Card issuers, including big banks, have been doing that in writing for decades.
But the public now has access to much more information on credit card information and the kinds of companies that use them, according to the new report from the Consumer Financial Protection Bureau.
The CFPB’s latest analysis of card issuers found that a large majority of issuers are either too slow or don’t respond to the data requests they receive.
The report says the public has no reliable way to know what issuers actually collect, how much they charge, or whether they use any data.
CFPB director Richard Cordray, in a statement, called for “a national conversation about how to improve the transparency of credit card data.”
In recent months, the bureau has been conducting public hearings on data privacy.
A recent analysis by the Federal Trade Commission found that more than half of credit cards issued by major issuers were not required to report how much consumers paid for cards, and some did not.
The new report says a number of major issurs have been slow to update their websites and apps, and that some have stopped making the data available on its website and in the app.
For example, Citi, the largest U.S. credit card issuer, did not disclose how many of its cards were used by consumers.
The bureau said in a press release that Citi has a “very low” privacy policy, and said it would work with consumers to improve.
Other companies have been more transparent.
The CFPBC found that the number of credit reports that a company has in its database is not disclosed.
Some large issuers have “zero” data on credit reports, while other large issuees are not disclosing how many cards a company’s users have used.
Some issuers do not disclose which cards have been used by their customers.
And there are gaps in the public record on how many credit reports are collected, and how much data is being collected.
For instance, some card issuer websites and app allow consumers to view the names and card numbers of the cardholder and the number used by the card, but no information about the identity of the individual who uses the card.