Warning: *Privacy Not Included with this product


Bumble, Inc

Review date: March 15, 2024


Mozilla says

People voted: Very creepy

Every dating app has a thing. Bumble's thing is only women can make the first move in the app to contact a man (for users looking for someone of the same gender, anyone can make the first move). Bumble says their goal is to shake up the gender norms and empower women to make the first move. Which can be a breath of fresh air in the straight dating app world where women are constantly bombarded with "Hey" as an opening line (come on guys, do better!). Founded by a former Tinder employee and launched in 2014, Bumble now has millions of users worldwide and has even branched out with new apps that help you network (Bumble Bizz) or meet new friends (Bumble BFF). This dating app lets users sign up with Facebook or their phone number (they added the phone number options back in 2018 following Facebook's Cambridge Analytica scandal). All profile information on Bumble is public, so if you sign up with Facebook be aware it could pull your personal info from there and make it open to all users. How is Bumble at privacy? Well, not great TBH.

What could happen if something goes wrong?

Bumble says they want to provide a safe dating space, especially for women. They even use artificial intelligence to moderate harmful text and automatically blur lewd photos. Good for them! Unfortunately, they have some work to do to provide a safe space for your personal data. Back in 2020, researchers found a security bug in Bumble that exposed the personal information of their nearly 100M users. All that really personal info, like political leanings, weight, the type of person a user was looking for, and even location were open to any attacker with a little technical know how. Then in 2021, a security researcher reported a vulnerability that could have let an attacker see users' precise location. We'll say it again, no matter what a company's privacy policy says, any personal information you share with them online is potentially vulnerable and could be used by bad people for bad purposes. Oh and in 2023, Bumble was also the subject of a class action suit that claimed the app collects biometric data without getting proper consent. Not the greatest track record there Bumble.

Breaches and hacks aren't uncommon in the dating app space, but that doesn't make them any less worrisome to us. Especially because these dating apps can collect so much sensitive personal information -- like your sexual preference, birthday, and location. That's on top of standard account information like your email address, name, and phone number. Bumble can also collect your biometric information if you use Photo Verification. And you should know that just sharing any of that information counts as "explicitly consenting" to Bumble's processing of it. Interesting. Then there's all the photos and text you add to your profile, including the answers to some of Bumble's adorable prompts. Things like "you're really nerdy about" [our answer: data privacy!] or that "if you were president" you would [our answer: enact the world's strongest privacy law!]. Bumble's privacy policy does warn users that "you should assume that anything you post or submit on the App may be publicly-viewable and accessible, both by Users and non-users of the App." Okay then, good advice. Other things that might be seen: your DMs! Bumble says they review the content of messages to moderate them but also to "identify topics, sentiments, and trends across our Users." They say they take "steps to remove personally identifying information from such messages, prior to reviewing them." We'll just have to trust them on that.

What else? If you decide to login to Bumble using Facebook, you authorize them to access a lot of personal information from Facebook unless you opt out -- like your birthday, profile photos, and Page likes. So please remember, when you connect a social media account like Facebook to Bumble, both Facebook and Bumble now potentially collect more information together. That's why we recommend users don't link your dating app to Facebook, use your phone number instead. Because really, you don't need to share all your personal info with Facebook, and then Bumble, and then Bumble may share more with Facebook and then it all gets exposed and soon the world knows where you live, who you think is hot, and how much money you make. That might be a recipe for a good date... it's also potentially a recipe for disaster. We're so glad using Facebook to login is no longer a requirement on Bumble since back in 2018. Good call, Bumble.

Bumble also says they can collect information about your activity in the app and may create "[i]inferences drawn from any of the personal information listed above to create a profile or summary about, for example, an individual’s preferences and characteristics." Uhg, we really hate those inferences. They creep us out! And Bumble can use that pile o' data for reasons that won't help you meet new empowering people, like to show you targeted ads on the app. They can also share your personal information with marketing service providers to show you ads on third party websites. Hmm. Does that mean Bumble can sell your data? Well, they do have a pop-up window that says "We use services that help improve marketing campaigns. ... Under certain privacy laws, this may be considered selling or sharing your personal information with our marketing partners," and then gives you the option to opt out of the selling of your data. So, yeah, they're probably selling some of your data. Go opt out people! Oh, and Bumble says they can also use your photos and videos for research purposes.

