites: Sites that are not owned or operated by Credit One Bank and are not subject to our Privacy Statement.
Web beacon (alternatively referred to as a tracking bug, tag, page tag, tracking pixel, pixel tag, or clear gif): An often-transparent graphic image, usually no larger than 1 pixel x 1 pixel, that is placed on a website or in an email that is used to monitor the behavior of the user visiting the website or interacting with the email. Web beacons can be used for activities like site traffic reporting, unique visitor counts, advertising auditing and reporting, and personalization.
Rev 03/2023
This California Privacy Statement is for California Residents only and supplements the Gramm-Leach-Bliley Act Privacy Policy (“Privacy Policy”). This policy describes:
In addition, federal privacy laws protect your financial personal information. Please see our Privacy Policy, which is set forth above for more information.
What is Personal Information?
We may collect, use, or disclose your personal information. Personal information is information that identifies, relates to, describes, is reasonably capable of being associated with, or could reasonably be linked, directly or indirectly, with you (“personal information”). “Personal information” does not include: (1) publicly available information, such as information that is lawfully made available from federal, state, or local records, and (2) de-identified or aggregate consumer information.
With a limited exception, and as noted in other sections of this California Privacy Statement, certain provisions of the CCPA do not apply to personal information covered by or collected under industry-specific federal and state privacy laws including, but not limited to, the Health Insurance Portability and Accountability Act of 1996, the California Confidentiality of Medical Information Act, the Fair Credit Reporting Act, the Gramm-Leach-Bliley Act, the California Financial Information Privacy Act, and the Driver's Privacy Protection Act of 1994.
Personal Information We Collect, Use, or Share
The CCPA requires us to disclose certain information regarding our collection, use, sale, sharing, disclosure, and retention of personal information.
In the past 12 months, we have collected the following categories of personal information:
In the past 12 months, we have collected personal information from the following categories of sources:
We may collect and disclose your personal information for the following business or commercial purposes:
In the past 12 months, we have not “sold” or “shared” personal information subject to the CCPA, including personal information of minors under the age of 16, nor do we intend to do so in the future. We do not and will not sell or share your personal information. If that changes, we will notify you and provide you with any opt-out rights required under the CCPA. For purposes of this Disclosure, “sold” means the disclosure of personal information to a third-party for monetary or other valuable consideration, and “shared” means the disclosure of personal information to a third-party for cross-context behavioral advertising.
We also have not used or disclosed Sensitive Personal Information outside of the exceptions allowed for in the CCPA and its implementing regulations. If that changes, we will notify you and provide you with any opt-out rights required under the CCPA.
We may disclose your personal information to employees, service providers, or contractors in order to carry out specific business or commercial purposes. In the preceding 12 months, we have disclosed the following categories of consumer personal information for business or commercial purposes to service providers and the following categories of third parties:
We store personal information for as long as we believe is reasonably necessary or appropriate to fulfil our business purposes or to comply with applicable law, audit requirements, regulatory requests, or orders from competent courts.
Your Rights under the CCPA
As described in more detail below, the CCPA provides you with certain rights regarding the collection, use, and disclosure of your personal information. The CCPA also provides consumers with certain rights (for example, opt-out rights) if a business sells or shares personal information, which we do not do.
With a limited exception, the rights described below do not apply to certain personal information, including, for example, covered by or collected under industry-specific federal or state privacy laws including, but not limited to, the Gramm-Leach-Bliley Act, the Fair Credit Reporting Act, the California Financial Information Privacy Act, and the Driver’s Privacy Protection Act. For more information, please see our Privacy Policy above.
When we collect information, you have the right to know:
You should have received this information at or before the point that we collected information from you.
You also have the right to request that we provide you with certain information about the personal information we collect, use, or disclose, as well as the categories and specific pieces of information that we have collected about you. Specifically, you have the right to request the following:
However, there is certain information that we will not disclose to you. This information includes but is not limited to your social security number, driver’s license number or other government-issued identification number, financial account number, any health insurance or medical identification number, an account password, security questions and answer, or unique biometric data generated from measurements or technical analysis of human characteristics.
You have the right to request that we delete any personal information that we have collected from you and maintained about you unless there is a reason we need to keep the information. Once we receive and confirm your verifiable consumer request, if we determine that we must comply with a deletion request and delete your personal information from our records, we will also direct any service providers, contractors, and other third parties we work with to delete your personal information from their records. If we store any of your personal information in our archived or back-up systems, we will delete your information once the systems are accessed, restored, and/or used.
