Log In with PayPal best practices

Log In with PayPal (formerly PayPal Access) is a safe, secure, and easy way to allow customers to log in to your website using a PayPal account. After customers consent to sharing non-financial account attributes, merchants can use this information to create a new account for the customer on the merchant's website and to expedite the checkout process.

Customer convenience

Customers already associate their PayPal account with shopping and paying online. Log In with PayPal conveniently combines several customer interactions involving logging in and sharing data with your website into just one step from the end-user perspective. Customers' financial information is not shared with merchants, we simply allow access into your website without requiring customers to remember yet another username or password.

Customers who log in with PayPal and choose to remain logged in are recognized for up to eight hours following initial log in and might be able to skip an additional log in at checkout. Also, the Log In with PayPal screens are responsively designed so the experience is optimized for both desktop and mobile browsers.

Simple integration

From start to finish, enabling PayPal as a log in mechanism for your website should take only a matter of minutes. The integration guide walks you through the steps and provides sample code. This guide also shows that the seamless checkout feature of Log In with PayPal requires only a 1-line change to your existing Express Checkout integration.

PayPal also recommends best practices to merchants supporting Log In with PayPal.


Best practices for merchants

  1. Create a simple user experience
  2. Maintain customer confidence
  3. Expedite checkout
  4. Frequently asked questions

Create a simple user experience

Button selection and placement

You can place the Log In with PayPal button anywhere on your website. To maintain a simple user experience, PayPal recommends:

Display the Login with PayPal button in a highly visible location, such as in your website header where other triggers to log in or register exist. Clearly displaying the familiar PayPal brand on your website can increase customer confidence.

Additionally, place the Log In with PayPal button on your dedicated log in or registration page. Customers who do not wish to complete a registration form to purchase goods or services from your website can log in with their PayPal accounts. You can use the non-financial customer profile information that you obtain, with the customer's consent, to automatically create accounts for customers who would like to utilize native features, such as a wishlist, or transact on your site.

The standard Log In with PayPal blue button is recommended because the blue color is recognizable as a PayPal element of brand. However, we also provide a grey button for for websites with a neutral or very specific color palette or theme.

Session management

Customers who log in with PayPal and choose to remain logged in are recognized for a certain period following the initial log in. Session persistence conveniently eliminates the need for multiple user log ins to your website. Also, within that window, the customer is recognized at other websites that support Log In with PayPal, but the customer is prompted to consent to share information with these subsequent websites. The customer can also choose, when logging into your website, to skip an additional log in at checkout; however, for security reasons, skipping log in at checkout can only take place within an hour from customer log in.

PayPal recommends that merchants maintain their own sessions to facilitate a smooth user experience for customers. When an access token is obtained from PayPal for each user, a refresh token is also received. PayPal's refresh tokens are valid for longer than access tokens. Merchants must track session times to determine when to refresh access tokens.

Log in page   Log in page for customer with preexisting session

 

Log out user

If your website includes a native log out feature, PayPal recommends that merchants refrain from disconnecting the Log In with PayPal session when the user logs out of your site. This eliminates the need to reestablish the connection to PayPal if the customer returns to your site within a certain period of time.

Return to best practices for merchants

Maintain customer confidence

Customers who use PayPal to log in to a merchant's website can speed through checkout and payment by consenting to share non-financial information with the merchant. As such, PayPal recommends that merchants ask customers to share only the minimum amount of information necessary to complete the checkout process. PayPal prefers that merchants request only the basic account information:

  • Name (First, Last or Full)
  • Email Address
  • Address (Street Address, City, State, Postal Code, Country)
  • Phone Number

Merchants should request additional attributes only when necessary:

  • Locale
  • Language
  • Time Zone
  • Date of Birth
  • Age Range
  • Gender
  • Verified Account
  • Account Type
  • Account Creation Date

If a customer clicks "No thanks" to cancel out of the Log In with PayPal consent flow, PayPal recommends that merchants redirect the customer back to the page where the Log In with PayPal flow was initiated, for example, the account creation or sign in page on the merchant's website.

Note: PayPal won't share customers' financial information with merchants.

Anti-spam policy

PayPal asks merchants to agree to its anti-SPAM policy when offering Log In with PayPal. Merchants must not automatically sign up Log In with PayPal customers to receive email newsletters or regular communication from the merchant. The only time customers should receive email from the merchant is after making a purchase, in which case the customer should receive regular and customary email regarding the order confirmation, a receipt, and shipping information. If the merchant wishes to send email beyond this level of communication, merchants are required to explicitly request permission from the customer.

Duplicate accounts and linking

PayPal recommends that Merchants who already maintain consumer accounts and who are just starting to support Log In with PayPal give customers the option to link pre-existing merchant consumer accounts with a PayPal account. This link can be established based on information obtained from the customer's non-financial user attributes obtained from the Log In with PayPal session, such as the customer's email address or PPID.