So what could go wrong with your Bumbling? Well, we can look to Bumble's own track record for inspiration: a security vulnerability exposing your exact location, your weight, and your political leanings to the world without your knowledge or consent seems kinda awkward. It could also get kinda dangerous in the wrong hands.

Tips to protect yourself

  • Check out Bumble's instructions on how to protect your personal information
  • Visit the app's privacy preferences at the app and opt out from personalized advertising as well as all non-essential data collection.
  • Request your data be deleted once you stop using the app. Simply deleting an app from your device usually does not erase your personal data nor does close your account.
  • Do not give consent to constant geolocation tracking by the app. Better provide geolocation 'only when using the app'.
  • Do not share sensitive data through the app.
  • Do not give access to your photos and video or camera.
  • Do not log in using third-party accounts.
  • Do not connect to any third party via the app, or at least make sure that a third party employs decent privacy practices.
  • Do not give consent for sharing of personal data for marketing and advertising.
  • Choose a strong password! You may use a password control tool like 1Password, KeePass etc.
  • Do not use social media plug-ins.
  • Use your device privacy controls to limit access to your personal information via app (do not give access to your camera, microphone, images, location unless necessary).
  • Keep your app regularly updated.
  • Limit ad tracking via your device (e.g. on iPhone go to Privacy -> Advertising -> Limit ad tracking) and biggest ad networks (for Google, go to Google account and turn off ad personalization).
  • When starting a sign-up, do not agree to tracking of your data if possible.
  • mobile

Can it snoop on me? information


Device: N/A

App: Yes


Device: N/A

App: Yes

Tracks location

Device: N/A

App: Yes

What can be used to sign up?

Facebook sign-up is available.

What data does the company collect?

How does the company use this data?

We ding this product as it shares personal data and inferences derived from personal data for targeted marketing purposes. It also appear to sell some personal information with their marketing partners, including Google, Twitter, LinkedIn, Spotify, and more -- unless you opt out.

Privacy Policy

"We recommend and encourage you (and all our members) to think carefully about the information you disclose about yourself. We also do not recommend that you put email addresses, URLs, instant messaging details, phone numbers, full names or addresses, credit card details, national identity numbers, drivers’ licence details and other sensitive information which is open to abuse and misuse on your profile."

"We may use your Registration and other information to:
offer you our services and features;
contact you with information about the App (e.g., updates and new features);
personalise the App/Sites and the content we deliver to you;
conduct research and analytics about how you use and interact with the App/Sites;
to test new technologies and processes designed to enhance and improve the App/Sites;
resolve disputes, troubleshoot problems and to enforce our Terms & Conditions;
investigate fraud, protect our legal rights, and to enforce our Terms & Conditions.
to send you information about the promotions and offers we have available (e.g., specify the types of goods/services/offers to be provided via direct marketing) by direct marketing or other modes of communication - if you've signed up for our communications or otherwise told us it’s OK. We will not use your information in email direct marketing unless you give us your consent during the Account creating process or via Settings in the App (you can withdraw from marketing at any time via Settings in the App or by using the opt-out mechanisms and links provided in each message); and
protect our Users and third parties from harm."

Bumble uses the following information "to send you marketing information about our events, offers and services": "Name, email address, postal address, Instagram handle and mobile phone number (CCPA Categories A and B)."

Bumble uses the following information "to serve advertisements on third party networks and measure the effectiveness of such ads": "Data about your visit to our Sites or App and action taken on those (for example if you downloaded our App or created an account with Bumble), IP address (and your estimated location based on your IP address), age and gender, device ID (CCPA Categories B, C, G, F and K)."

