When you buy something using Klarna, the company shares your name, address, and purchase details with the retailer to complete the transaction.
This analysis describes what Klarna's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
Your personal data flows to merchants when you use Klarna at checkout; the merchant's own privacy practices then govern how that data is used, which may be different from Klarna's own policy.
This new provision clarifies merchant data sharing scope and purpose, reducing ambiguity from the previous generic 'Data Sharing with Retail Merchants' provision.
View full change record →Each Klarna-facilitated purchase results in your personal data being shared with the retailer, and your data is then subject to that retailer's privacy policy in addition to Klarna's, which means your data protection may vary significantly depending on which retailer you purchase from.
How other platforms handle this
At Ledger, earning and maintaining our users' trust is a top priority. That's why we are deeply committed not only to protecting your privacy and securing your personal data, but also to being fully transparent about how we handle it.
If you are located in the European Economic Area, Switzerland, or the United Kingdom, you have the right to access, correct, or erase your personal data; the right to restrict or object to our processing of your personal data; the right to data portability; and, where our processing is based on your...
We use information to enhance the quality, reliability, and/or accuracy of our AI Features by creating, developing, training, testing, improving, and maintaining AI and ML models run by Strava or our service providers. We use aggregated, de-identified data for this purpose. We also use personal info...
Monitoring
Klarna has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 25 platforms.
"When you use Klarna to make a purchase, we may share relevant personal data with the merchant from whom you are purchasing, such as your name, delivery address, and transaction details, in order to fulfil your order and to enable the merchant to provide you with their products and services.— Excerpt from Klarna's Klarna Privacy Policy
REGULATORY LANDSCAPE: Data sharing between Klarna and merchants engages GDPR's requirements for lawful basis for sharing (contractual necessity for order fulfilment is the most likely basis) and may require data processing agreements between Klarna and merchants where Klarna acts as a controller sharing data with another controller or as a processor. Relevant enforcement authorities are national DPAs. In the US, FCRA requirements may apply where transaction data relates to credit decisions. GOVERNANCE EXPOSURE: Low to Medium. Transaction-related data sharing with merchants for order fulfilment is a standard and necessary operational practice. The compliance risk is primarily in whether adequate controller-to-controller data sharing agreements are in place with all merchants in Klarna's network, and whether the merchant's onward use of shared data is adequately disclosed to consumers. JURISDICTION FLAGS: EU merchants receiving Klarna user data must have appropriate data sharing agreements in place and may have independent obligations as data controllers regarding how they use and retain the shared data. Cross-border sharing with merchants outside the EU may require additional transfer safeguards. CONTRACT AND VENDOR IMPLICATIONS: Merchants integrating Klarna should review their data processing agreements with Klarna to confirm the scope of data received, permissible uses, retention limits, and obligations in the event of a data subject request. Merchants should assess whether the data received from Klarna requires updates to their own privacy policies. COMPLIANCE CONSIDERATIONS: Compliance teams should confirm that Klarna's merchant agreements include adequate data protection clauses, including restrictions on the merchant's use of shared consumer data beyond order fulfilment. Consumer-facing disclosures should make clear that merchant privacy practices apply independently to data shared at checkout.
Full compliance analysis
Regulatory citations, enforcement risk, and due diligence action items.
Free: track 1 platform + weekly digest. Monitor: 25 platforms + same-day alerts. No credit card required.
Compliance Governance Intelligence
Need to monitor specific governance provisions?
Compliance includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
Your personal data flows to merchants when you use Klarna at checkout; the merchant's own privacy practices then govern how that data is used, which may be different from Klarna's own policy.
Each Klarna-facilitated purchase results in your personal data being shared with the retailer, and your data is then subject to that retailer's privacy policy in addition to Klarna's, which means your data protection may vary significantly depending on which retailer you purchase from.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Klarna.