Michigan Coastal Credit Union is committed to protecting the privacy of each member's financial records consistent with state and federal laws. MCCU will take prudent and reasonable measures to safeguard the accuracy and privacy of all member information including information used wile conducting business via the internet, ATM network, wire services, telephone, the U.S. mail and other means of communication. Article XIX, Section 2 of MCCU bylaws requires its officers, directors, members of committees, and employees to "hold in confidence all transactions of this credit union with its members and information respecting their personal affairs." We are required by law to give you this privacy notice to explain how we collect, use and safeguard your personal financial information. If you have any questions, please contact a member service representative at 1-231-777-3620.

Information We Collect About You

We collect nonpublic personal information about you from the following sources:

Information we receive from you on applications and other forms, such as:

• Your Name
• Address
• Social Security Number
• Assets
• Income

Information about your transactions with us, our affiliates, or others such as:

• Your Account Balance
• Payment History
• Parties to Transactions
• Credit Card Usage

Information we receive from a consumer reporting agency, such as:

• Your Credit Worthiness
• Credit History

Information obtained when verifying the information you provide on an application or other forms. This may be obtained from your current or past employers, or from other institutions where you conduct financial transactions.

• Michigan Coastal Credit Union uses "cookies" as part of its web site interface. A "cookie" is a small file that is placed on the user's computer. While it contains no Member information, it identifies the Member’s computer and allows the Credit Union to measure usage of the web site and customize the web site experience. The Credit Union will disclose whether it collects cookies on its web site. If you choose not to enable cookies on your browser, you will not be able to use some of the services offered on Michigan Coastal Credit Union's Web sites.

Information We Disclose About You

We may disclose all the information we collect, as described previously, to companies that perform marketing services on our behalf (for example, check printing companies) or to other financial institutions with whom we have joint marketing agreements. To protect our member's privacy, we only work with companies that agree to maintain strong confidentiality protections and limit the use of information we provide. We do not permit these companies to sell the member information we provide to other third parties.

In order to conduct the business of the credit union, we may also disclose nonpublic personal information about you under other circumstances as permitted or required by law. These disclosures typically include information to process transactions on your behalf, conduct the operations of our credit union, follow your instructions as your authorize or protect the security of our financial records.

If you terminate your membership with Michigan Coastal Credit Union, we will not share information we have collected about you, except as permitted by law.

How We Protect Your Information

We restrict access to nonpublic personal information about you to the employees who have a specific business purpose viewing your data. Our employees are trained in the importance of maintaining confidentiality and member privacy. We maintain physical, electronic and procedural safeguards that comply with federal regulations and leading industry practices to safeguard your nonpublic personal information.

What You Can Do to Protect Your Privacy

Michigan Coastal Credit Union is committed to protecting the privacy of its members. Members can help by following these simple guidelines:

• Protect your account numbers, card numbers, PINs and passwords. Never keep your PIN with your ATM, Debit Card or Credit Card, which can provide free access to your account if your card is lost or stolen.
• Use caution when disclosing your account numbers, social security numbers, etc. to other persons. If someone call you, explains the call on behalf of the credit union and asks for your account number, you should beware. Official credit union staff will have access to your information and will not need to ask for it.
• Keep your information with the credit union current. It is important that we have current information on how to reach you. If you detect potentially fraudulent, unauthorized activity or use of an account, we will attempt to contact you immediately. If your address or phone number changes, please let us know.

If you have any questions concerning this notice, please do not hesitate to call us - we are here to serve you.

Additional Web Information

Michigan Coastal Credit Union recognizes the importance of protecting the privacy of personal information about our members and it is our goal to protect the information in every way we interact with you, whether it is in a branch, at one of our ATMs, on the telephone or on-line through the Internet and web site. In order to comply fully with Federal, State and NCUA regulations, we have prepared the following E-Privacy Statement.

Changes

From time to time we may amend our privacy policy. If we do, we will display a prominent notice of change on our home page, www.michigancoastal.com, with a link to the policy, and with the most recent changes highlighted.

Terms of Use Agreement

When you access the Michigan Coastal Credit Union (MCCU) site, you indicate your acknowledgment and acceptance of these terms and conditions. MCCU maintains this Site to provide you with information about credit union products and services and to facilitate communication with MCCU and related Credit Union Service Organizations. From time to time we may revise these terms and conditions. We will use our best efforts to include accurate and up-to-date information on the Site, but we make no warranties or representations as to the accuracy of the information. You agree that all access and use of the Site and its contents is at your own risk.

By using the Site, you acknowledge that we specifically disclaim any liability (whether based in contract, tort, strict liability or otherwise) for any direct, indirect, incidental, consequential, or special damages arising out of or in any way connected with your access to or use of the Site, (even if we have been advised of the possibility of such damages) including liability associated with any viruses which may infect a user's computer. MCCU provides links to other sites. In this capacity, MCCU is acting only as a distributor of information. With regard to services or products purchased or obtained by you through the Site links, from a person or entity other than MCCU, the credit union makes no warranty of merchantability or warranty of fitness for a particular purpose with regard to such services and products and MCCU specifically disclaims all other warranties with regard to such services or products.