Bumble shares the following personal data with "Marketing Services Providers – To help us serve marketing and advertising on third party websites and applications and measure the effectiveness of our advertising campaigns. More information on this is available below": "Advertising identifier associated with your device (Device ID), estimated location (based on your IP address), age, gender and data about your visit to our Sites or App and action taken on those (for example if you downloaded our App or created an account with our App), hashed email address (for ‘custom audiences’ only) (CCPA Categories B, C, G, F and K)"

"Marketing Services Providers
We partner with providers of marketing services (such as Facebook for example) (‘Marketing Services Providers’) to help us market and advertise our App and services on third party websites and applications and measure the effectiveness of our advertising campaigns. For example:
to exclude you from advertising campaigns aimed at finding new users, if you already have a Bumble account;
to show Bumble adverts to users who have visited the Bumble App/Sites but haven’t yet created a Bumble account;
to create an audience for our advertisements of other potential users who have similar characteristics to you based on the information the Marketing Service Providers holds about you (also known as a Lookalike Audience); or
to include you in a ‘custom audience’ that will receive Bumble advertising content (a custom audience is essentially a list of people who we think are most likely to be interested in a particular advertisement).

We share a limited amount of your personal data with these Marketing Services Providers, such as:
the advertising identifier associated with your device (this is a random number assigned by your mobile device manufacturer (for example Apple or Google) to your device to help advertisers (including the manufacturer) know when an ad has been viewed or clicked in an app, and when an ad causes a ‘conversion’ (for example, downloading the app advertised to you))
your estimated location (based on your IP address)
age and gender
data about your visit to our Sites or App and action taken on those (for example if you downloaded our App, created an account with our App, or details of any purchases made on Site or in App)
a hashed* version of your email address (to create ‘custom audiences’). ...

In some cases, these third parties will also use the data that they collect for their own purposes, for example they may aggregate your data with other data they hold and use this to inform advertising related services provided to other clients."

"Using your social media details to sign in to Bumble
When you sign in to our App using your Facebook account, you give permission to Facebook to share with us your name and profile picture. Unless you opt-out, you also give permission to Facebook to share with us your email address (if there is one associated with your Facebook account), date of birth, profile photos, gender, Page likes and current town/city.

If you register or sign in with your Apple ID, you give Apple permission to share your Apple login, a name (that can be edited by you) and an email (you can choose to hide your email and Apple will create a random email address so your personal email can stay private). This email address will be linked to your Bumble account and will be used to retrieve your Bumble account.

We will then use this personal data to form your Bumble account. If you remove the Bumble app from your Facebook settings, or from your Apple ID, we will no longer have access to this data. However, we will still have the personal data that we received when you first set up your Bumble account using your Facebook or Apple ID (you must delete your Bumble account entirely for us to no longer have access to this data)."

"Geolocation Information
If you have given Bumble access to your location in your device settings, when you use your cell, we will collect information about WiFi access points as well as other location information about your longitude and latitude and may save your device’s coordinates to offer certain features to you. This information helps us identify your physical location and we use it to personalize the App and make it easier for you to interact with other Users, by enabling the general locality information to be displayed to Users seeing your profile and showing you the profiles of other Users who are near you.

If you have given Bumble access to your location, but wish to turn this off, you can do so by the following methods:
iPhone app — settings, privacy, location services, Bumble
Android — settings, location, Bumble, permissions, location"

"Unfortunately, no website or Internet transmission is ever completely 100% secure and even we cannot guarantee that unauthorized access, hacking, data loss or other breaches will never occur, but here are some handy tips to help keep your data secure:
Please make sure you log out of your Account after use as you never know who may stumble onto your Account!
Please don’t share the password you use to access your Bumble Account with anyone else!
Change your password periodically."

Do Not Share or Sell My Personal Information Page
"Your privacy choices
We use services that help improve marketing campaigns. (Learn more in our Privacy Policy).
Under certain privacy laws, this may be considered selling or sharing your personal information with our marketing partners.
You may opt out by choosing to turn on “Do not sell or share my personal information” below."

How can you control your data?

We ding this product as it is unclear if all users, regardless of location, can get their data deleted.

Privacy Policy

"Privacy laws applicable in your country may give you the following rights:

Right to be informed: what personal data an organisation is processing and why (we provide this information to you in this Privacy Policy).
Right of access: you can request a copy of your data.
Right of rectification: if the data held is inaccurate, you have the right to have it corrected.
Right to erasure: you have the right to have your data deleted in certain circumstances.
Right to restrict processing: in limited circumstances, you have the right to request that processing is stopped but the data retained.
Right to data portability: you can request a copy of certain data in a machine-readable form that can be transferred to another provider.
Right to object: in certain circumstances (including where data is processed on the basis of legitimate interests or for the purposes of marketing) you may object to that processing.
Rights related to automated decision-making including profiling: there are several rights in this area where processing carried out on a solely automated basis results in a decision which has legal or significant effects for the individual. In these circumstances your rights include the right to ensure that there is human intervention in the decision-making process.