Please note that we may deny your deletion request for a number of different reasons, which are identified in the CCPA.
You have the right to request that we correct any inaccurate personal information that we have collected from you and/or maintained about you. Once we receive and confirm your verifiable consumer request, if we determine that we must comply with a correction request and correct inaccuracies in – or, as may be appropriate, delete – your personal information from our records, we will also direct any service providers we work with to correct or delete your personal information from their records. If we store any of your personal information in our archived or back-up systems, we will correct or delete your information once we access, restore, and/or use the systems.
We will not discriminate or retaliate against you for exercising any of your CCPA rights. For example, unless otherwise permitted by law, we will not:
You also have the right to opt-out of the sale/sharing of your personal information and to limit the use or disclosure of any Sensitive Personal Information. We do not sell or share personal information or use or disclose any Sensitive Personal Information other than as allowed by the CCPA and its implementing regulations.
Exercising Your Rights under the CCPA
To exercise your Right to Know, Correct, or Delete your personal information, please submit a verifiable consumer request to us by:
To submit a verifiable consumer request, you (or your authorized agent) will be asked to provide:
Credit One Bank
ATTN: CCPA - Compliance
PO BOX 98838
Las Vegas, NV 89193-8838
Only you (or an authorized agent) may make a verifiable consumer request.
Once you submit your verifiable consumer request, we will verify your identity by matching the information you provided us with information in our systems. If you submit a request to know specific pieces of personal information, delete certain information, or correct certain information, in addition to verifying your identity with information we have on file, you also may be required to submit a signed declaration under penalty of perjury stating that the requestor is the consumer whose personal information is the subject of the request. If we are unable to respond to your request for specific pieces of information, we will evaluate your request as if it is a request to know the categories of personal information that we have collected about you.
If you have a password-protected account with us, we may verify your identity through our existing authentication practices for your account and we will also require you to re-authenticate yourself before we disclose your personal information. If we suspect fraudulent or malicious activity on or from your account, we will not comply with your request until we perform further verification to determine whether your request is authentic and you are the person about whom we have collected the personal information.
We will generally avoid requesting additional information from you to verify you. However, if we cannot verify your identity based on the information we currently maintain, we may request additional information from you, which will only be used to verify your identity and for security or fraud-prevention purposes. We will delete any new personal information we collect to verify your identity as soon as practical after processing your request unless otherwise required by law.
Generally, if we are unable to verify your identity, we will deny your request and inform you of our inability to verify your identity and explain why we were unable to do so.
Please note that we are only required to respond to your request for access to your personal information twice within a 12-month period.
Once we receive your verifiable consumer request, we will confirm our receipt of your request within 10 business days and provide you with additional information about how we will process the request. Our goal is to respond to your request within 45 calendar days of receiving the request, beginning on the day we receive the request. However, in the event that we need more time (up to 90 calendar days) to respond to your request, we will provide you with notice and an explanation of the reasons that we will take more than 45 calendar days to respond. Any disclosures we provide will cover information collected and maintained since January 1, 2022. If we are unable to comply with a given request, we will provide you with a response explaining why we have not taken action on your request and identifying any rights you may have to appeal the decision.
We will not charge you or your authorized agent to verify your identity. In addition, we will not charge you or your authorized agent a fee to process or respond to your verifiable consumer request unless it is excessive, repetitive, or manifestly unfounded. If we determine that the request warrants a fee, we will tell you why we made that decision and provide you with a cost estimate before completing your request.
You may designate an authorized agent to make a request on your behalf. Unless you have a power of attorney, if you would like to use an authorized agent, which is an individual or business registered with the Secretary of State that you have authorized to act on your behalf, to submit a request, you must provide the authorized agent with written and signed permission to do so, and either verify your own identity directly with us, or directly confirm that you provided the authorized agent with permission to submit the request. We may deny a request from an authorized agent that does not submit proof that they are authorized to act on your behalf.
Changes to Our California Privacy Statement
We are required by law to update this California Privacy Statement at least once each year. This California Privacy Statement was last updated on March 1, 2023.
Contact Information
If you have any questions regarding our privacy policies, our California Privacy Statement, the ways in which we collect, use, and disclose your personal information, or how to exercise your rights under the CCPA, please do not hesitate to contact us at:
Phone: 1-877-791-4133
Email: CAprivacy@creditone.com
Postal Address: Credit One Bank, N.A.
ATTN: CCPA - Compliance
PO BOX 98838
Las Vegas, NV 89193-8838