By using Affirm, you authorize the company to share your personal information and transaction history with merchants, service providers, and other partners.
This analysis describes what Affirm's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
Your transaction data and personal information may be shared with the merchants where you shop using Affirm and with other third parties, which affects your privacy beyond the Affirm platform itself.
Interpretive note: The full scope of data sharing is determined by the Privacy Policy, which is a separate document; the terms of that document are not fully assessable from this terms of service alone.
This provision means that personal information, including your name, contact details, and purchase history, may be shared with merchants and third-party service providers, and the full scope of that sharing is governed by Affirm's separate Privacy Policy.
How other platforms handle this
We may receive information, including the following, from third party sources and combine it with information we already directly collect from you. We will handle the information in accordance with this Privacy Policy. Game, social media, or other information, from those third parties or services yo...
We may share your personal information with our affiliates, meaning entities that control, are controlled by, or are under common control with Consensys. We also share information with service providers who assist in operating our services, subject to confidentiality obligations.
At Ledger, earning and maintaining our users' trust is a top priority. That's why we are deeply committed not only to protecting your privacy and securing your personal data, but also to being fully transparent about how we handle it.
Monitoring
Affirm has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 25 platforms.
"By using the Services, you authorize Affirm to share your information, including personal information and information related to your transactions and use of the Services, with merchants, service providers, and other third parties as further described in our Privacy Policy.— Excerpt from Affirm's Affirm Terms of Service
REGULATORY LANDSCAPE: Data sharing practices in consumer financial services engage the Gramm-Leach-Bliley Act, which governs the sharing of nonpublic personal information by financial institutions and requires annual privacy notices and opt-out rights for certain data sharing. The FTC enforces GLBA privacy requirements for non-bank financial institutions such as Affirm. California residents have additional rights under the CCPA, including the right to know what data is shared, the right to opt out of data sale, and the right to deletion. GOVERNANCE EXPOSURE: Medium. The delegation of data sharing scope to a separate Privacy Policy creates a governance structure where users must review two documents to understand the full extent of data sharing authorized by account creation. Compliance teams should confirm that the Privacy Policy is incorporated by reference in a legally effective manner and that GLBA-required notices are current. JURISDICTION FLAGS: California residents have CCPA rights that may include the right to opt out of certain data sharing with third parties that constitutes a sale under the CCPA definition. Compliance with Virginia CDPA, Colorado Privacy Act, and other state privacy laws may create additional obligations depending on where users reside. CONTRACT AND VENDOR IMPLICATIONS: Merchant partners receiving consumer data through Affirm's sharing framework should ensure their own data handling practices comply with applicable privacy laws, as merchant receipt of Affirm user data may create independent GLBA or CCPA obligations for those merchants. COMPLIANCE CONSIDERATIONS: Legal teams should confirm that the data sharing authorization in these terms is consistent with current GLBA and CCPA disclosure and opt-out requirements. An audit of the third-party recipients receiving consumer data under this authorization is recommended to ensure all downstream sharing is documented in the Privacy Policy.
Full compliance analysis
Regulatory citations, enforcement risk, and due diligence action items.
Free: track 1 platform + weekly digest. Monitor: 25 platforms + same-day alerts. No credit card required.
ConductAtlas detected a major restructuring of Meta’s privacy policy that removed detailed consumer rights disclosures and relocated them to separate documents.
Your genetic data may be transferred to a new owner as a business asset. Here is what the Terms of Service actually say and what you can do right now.
Compliance Governance Intelligence
Need to monitor specific governance provisions?
Compliance includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
Your transaction data and personal information may be shared with the merchants where you shop using Affirm and with other third parties, which affects your privacy beyond the Affirm platform itself.
This provision means that personal information, including your name, contact details, and purchase history, may be shared with merchants and third-party service providers, and the full scope of that sharing is governed by Affirm's separate Privacy Policy.
ConductAtlas has identified this type of provision across 9 platforms. See the full comparison.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Affirm.