The particular rights which are applicable to you <...> may vary depending on your country. You should make yourself aware of the rights you have under applicable privacy laws in your country."


We keep your personal information only as long as we need it for the legal basis relied upon (as set out in Section 2 above) and as permitted by applicable law. Please see “Profile Verification Information (Including Biometric Information)” in Section 1, above, to learn about our retention policy with respect to biometric information.
When your Account is deleted, we make sure it is no longer viewable in the App. For up to 28 days, it is still possible to restore your Account if it was accidentally deleted. After 28 days, we begin the process of deleting your personal information from our systems, unless:
we must keep it to comply with applicable law (for instance, if you make purchases within the App, some personal data may be kept for tax and accounting purposes);
we must keep it to evidence our compliance with applicable law (for example, if an account is blocked, we keep some account information and a record of the behavior that led to the block - this information is retained for evidential purposes in case of queries or legal claims concerning the block);
there is an outstanding issue, claim or dispute requiring us to keep the relevant information until it is resolved; or
the information must be kept for our legitimate business interests, such as fraud prevention and enhancing Users’ safety and security (for example, information may need to be kept to prevent a user who was banned for unsafe behavior or security incidents from opening a new account)."

What is the company’s known track record of protecting users’ data?

Needs Improvement

In November 2023, Ashley Ott filed a class action lawsuit against Bumble Inc., alleging that the app collects customer user biometric data.

In August 2021, it was reported that a vulnerability in Bumble dating app reveals user's exact location.

In November, 2020, it was reported that a bug left the personal information -- including things like political leanings, astrological signs, education, height and weight, and distance away in miles -- of nearly 100 million Bumble users exposed and vulnerable.

Child Privacy Information

"Although we want as many people as possible to enjoy our creation, you have to be at least 18 years old to use Bumble.

Bumble does not knowingly collect any information about or market to children, minors or anyone under the age of 18. If we become aware that a child, minor or anyone under the age of 18 has registered with us and provided us with personal information, we will take steps to terminate that person’s registration."

Can this product be used offline?


User-friendly privacy information?


Links to privacy information

Does this product meet our Minimum Security Standards? information




Strong password


Security updates


Manages vulnerabilities


Bumble runs a bug bounty program.

Privacy policy


Does the product use AI? information


"We use a combination of automated systems and a team of moderators to monitor and review accounts (including photos and any other information uploaded onto user profiles) and messages for content that indicates breaches of our Terms and Conditions of Use. If an account or message meets certain criteria that demonstrate that the Terms and Conditions of Use are likely to have been breached, the relevant account will be subject to a warning and the user’s access restricted and/or blocked. Affected Users can contact Bumble to contest the decision."

"Bumble Inc. has launched Deception Detector™, harnessing artificial intelligence (A.I.) to weed out fake, spam, or scam profiles on our app. In our tests so far, our Deception Detector™ machine learning model has demonstrated 99.5% precision in identifying these catfish and other fakers. Profiles deemed likely to be a scam by Deception Detector™ will have to go through a verification process to ensure they’re authentic, or could be removed from Badoo altogether."

Is this AI untrustworthy?

Can’t Determine

What kind of decisions does the AI make about you or for you?

Is the company transparent about how the AI works?

Can’t Determine

Does the user have control over the AI features?

Can’t Determine

*Privacy Not Included

Dive Deeper

  • You Don’t Need Facebook to Use Bumble Anymore
    Bumble Link opens in a new tab
  • Vulnerability in Bumble dating app reveals user's exact location
    Security Link opens in a new tab
  • Dating Site Bumble Leaves Swipes Unsecured for 100M Users
    Threat Post Link opens in a new tab
  • Bumble class action alleges app collects, customer user biometric data
    Top Class Actions Link opens in a new tab
  • Bumble’s new AI tool identifies and blocks scam accounts, fake profiles
    TechCrunch Link opens in a new tab


Got a comment? Let us hear it.