GDPR / Paypal Cookies (documentation?)

  • Resolved t.schwarz

    (@tschwarz-1)


    1 year, 3 months ago

    Hi,

    I have a question regarding the cookies set by Paypal Payments with respect to GDPR requirements. Many of the cookies set by payment service providers can be considered necessary and thus don’t require user consent (through a cookie banner). However, some of the cookies set by paypal, specifically with respect to paypal express checkout are commonly considered non-necessary and thus do require user consent (by eg, banner).

    I’m thus wondering about the cookie-implementation of this plugin, but couldn’t find any documentation. Which cookies are set and read when? Are cookies set/read before there is any interaction with paypal. Are Smart Buttons on product pages / on the cart page / the checkout page different from Paypal Express Checkout Buttons?

    Thanks for a brief reply and explanation!

Viewing 4 replies - 1 through 4 (of 4 total)
  • Thread Starter t.schwarz

    (@tschwarz-1)

    To follow up on my question specifically – is it correct that cookies and scripts for the paypal smart-buttons are set/loaded on every page on which the buttons are displayed even *if they are not actually shown* because, eg. a different payment method is chose by default? If so, is it technically inevitable to do it that way and not only load the scripts and set cookies once a user clicks on paypal payments to choose this payment method, thus indicating specifically their intent to use paypal?

    Plugin Support Krystian

    (@inpsydekrystian)

    Hello @tschwarz-1

    Firstly, it’s important to note that the PayPal Payments plugin itself does not actively set any cookies. The cookies you’re referring to are likely from the PayPal JavaScript SDK, which is loaded on pages where PayPal buttons or messaging features are enabled. The plugin serves as a medium to enqueue the PayPal SDK, but it does not control the SDK’s internal operations, including cookie management.

    Therefore, the cookies set by the PayPal SDK are part of PayPal’s domain and its compliance with GDPR or other privacy regulations.

    Regarding your question about Smart Buttons and PayPal Express Checkout buttons, there should not be any significant differences in terms of cookie handling. Whether the buttons are placed on product pages, cart pages, or checkout pages, they all enqueue the PayPal SDK, which then manages any subsequent cookie-related processes.

    This topic has already been discussed here earlier under this link. However, the current landscape offers more options. If you are concerned about the PayPal scripts on your Checkout page about GDPR, a new feature now allows the disabling of checkout smart buttons. This can be achieved through a specific filter, which you can find here: Disable Checkout Smart Buttons. Please note, that disabling these buttons means you would lose access to advanced features such as Alternative Payment Methods (APMs), Vaulting, Subscriptions, etc., as the gateway will then only redirect to the PayPal website for transactions.

    I hope this clarifies the confusion.

    Kind regards,
    Krystian

    Plugin Support Krystian

    (@inpsydekrystian)

    Hello,

    Since we did not receive any response or follow-up questions from you, we assume it is solved. If you still have any more questions for us, please open a new thread, because we will mark this one as resolved.

    Kind regards,
    Krystian

    Thread Starter t.schwarz

    (@tschwarz-1)

    Hi Krystian, I didn’t get a notification that there was a reply. Thanks for your reply, including the link, which absolutely helps decide the matter at hand.

Viewing 4 replies - 1 through 4 (of 4 total)
  • The topic ‘GDPR / Paypal Cookies (documentation?)’ is closed to new replies.