Iubenda logo
Start generating


Table of Contents

PayPal and the GDPR – How to be compliant

What is “PayPal”?

PayPal is a secure online payment service provider. Customers can use PayPal to pay, transfer, and receive money digitally without sharing their personal financial information. Their services are available in over 200 countries and support 26 different currencies.

Do I need a Privacy Policy if I use PayPal for my website or app?

Yes, you do.
Privacy policies are required under most privacy legislations worldwide including the GDPR, CCPA/CPRA, LGPD and more.

If you use PayPal, you should add the “PayPal” service to your privacy policy. Among the Personal Data collected you may find:

  • trackers,
  • usage data,
  • first name,
  • last name,
  • phone number,
  • email address,
  • username,
  • password,
  • various types of data as specified in the privacy policy of the service,
  • billing address,
  • payment info,
  • device information,
  • purchase history.

For more information on how PayPal processes personal data, see their privacy policy or check their main website.

Do I need a Cookie Policy if I use PayPal for my website or app?

Yes, you do.

PayPal may install cookies on your visitors’ devices, as stated on their website. Therefore, you’ll likely need a Cookie Policy as well.

Not sure if your website is installing cookies?

🔍 Scan your site now →

Which cookies does PayPal use?

Name of cookie How long it lasts (max age in seconds)
akavpau_ppsd session
enforce_policy session
l7_az session
nsid session
ts session
tsrce session
x-cdn session
x-pp-s session

Do I need a Cookie Banner if I use PayPal on my website or app?

In general, websites that use third-party cookies as well as their own cookies for tracking and analytics must comply with the law and therefore are required to obtain the user’s express consent.

If you operate in Europe or could potentially have European users, you need to comply with the GDPR and ePrivacy.

Our Privacy Controls and Cookie Solution complies with provisions of the ePrivacy; it allows you to easily inform users, facilitate their consent and it includes the option to preemptively block any scripts that could install cookies prior to consent (required in many European countries).

→ Discover iubenda Privacy Controls and Cookie Solution
Quickly generate a fully customizable cookie banner, seamlessly collect consent, and implement prior blocking with asynchronous re-activation.

How to Create a GDPR Privacy and Cookie Policy for PayPal

With iubenda, you can easily declare which services your website uses to collect data. You can find the “PayPal” service in the “Handling payments” section of our Privacy and Cookie Policy Generator.

💡 Not sure what services to select and add to your privacy policy

Scan your website using our free Site Scanner to find out right away.

Trusted by over 90,000 clients in 100+ countries, iubenda is the most trusted and easiest way to generate and manage privacy & cookie policies and terms & conditions, consent records and more.

iubenda helps you to comply in minutes with Global laws like the European ePrivacy (Cookie Law), GDPR and US’s CPRA, and VCDPA .

Generate your Privacy Documents for PayPal