Track 1 platform and get the weekly governance digest. No credit card required.
This page describes what the document states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability may vary by jurisdiction. Methodology
This is Afterpay's privacy policy, explaining what personal and financial information the company collects when you use its buy-now-pay-later service to shop, how it uses that information, and who it may share it with. The most important thing to know is that Afterpay treats your continued use of its app or website as consent to all data practices described in the policy, including sharing your financial and behavioral data with retailers, affiliates, and third-party partners. The policy references state-specific rights for residents of California and certain other states, so if you live in one of those states you may have additional rights to access, delete, or limit the sharing of your personal information.
This Privacy Notice, issued by Afterpay US, Inc. with an effective date of March 16, 2026, governs the collection, use, disclosure, transfer, storage, and retention of personal information from customers who visit Afterpay's website, use its app, apply for or use an Afterpay account, or otherwise interact with its consumer-facing services. The document structures consent on a continuing-use basis, stating that 'by continuing to interact with our Services, you are consenting to the practices described in this Privacy Notice,' and outlines data flows spanning identity information, financial data, device and behavioral data, and information obtained from third-party sources including retailers and data brokers. A notable structural limitation of the provided document is that the accordion-style HTML rendering did not fully expose the substantive policy text within each section, meaning the specific data categories collected, third-party sharing partners, retention periods, and state-specific rights disclosures are referenced by section heading but their full content is not readable in the transmitted source; analysis is therefore grounded in the document's framework, stated scope, and visible structural elements. The notice references additional disclosures for residents of certain U.S. states and a separate U.S. Consumer Privacy Notice, indicating engagement with state privacy frameworks including the California Consumer Privacy Act and potentially other state statutes such as Virginia's CDPA, Colorado's CPA, and similar laws; as a buy-now-pay-later payment services provider, Afterpay's data practices also engage the Consumer Financial Protection Bureau's jurisdiction under the Gramm-Leach-Bliley Act and the FTC Act. The document's reliance on continuing-use consent as the primary mechanism for agreement, combined with the breadth of its stated collection and processing scope across a BNPL financial services context, creates material compliance considerations under both state privacy law and federal financial privacy regulation, particularly regarding the adequacy of notice and the scope of permissible data sharing.
Institutional analysis available with Professional
Regulatory exposure by statute, material risk assessment, vendor due diligence action items, and enforcement precedent. Available on Professional.
Start Professional free trialMonitoring
Afterpay has updated this document before.
Watcher includes same-day alerts, structured change summaries, and monitoring for up to 10 platforms.
Professional Governance Intelligence
Need provision-level monitoring and regulatory mapping?
Professional includes governance timelines, compliance memos, audit-ready analysis, and full provision tracking.
Start Professional free trialCross-platform context
See how other platforms handle Implied Consent by Continued Use and similar clauses.
Compare across platforms →Governance Monitoring
Structured alerts for policy changes, governance events, and provision updates across 318+ platforms.