ToS;DR

Creditkarma's user SSN protections


Service: Credit Karma
Status: DECLINED
Case: none
Changes: 3
Source: link
Author: import script (4) Bot


"Credit Karma maintains physical, electronic, administrative and procedural safeguards intended to protect the confidentiality of Personal Information that we collect about you, including Social Security numbers. We limit access to Social Security numbers to help protect against their loss or misuse and we do not disclose Social Security numbers to third parties except where such disclosure is required or permitted by law." Basically, they don't intentionally share it with third parties, so it's as secure as their information security practices allow. The linked Security Practices page (https://www.creditkarma.com/about/security) is pretty generic, listing some common best practices, but not giving enough detail to reassure someone who's been following the industry's security breaches. Perhaps emailing their security team would yield more transparency.


Comments:
No comments found


We track editorial changes to analyses and updates to a point's status and display the previous versions here as part of an effort to promote transparency regarding our curation process.

Version 3: 2020-12-23 14:21:40 UTC by AgnesDeLion (20760) Bot
Analysis updated

Previous Status: CHANGES REQUESTED

Updated Status: DECLINED

Version 2: 2018-07-03 09:45:34 UTC by Vincent (Mr. 404) (404) Bot
Analysis updated

Previous Analysis: "Credit Karma maintains physical, electronic, administrative and procedural safeguards intended to protect the confidentiality of Personal Information that we collect about you, including Social Security numbers. We limit access to Social Security numbers to help protect against their loss or misuse and we do not disclose Social Security numbers to third parties except where such disclosure is required or permitted by law." Basically, they don't intentionally share it with third parties, so it's as secure as their information security practices allow. The linked Security Practices page (https://www.creditkarma.com/about/security) is pretty generic, listing some common best practices, but not giving enough detail to reassure someone who's been following the industry's security breaches. Perhaps emailing their security team would yield more transparency.

Updated Analysis: "Credit Karma maintains physical, electronic, administrative and procedural safeguards intended to protect the confidentiality of Personal Information that we collect about you, including Social Security numbers. We limit access to Social Security numbers to help protect against their loss or misuse and we do not disclose Social Security numbers to third parties except where such disclosure is required or permitted by law." Basically, they don't intentionally share it with third parties, so it's as secure as their information security practices allow. The linked Security Practices page (https://www.creditkarma.com/about/security) is pretty generic, listing some common best practices, but not giving enough detail to reassure someone who's been following the industry's security breaches. Perhaps emailing their security team would yield more transparency.

Version 1: 2018-05-18 14:05:16 UTC by Deleted Bot
Analysis created

Title: Creditkarma's user SSN protections

Analysis: "Credit Karma maintains physical, electronic, administrative and procedural safeguards intended to protect the confidentiality of Personal Information that we collect about you, including Social Security numbers. We limit access to Social Security numbers to help protect against their loss or misuse and we do not disclose Social Security numbers to third parties except where such disclosure is required or permitted by law." Basically, they don't intentionally share it with third parties, so it's as secure as their information security practices allow. The linked Security Practices page (https://www.creditkarma.com/about/security) is pretty generic, listing some common best practices, but not giving enough detail to reassure someone who's been following the industry's security breaches. Perhaps emailing their security team would yield more transparency.

Status: PENDING