The personal information we collect about you comes primarily from the information that you provide to us during the course of your relationship with us. We may also collect information about your transactions and experiences with us relating to your use of the Site and/or the Products. In addition, depending on the Products that we provide to you, we may obtain additional information about you from third parties (for example, we may obtain your credit history from consumer reporting agencies or demographic information maintained by third parties).
When you interact with the Site on a social media platform, we may collect the personal information that you make available to us relating to that platform, including your account ID or username and other information included in your posts.
Finally, in the provision of Products to you, information may be collected about you indirectly through monitoring or other means (for example, recording of telephone calls, monitoring emails and information collected through your use of the Site). By communicating with us, you acknowledge that your communication may be overheard, monitored, or recorded without further notice or warning.
When you visit the Site, apply for a Product, establish a customer relationship with us, use a Product or otherwise interact with us, the typical information we may collect about you depends on the Product and may include:
Of course, you are not required to supply any of the personal information that we request. However, your failure to do so may result in our being unable to open or maintain an Account or to provide Products to you. You agree to promptly notify us if there are any changes to your personal information by updating your online account in the following manner:
We may receive information about your location and your mobile device, including a unique identifier for your device. In addition, in some instances, location information can be derived from your IP address or through your wi-fi connection. You can change whether you share specific geo-location information in your device settings; however, some Products or features on the Site may not function properly without this information.
When you call us, we collect metadata such as your phone number’s origin, approximate geographic region, type of device (VoIP, landline, cell), and phone carrier. We also create a biometric voiceprint. This is a numerical representation of your voice. We use this to identify fraudulent activity and enhance security.
We use your information to provide you with Products and information and to help us personalize and continually improve the Site and Products, including fulfilling requests for information, processing applications, analyzing and compiling trends and statistics and communicating with you.
We may also use your information to:
In addition to the above, we may use data that we collect on an aggregate or anonymous basis for various business purposes, where permissible under applicable laws and regulations.
We also may use or combine information that we collect offline or that we receive from third-party sources for many reasons, including to enhance, expand and check the accuracy of our records. Additionally, data collected from a particular browser, device or application may be used with or to recognize you on another browser, device or application linked to you.
We provide you with certain communication choices relating to certain types of communications and information sharing. See the Do Not Call Policy below for more details on your telemarketing options. You may also receive a privacy notice in connection with certain Products that you receive from us describing certain communication choices associated with that Product. You can exercise your communications choices by following any instructions contained in our privacy notices or marketing materials, or:
In order to provide efficient and reliable Products and to improve product and service options available to you, more than one entity within Goldman Sachs may be given, or given access to, your personal information. For example, one Goldman Sachs entity might share your information with another in order to facilitate your transactions, assist in the Account application process, for the maintenance of your accounts or for other purposes permissible under applicable law. When we share your personal information in this way, we adhere to all applicable legal requirements regarding the sharing and protection of personal information. The privacy notice for an applicable Product may have information about your rights and choices regarding sharing your personal information within Goldman Sachs. Additional information on how your personal information is protected while within Goldman Sachs is provided below, under Information Security: How We Protect Your Privacy.
We only share your personally identifiable information with third parties as described below. In addition, we may share information that does not specifically and personally identify you, such as aggregated information, device identifiers or other unique identifiers to third parties.
We will not sell information that personally identifies you to any third party for their own marketing purposes.
We may share your personal information with non-affiliated companies that perform support services for us or in connection with any Product that you apply for or may receive from us (“Third-Party Service Providers”). Third-Party Service Providers that assist us are required to protect any non-public personally identifiable information that they receive from us and to use that information only for the purposes that we instructor for other business purposes as permitted by law.
Your personal information may be disclosed to third parties as permitted by, or to comply with, applicable laws and regulations. Examples include responding to a subpoena or similar legal process, protecting against fraud and cooperating with law enforcement or regulatory authorities. We may also disclose your information if we believe it is necessary or appropriate to protect our rights, property or safety or the rights, property or safety of our employees, customers or others, or to enforce our contractual rights.
In the event of a merger, divestiture, restructuring, reorganization, dissolution or other sale or transfer of any or all of our assets or liabilities, some of the personal information that we hold may be among the assets or liabilities transferred to a buyer or other successor. We may transfer to another entity or its affiliates or service providers some or all information about you in connection with, or during negotiations of, any merger, acquisition, sale of assets or liabilities or any line of business, change in ownership control or financing transaction.
