my529 is committed to safeguarding privacy.

This privacy policy sets out how my529 collects, uses, and protects personal information you or your client provide while visiting this website or submit via mail or email. For more information about the services we provide, see the Program Description.

What personal information we collect

my529 gathers personal information, such as your client’s name, telephone number, email address, billing address, IP address, U.S. Social Security or Taxpayer Identification Number, and date of birth from these sources:

  • Account Agreements or other forms submitted to my529
  • my529’s website, by means of cookies and similar text files
  • Transactions with my529 or other institutions, such as banks and credit unions, that affect your client’s my529 account
  • Third parties that your client designates to have access to his or her account(s)

How we use your client’s personal information

We use your client’s personal information to enable access and use of our services on this website, and to transact business with your client, including to establish and maintain our relationship.

Disclosure of your personal information

my529 does not sell information about a current or former account owner or beneficiary to third parties.

my529 restricts access to private personal information about an account owner to persons authorized to have access to such information or to employees who need to know such information to provide account services to the account owner.

my529 does not disclose any private information about a current or former account owner or beneficiary to anyone, except with his or her express permission, when needed to complete transactions, as required by law, or in other legally limited circumstances such as to prevent fraud or report suspicious activity.

my529 may share your client’s personal information with others, such as:

  • Our affiliates, government entities, and regulatory bodies
  • People or entities with whom your client has requested us to share information
  • Other third parties we use to support our services, including, for example, companies that provide us with technical support and assistance concerning this website, contractors and service providers, financial institutions that process payments, and banks or other organizations that require certain information to complete account changes you or your client direct
  • A buyer or other successor in the event of a merger, divestiture, restructuring, reorganization, dissolution, or other sale or transfer of some or all of my529’s assets

In instances when my529 discloses information about the account owner to an outside party, the outside party will receive only the information necessary to carry out its assigned duties, and only for that purpose. The outside party is required to treat the information as confidential.

my529 maintains physical, electronic, and procedural safeguards that comply with federal regulations to protect personal information.

How my529 protects your privacy online

my529 uses some of the most secure forms of online communication available, including data encryption, Secure Sockets Layer (SSL) protocol, usernames and passwords, and site-to-user authentication. my529 uses extended validation (EV) certificate technology to guard against “phishing” attacks. Many internet browsers, such as Chrome, Firefox, Internet Explorer, and Safari, recognize my529’s EV certificate by displaying my529’s web address in green in the browser address bar.


This website uses cookies. By using this website, you and your client consent to my529’s use of cookies in accordance with the terms of this privacy policy. Cookies are files sent by web servers to web browsers and are stored by the web browsers. The information is then sent back to the server each time the browser requests a page from the server. This enables a web server to identify and track web browsers.

There are two types of cookies: session cookies and persistent cookies. Session cookies are deleted from your or your client’s computer when you or your client close a browser, whereas persistent cookies remain stored on a computer until deleted or until they reach their expiration date. You or your client may refuse to accept cookies by adjusting browser settings. However, if you or your client refuse to accept cookies, the website experience may be degraded. Unless you or your client have adjusted browser settings so that it will refuse cookies, our system will issue cookies when you or your client visit our website.

External links

This website may, from time to time, contain links to external sites operated by third parties. We are not responsible for these third-party sites or the content of such third-party sites. Once you or your client have left this website, we cannot be responsible for the protection and privacy of any information that you or your client provide. You and your client should exercise caution and look at the privacy policy of any websites you and your client visit.

Children under the age of 13

This website is not intended for children under 13 years of age, and we do not knowingly collect personal information from children under 13. If you are under 13, do not use or provide any information on this website or on or through any of its features and do not make any purchases through the website. If we learn we have collected or received personal information from a child under 13 without verification of parental consent, we will delete that information. If you believe we might have information from or about a child under 13, please contact us as described below.

California Residents

California Civil Code Section § 1798.83 permits users of our website that are California residents to request certain information regarding our disclosure of personal information to third parties for their direct marketing purposes. To make such a request, you may contact us as described below.

Contact us

If you have any questions or concerns regarding this privacy policy, please contact us at or by mail at:

PO Box 145100
Salt Lake City, UT 84114-5100

Please note that email communications are not necessarily secure. Accordingly, you and your client should not include credit card information or other sensitive information in your email correspondence to us.

Changes to this privacy policy

my529 reserves the right to change this privacy policy. Any changes to this privacy policy will become effective upon posting of the revised privacy policy on this website. If we make material changes to this privacy policy, we will notify you and your client by means of a prominent notice on this website prior to the change becoming effective.

Last updated: October 2020