CreditKarma uses outsourcing to develop mobile applications and internal software developers did not know that certain code was invalidated during the testing of the final product. CreditKarma has published an Android version of the application after one month after solving the problem of iOS after the user has infiltrated the application and informed that the user has this vulnerability, does not properly investigate the problem, Android applications will test the previously verified vulnerability in the application to reproduce this vulnerability. It is the same security error.
The official position of this assertion and associated organization is that serious data loss has not been reported and the problem has been resolved, limited to mobile applications. As a result of the agreement, the company has established a security product group and receives an independent security assessment every two years. Dispute resolution also requires security transparency by banning product privacy.
All personal information collected on CreditKarma’s website is not sold to third parties. Also, credit score data is not shared with users, not with third parties. The service contract of CreditKarma conflicts with some data. In the case of a beginner, CreditKarma retains the right to access, maintain, transfer, and disclose information in accordance with the government’s request and maintain the terms of service. In addition, rights are protected to protect third party security, ownership or security and detect, prevent or resolve security or technology fraud. You can access, use, or transfer personal information without notifying CreditKarma users