Like many websites, we use tracking technologies such as cookies, web beacons and similar technologies. We may also use these technologies to, when applicable, record your preferences, track your use of the Site across multiple devices, measure exposure to our online advertisements, monitor traffic, analyze use of the Site, for security purposes, to display information more effectively, to personalize a user’s experience, and to improve the Site and make the Site easier to use.
You have choices to limit some tracking mechanisms that collect information when you use the Site. Many web browsers automatically accept cookies, but you can usually modify your browser’s setting to decline cookies if you prefer. If you choose to decline cookies, certain features of the Site may not function properly or may not remain accessible to you. In addition, you may also render some web beacons unusable by rejecting or removing their associated cookies. Note that, if you choose to remove cookies, you may remove opt-out cookies that affect your advertising preferences.
For more information about your choices, see Interest-Based Advertising below.
Cookies are small text files that may be placed on your device when you visit the Site or when you view advertisements that we have placed on other websites. Cookies allow your browser to remember some specific information which the web server can later retrieve and use. When you quit your browser, some cookies are stored in your computer’s memory, while some expire or disappear.
A web beacon, also known as an Internet tag, pixel tag or clear GIF, is typically a one-pixel, transparent image located on a webpage or in an email. These may be used when you are served with advertisements, when you interact with advertisements outside of our online services or when you interact with our communications. They are generally used to transmit information back to a web server.
Interest-based advertising refers to collecting information about your online activities over time and across different websites, devices, and other online services to deliver advertisements to users of that device based on their web-viewing behavior. We use interest-based advertising to deliver advertisements and other targeted content to you. To facilitate interest-based advertising, we partner with third-party advertising companies who also use these tracking tools to provide advertisements on the Site or other websites. These third parties may use these technologies to collect information about you when you use the Site and your other online activities. They may collect information about your online activities over time and across different websites and other online services. They may also use persistent identifiers to track your Internet usage across other websites and devices in their networks beyond the Site. They may use this information to provide you with interest-based advertising or other targeted content.
If you choose to opt-out, a cookie will be placed on your browser or device indicating your decision. This cookie is specific to a particular device and browser, so if you use different browsers or devices, you will need to opt-out on each. In addition, because the opt-out is facilitated via cookies, if you clear your cookies you will need to opt-out again.
In addition to Google Analytics, we use the Google Maps API to help pre-fill in address information. To learn more about Google’s privacy practices, click http://www.google.com/policies/privacy.
We take the security of your personal information seriously. We seek to limit access to your personal information to authorized employees, agents, contractors or vendors. We also maintain physical, electronic and procedural safeguards designed to protect the information against loss, misuse, damage or modification and unauthorized access or disclosure while in our possession.
You must be an individual of at least eighteen (18) years of age and reside in the United States or on a United States military base, or in a United States Territory in order to use the Site. If you do use the Site outside of the United States, you understand and consent to the transfer of your personal information to, and the collection, processing and storage of your personal information in, the United States and elsewhere. The laws in the United States and these countries regarding personal information may be different from the laws of your state or country.
We encourage security professionals to practice responsible disclosure and let us know right away if a vulnerability is discovered on a Marcus product or application. We will investigate all legitimate reports and follow up if more details are required. Goldman Sachs has engaged with HackerOne to manage all submissions. You can submit the vulnerability report at this link: https://hackerone.com/goldmansachs
Goldman Sachs Bank USA (“GS Bank”) does not place marketing telephone calls to numbers appearing on a state or federal do not call list (unless permitted by applicable law) or to the number of a person who has requested not to receive telemarketing calls made by or on behalf of GS Bank. If you ask not to receive telemarketing calls from us, you will be placed on our internally-maintained do not call list and will not be called during any future telemarketing campaigns. Any request to be placed on our internally-maintained do not call list will be processed within a reasonable amount of time, not to exceed 30 days. GS Bank employees involved in GS Bank's telemarketing campaigns receive training on how to use our internally-maintained do not call list, and how to document, process and honor requests to be placed on our internally-maintained do not call list. It is our policy to honor a do not call request for five (5) years from the time the request is made. However, some states have do not call laws that require us to honor such a request for a longer period of time, and it is our policy to comply with those laws when applicable. Subject to applicable law, if you communicate with us by telephone, we may monitor or record the call. We reserve the right to revise this Do Not Call Policy.
Marcus by Goldman Sachs® is a brand of Goldman Sachs Bank USA, which is a wholly-owned subsidiary of The Goldman Sachs Group, Inc., New York State-chartered bank and a member of the Federal Reserve System and FDIC. All savings deposit products provided by Goldman Sachs Bank USA.