If you have a PayPal business profile, certain financial and business data — including how many unique customers paid you in the past year — is automatically made visible to all other PayPal users by default.
Removal of specific business profile disclosure provision eliminates explicit transparency about what information is publicly displayed to other users, reducing clarity for business account holders.
View full change record →PayPal business account holders have their customer volume and sales activity data automatically disclosed to all other PayPal users, which may reveal commercially sensitive information they did not intend to make public.
How other platforms handle this
Dropbox uses certain trusted third parties (for example, providers of customer support and IT services) for the business purposes of helping us provide, improve, protect, and promote our Services. These third parties will access your information to perform tasks on our behalf, and we'll remain respo...
Under the Gramm-Leach-Bliley Act, we are permitted to share with third parties, without regard to the customer choices, in connection with situations where we are required to disclose information, such as responding to subpoenas or tax reporting, and for typical business activities, such as sharing ...
Our Services allow messaging and sharing of information in many ways, such as your profile, social actions you take, videos, and so on. Information and content that you share or post may be seen by other Members, Visitors or others (including off of our Services). Where we have made settings availab...
Business account holders may not realize that PayPal publicly discloses transaction volume metrics (unique paying customers per year) to all other users without explicit opt-in, which could reveal sensitive competitive business information.
REGULATORY FRAMEWORK: CCPA/CPRA applies to personal information of sole proprietors and small business owners who may be natural persons. GDPR applies to personal data of individual business operators in EU/EEA. FTC Act Section 5 applies to deceptive defaults that result in unintended public disclosure of business performance data. State unfair business practice statutes may apply where default disclosure of competitive metrics causes economic harm.
Compliance intelligence locked
Regulatory citations, enforcement risk, and due diligence action items.
Watcher: regulatory citations. Professional: full compliance memo.
Your genetic data may be transferred to a new owner as a business asset. Here is what the Terms of Service actually say and what you can do right now.