eBay transfers your personal data across international borders — including to countries outside the EU and UK — to other eBay group companies and third-party service providers.
Your personal data may be transferred to countries with lower privacy protections than your home country, and understanding the legal safeguards in place is important for assessing your actual privacy protections.
Cross-border transfers must comply with GDPR Chapter V and UK GDPR international transfer requirements post-Schrems II. Legal teams should verify that eBay's SCCs or BCRs are current with the European Commission's 2021 updated SCCs and that transfer impact assessments have been completed for high-risk transfer destinations.
Compliance intelligence locked
Regulatory citations, enforcement risk, and due diligence action items.
Watcher: regulatory citations. Professional: full compliance memo.
eBay collects an extensive range of personal data including financial details, government IDs, biometric data (for sellers), browsing behavior, and location data, and shares this information with advertising partners, payment processors, and other third parties for targeted marketing and fraud detection. Consumers' messages sent through eBay's platform may be filtered and scanned, and their data may be transferred internationally across eBay's global affiliates. You can manage your communication preferences, advertising settings, and submit data rights requests through eBay's Privacy Center at https://www.ebayinc.com/company/privacy-center/privacy-contact/.