By using Affirm, you authorize the company to share your personal information and transaction history with merchants, service providers, and other partners.
This analysis describes what Affirm's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
Your transaction data and personal information may be shared with the merchants where you shop using Affirm and with other third parties, which affects your privacy beyond the Affirm platform itself.
Interpretive note: The full scope of data sharing is determined by the Privacy Policy, which is a separate document; the terms of that document are not fully assessable from this terms of service alone.
This provision means that personal information, including your name, contact details, and purchase history, may be shared with merchants and third-party service providers, and the full scope of that sharing is governed by Affirm's separate Privacy Policy.
How other platforms handle this
When you ask us to open an Account, we or someone acting for us will ask for information about you and where the money you will put in your Account comes from. We do this for a number of reasons, including to check your credit score and identity, and to meet our legal and regulatory requirements. Ou...
We may share your personal information with third parties, including service providers, financial institutions, regulatory authorities, and fraud prevention agencies, where necessary to provide our services, comply with legal obligations, or protect against fraud and financial crime.
We share your personal data with your consent or as necessary to complete any transaction or provide any product you have requested or authorized. We also share data with Microsoft-controlled affiliates and subsidiaries; with vendors or agents working on our behalf for the purposes described in this...
Monitoring
Affirm has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 10 platforms.
"By using the Services, you authorize Affirm to share your information, including personal information and information related to your transactions and use of the Services, with merchants, service providers, and other third parties as further described in our Privacy Policy.— Excerpt from Affirm's Affirm Terms of Service
REGULATORY LANDSCAPE: Data sharing practices in consumer financial services engage the Gramm-Leach-Bliley Act, which governs the sharing of nonpublic personal information by financial institutions and requires annual privacy notices and opt-out rights for certain data sharing. The FTC enforces GLBA privacy requirements for non-bank financial institutions such as Affirm. California residents have additional rights under the CCPA, including the right to know what data is shared, the right to opt out of data sale, and the right to deletion. GOVERNANCE EXPOSURE: Medium. The delegation of data sharing scope to a separate Privacy Policy creates a governance structure where users must review two documents to understand the full extent of data sharing authorized by account creation. Compliance teams should confirm that the Privacy Policy is incorporated by reference in a legally effective manner and that GLBA-required notices are current. JURISDICTION FLAGS: California residents have CCPA rights that may include the right to opt out of certain data sharing with third parties that constitutes a sale under the CCPA definition. Compliance with Virginia CDPA, Colorado Privacy Act, and other state privacy laws may create additional obligations depending on where users reside. CONTRACT AND VENDOR IMPLICATIONS: Merchant partners receiving consumer data through Affirm's sharing framework should ensure their own data handling practices comply with applicable privacy laws, as merchant receipt of Affirm user data may create independent GLBA or CCPA obligations for those merchants. COMPLIANCE CONSIDERATIONS: Legal teams should confirm that the data sharing authorization in these terms is consistent with current GLBA and CCPA disclosure and opt-out requirements. An audit of the third-party recipients receiving consumer data under this authorization is recommended to ensure all downstream sharing is documented in the Privacy Policy.
Full compliance analysis
Regulatory citations, enforcement risk, and due diligence action items.
Free: track 1 platform + weekly digest. Watcher: 10 platforms + same-day alerts. No credit card required.
ConductAtlas detected a major restructuring of Meta’s privacy policy that removed detailed consumer rights disclosures and relocated them to separate documents.
Your genetic data may be transferred to a new owner as a business asset. Here is what the Terms of Service actually say and what you can do right now.
Professional Governance Intelligence
Need to monitor specific governance provisions?
Professional includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
Your transaction data and personal information may be shared with the merchants where you shop using Affirm and with other third parties, which affects your privacy beyond the Affirm platform itself.
This provision means that personal information, including your name, contact details, and purchase history, may be shared with merchants and third-party service providers, and the full scope of that sharing is governed by Affirm's separate Privacy Policy.
ConductAtlas has identified this type of provision across 6 platforms. See the full comparison.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Affirm.