PayPal recommends merchants scan for duplicate accounts in real time, during the Log In with PayPal customer session. However, if scanning for duplicates in real time is not feasible, we recommend merchants perform an offline scan and notify customers via email with a request to reconcile accounts. Linking the two accounts eliminates duplication in merchant databases and allows the customer to access historical purchase information for purchases completed with a merchant user account.

Unlinking a PayPal account

If **customers** elect to discontinue use of Log In with PayPal on the merchant site, PayPal recommends providing customers who have linked accounts with the option to unlink their PayPal account from their merchant website account. This option requires that merchants also provide customers with the capability to create a user name and password for the merchant's website.

If a **merchant** decides to discontinue support for the Log In with PayPal feature, the merchant must request customer permission to unlink the merchant website account from the customers' PayPal account from customers who already linked these accounts. Merchants may need to provide customers with the ability to set a merchant website account password during this unlinking process.

Return to best practices for merchants

Expedite checkout

To provide an expedient and reliable customer checkout experience, PayPal recommends the following best practices:

Pre-filled checkout forms

PayPal expects merchants to pre-fill checkout forms with the customer information obtained from the Log In with PayPal session.

Personalize checkout

Merchants should not require customers to re-enter information that PayPal has already provided. Merchants can leverage information already obtained from the Log In with PayPal session to personalize the checkout experience, for example, using the customer's zipcode to calculate shipping charges.

Account information

On the order confirmation page, display the customer's basic account information as read-only text. This allows the customer to review information such as the shipping address before finalizing the purchase. PayPal also recommends allowing the customer to edit this information.

Because customer information was obtained from the Log In with PayPal session, and was not entered directly by the customer, it is especially important that the customer has the opportunity to review this information before making the purchase.

PayPal as default payment method

Research shows that most people who login to merchant websites with a PayPal account want to pay with PayPal. Having PayPal as a default payment option, or the first payment option, for customers who login with a PayPal account is recommended.

To further expedite checkout, merchants should display the "Checkout with PayPal" button for customers who are already logged in with PayPal.

Return to best practices for merchants

Frequently asked questions

  • When will Log In with PayPal become available for integration with my site?

    Log In with PayPal is currently available to integrate on your site. Please review the Integration Best Practices Guide for integration guidelines.

  • How long will the Log In with PayPal integration process take?

    Depending on the complexity of your site, the integration period may last from one day to two weeks (not including the time required for testing and rollout). Get started with your integration.

  • Where can I include the Log In with PayPal button on my site?

    You may position the Log In with PayPal button on any site page that includes a customer login button or link. We recommend that the Log In with PayPal button is included on your site home page and where your customers enter their log in credentials on your site to sign into their account.

  • What is the most effective place to position Log In with PayPal on my site?

    The Log In with PayPal button may be positioned anywhere on your site where customers can log in to their accounts, or register for a new account. For more placement recommendations, see the button placement guidelines.

  • Will I have control over my customers' account information?

    Yes. When your customers provide their consent to PayPal to share their non-financial information with your business, you can access values for the customer attributes that you requested during the integration process.

    Note: Sharing customers' email addresses does not authorize your business to email consumers. For any communications not related to a purchase (such as marketing emails, newsletters, and offers), you must continue to present your customers with separate opt-in/out options.

  • How can customers with established accounts on my site use Log In with PayPal?

    Integration for Log In with PayPal includes offering your customers the ability to link their established accounts to Log In with PayPal. If a customer chooses to link their account, they only need to link their PayPal log in username and password once to their established account. After they link their account, they can use their PayPal credentials to log into their shopping account on your site. Or, your customers may also choose to continue using their existing login without linking the established account to Log In with PayPal.

    Regardless of a customer's choice, your customers continue to have full access to their accounts, including their order history and profile information. Please reference the best practices on linking and unlinking customer accounts for additional information.

  • Will my brand and website be present throughout the Log In with PayPal experience for my customers?

    Yes. The customer remains on your site throughout the entire experience for creating an account with your business or logging in by using Log In with PayPal. When the Log In with PayPal mini-browser window appears during the experience, your site page remains visible to your customer.

  • Is Log In with PayPal available on mobile devices?

    Yes, Log In with PayPal is available for mobile browsers. The user experience automatically adapts to the device your customer is using — PC, tablet, or smartphone.

  • If I currently have a PayPal checkout solution integrated with my site, how will Log In with PayPal work with my current checkout solution for my customers?

    If you have integrated Express Checkout (EC) or Mobile Express Checkout (MEC) on your site (and if you require your customers to log in or register before checkout), Log In with PayPal makes your customers' checkout flows more seamless. You can offer Log In with PayPal at any point during the flow when a customer is required to log in or register with your site. When a customer logs in by using Log In with PayPal, and they also select PayPal at checkout, the log in page for PayPal checkout is not included in the customer's experience. The customer is immediately presented with the payment review and purchase confirmation page.

  • What is the fee for integrating Log In with PayPal and offering it to my customers?

    PayPal does not charge merchants an integration and usage fee for Log In with PayPal.

  • How do I integrate Log In with PayPal?

    For instructions and additional information, see the integration guide.

Return to best practices for merchants