Effective Date: March 28, 2025

BIOMETRIC INFORMATION PRIVACY POLICY AND CONSENT

Scope and Overview

This policy outlines how Michigan Coastal Credit Union, its vendors, and/or the licensor of the Northern Lights Federal Credit Union’s consumer verification software processes biometric data collected from you for identity verification and fraud prevention purposes.

Biometric Data Defined

As used in this policy, biometric data includes “biometric identifiers” and “biometric information”. “Biometric identifier” means a retina or iris scan, fingerprint, voiceprint, or scan of hand or face geometry. As the term is used in this policy, the selfie photograph you upload to the software for use in the biometric algorithm is considered a "biometric identifier." “Biometric information” means any information, regardless of how it is captured, converted, stored, or shared, based on an individual’s biometric identifier used to identify an individual.

Disclosure and Authorization Policy

To the extent that Michigan Coastal Credit Union, its vendors, and/or the licensor of the Michigan Coastal Credit Union ’s consumer verification software collect, capture, or otherwise obtain biometric data relating to a consumer, Michigan Coastal Credit Union must first:

Inform each consumer that Michigan Coastal Credit Union, its vendors, and/or the licensor of the Michigan Coastal Credit Union ’s consumer verification software are collecting, capturing, or otherwise obtaining the consumer’s biometric data, and that the Michigan Coastal Credit Union is providing such biometric data to its vendors and the licensor of the Michigan Coastal Credit Union ’s consumer verification software;

Inform the consumer of the specific purpose and length of time for which the consumer’s biometric data is being collected, stored, and used; and

Receive consent by the consumer authorizing Michigan Coastal Credit Union , its vendors, and/or Michigan Coastal Credit Union ’s consumer verification software to collect, store, and use the consumer’s biometric data for the specific purposes disclosed by the Michigan Coastal Credit Union , and for Michigan Coastal Credit Union to provide such biometric data to its vendors and the licensor of the Michigan Coastal Credit Union ’s consumer verification software.

Michigan Coastal Credit Union , its vendors, and/or the licensor of the Michigan Coastal Credit Union ’s consumer verification software will not sell, lease, trade, or otherwise profit from employees’ biometric data; provided, however, that the Michigan Coastal Credit Union ’s vendors and the licensor of the Michigan Coastal Credit Union ’s consumer verification software may be paid for products or services used by Michigan Coastal Credit Union that utilize such biometric data.

This policy is intended to comply with all federal, state, and local laws.

Purpose for the Collection of Biometric Data

Michigan Coastal Credit Union, its vendors, and/or the licensor of Michigan Coastal Credit Union ’s consumer verification software collect, store, and use biometric data solely for identity verification and fraud prevention purposes.

Disclosure

Michigan Coastal Credit Union will not disclose or disseminate any biometric data to anyone other than its vendors and the licensor of the Michigan Coastal Credit Union ’s consumer verification software providing products and services using biometric data without/unless:

First obtaining consumer consent to such disclosure or dissemination.

The disclosed data completes a financial transaction requested or authorized by the consumer;

Disclosure is required by law or ordinance; or

Disclosure is required pursuant to a valid warrant or subpoena issued by a court of competent jurisdiction.

Security

Michigan Coastal Credit Union shall use a commercially reasonable standard of care to store, transmit and protect from disclosure any biometric data collected. Such storage, transmission, and protection from disclosure shall be performed in a manner that is the same as or more protective than the manner in which Michigan Coastal Credit Union stores, transmits and protects from disclosure other confidential and sensitive information, including personal information that can be used to uniquely identify an individual or an individual’s account or property, such as genetic markers, genetic testing information, account numbers, PINs, driver’s license numbers and social security numbers.

Retention

Michigan Coastal Credit Union shall retain consumer biometric data only until, and shall request that its vendors and the licensor of Michigan Coastal Credit Union ’s consumer verification software permanently destroy such data when, the first of the following occurs:

The initial purpose for collecting or obtaining such biometric data has been satisfied, such as verification of consumer identity;

Request of consumer to destroy the biometric data; or

Within 30 days of consumer’s provisioning of biometric data.

Contact Information

If you have any questions about our use, storage, or security of your biometric data you can contact us at info@michigancoastal.com

BIOMETRIC INFORMATION CONSUMER CONSENT

As outlined in the “Biometric Information Privacy Policy”, I understand and consent to the collection, use, retention, storage, and/or disclosure or re-disclosure of data or images from biometric verification technology by Michigan Coastal Credit Union , its vendors, and/or the licensor of the Michigan Coastal Credit Union ’s consumer verification software. I acknowledge that I have been given a copy of the Policy, or that the Policy has been made accessible to me, and I have had an opportunity to review it and request any additional information concerning the Michigan Coastal Credit Union ’s procedures and safeguards for collecting, maintaining, using, disclosing, sharing, storing, and/or destroying this data.