This analysis describes what Affirm's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
User information is disclosed to third parties outside Affirm for security and fraud-related purposes, expanding the circle of entities that access personal data.
The updated Privacy Policy establishes that Affirm qualifies as a financial institution under the Gramm-Leach-Bliley Act, meaning personal information collected in connection with Affirm services is governed by federal banking law rather than applicable state privacy laws. The policy now explicitly discloses collection of identity and profile information including full name, date of birth, Social Security number, email, mailing address, phone number, and password. The updated terms also disclose new data sharing arrangements with fraud prevention, identity verification, and risk intelligence providers, which were not previously detailed. You can contact Affirm's privacy team using the phone number provided in the updated policy to exercise data privacy rights.
View change record →Affirm may share your personal information with third-party fraud prevention, identity verification, and risk intelligence providers.
How other platforms handle this
We will disclose personal information to companies that help us run our business to detect, prevent, or otherwise address fraud, deception, illegal activity, misuse of Adobe Services and Software, and security or technical issues.
disclosure is required by a third-party to complete a transaction initiated by the user
If we're involved in a reorganization, merger, acquisition, sale of some or all of our assets or other business transaction, depending on the circumstances, we may disclose any of the information described in Section 2 above...
Monitoring
Affirm has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 25 platforms.
"To third party fraud prevention, identity verification, and risk intelligence providers that help us detect, prevent, and investigate fraud, security incidents, and other harmful or unlawful activity.— Excerpt from Affirm's Affirm Privacy Policy
ConductAtlas detected a major restructuring of Meta’s privacy policy that removed detailed consumer rights disclosures and relocated them to separate documents.
Your genetic data may be transferred to a new owner as a business asset. Here is what the Terms of Service actually say and what you can do right now.
Compliance Governance Intelligence
Need to monitor specific governance provisions?
Compliance includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
User information is disclosed to third parties outside Affirm for security and fraud-related purposes, expanding the circle of entities that access personal data.
Affirm may share your personal information with third-party fraud prevention, identity verification, and risk intelligence providers.
ConductAtlas has identified this type of provision across 290 platforms. See the full comparison.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Affirm.