Best Practices


Create optimal payment experiences for your customers and increase conversion by following these best practices for web and mobile integrations.

Button design guide

See the Button Design Guide for details instructions on how to build customized buttons.

Create a simple user experience

Button selection

The standard Log in with PayPal blue pill-shaped button is recommended because the blue color and pill shape are recognizable as a PayPal element of brand.

However, we also provide a gray button for websites with a neutral or very specific color palette or theme, as well as a square button for websites that contain mostly square-shaped elements.

Square Button sample

Gray Button sample

Button placement

You can place the Log in with PayPal button anywhere on your website. To maintain a simple user experience, PayPal recommends that you display the Log in with PayPal button in a highly visible location on your website header where other triggers to log in or register exist. Clearly displaying the familiar PayPal brand on your website can increase customer confidence.

Generic Login

Place the Log in with PayPal button on your dedicated log in or registration page. Customers who do not wish to complete a registration form to purchase goods or services from your website can log in with their PayPal accounts.

You can use the non-financial customer profile information that you obtain, with the customer's consent, to automatically create accounts for customers who would like to use native features, such as a wish list, or transact on your site.

When setting payout preferences, display the Log in with PayPal button on the page where customers will go to configure their payment preferences in case they are expected to receive money from your website/app. This may be in your account settings page, or part of the initial account configuration flow. Clearly displaying the familiar PayPal brand on your website can increase customer confidence.

Set Preferences

Session Management

Customers who log in with PayPal and choose to remain logged in are recognized for a certain period following the initial log in. Session persistence conveniently eliminates the need for multiple user logins to your website.

Within that window, the customer is recognized at other websites that support Log in with PayPal, but the customer is prompted to consent to share information with these subsequent websites.

PayPal recommends that merchants maintain their own sessions to facilitate a smooth user experience for customers. When an access token is obtained from PayPal for each user, a refresh token is also received. PayPal's refresh tokens are valid for longer than access tokens. Merchants must track session times to determine when to refresh access tokens.

If your website includes a native log out feature, PayPal recommends that merchants refrain from disconnecting the Log in with PayPal session when the user logs out of your site. This eliminates the need to reestablish the connection to PayPal if the customer returns to your site within a certain period of time.

Maintain customer confidence

Ask for only the permissions you need

PayPal recommends that you ask customers to share only the minimum amount of information you need. The fewer permissions you ask for, the easier it is for customers to grant them, and conversion will be higher.

When Log in with PayPal is used to set up payout or money withdrawal preferences, PayPal recommends you request the following attributes to ensure a successful payout:

  • Email Address
  • Account Verification Status
  • PayPal Account ID

If a customer chooses to cancel out of the Log in with PayPal consent flow, PayPal recommends that you redirect the customer back to the page where the Log in with PayPal flow was initiated, for example, the account creation or sign in page on your website.

Note: PayPal won't share customers' financial information with you.

Anti-spam policy

PayPal asks merchants to agree to its anti-spam policy when offering Log in with PayPal.

Merchants must not automatically sign up Log in with PayPal customers to receive email newsletters or regular communication from the merchant. The only time customers should receive email from the merchant is after making a purchase, in which case the customer should receive regular and customary email regarding the order confirmation, a receipt, and shipping information. If the merchant wishes to send email beyond this level of communication, merchants are required to explicitly request permission from the customer.

PayPal recommends that merchants who already maintain consumer accounts, and who are just starting to support Log in with PayPal, give customers the option to link their pre-existing consumer account with their PayPal account. This link can be established based on information obtained from the customer's non-financial user attributes obtained from the Log in with PayPal session, such as the customer's email address.

PayPal recommends merchants scan for duplicate accounts in real time, during the Log in with PayPal customer session. However, if scanning for duplicates in real time is not feasible, PayPal recommends that merchants perform an offline scan and notify customers via email with a request to reconcile accounts. Linking the two accounts eliminates duplication in merchant databases and allows the customer to access historical purchase information for purchases completed with a merchant user account.

Unlinking a PayPal account

If a customer elects to discontinue use of Log in with PayPal on the Merchant site, PayPal recommends providing those who have linked accounts with the option to unlink their PayPal account from their merchant website account. This option requires that merchants also provide customers with the capability to create a user name and password for your website.

If a merchant decides to discontinue support for the Log in with PayPal feature, the Merchant must request customer permission to unlink the merchant-website account from the customers' PayPal account for customers who already linked these accounts. Merchants may need to provide customers with the ability to set a merchant-website account password during this unlinking process.

Expedite checkout

To provide an expedient and reliable customer checkout experience, PayPal recommends the following best practices:

Pre-fill checkout forms

PayPal expects merchants to pre-fill checkout forms with the customer information obtained from the Log in with PayPal session.

Personalize checkout

Merchants should not require customers to re-enter information that PayPal has already provided. Merchants can leverage information already obtained from the Log in with PayPal session to personalize the checkout experience, for example, using the customer's ZIP code to calculate shipping charges.

Account information

On the order confirmation page, display the customer's basic account information. This allows the customer to review information such as the shipping address before finalizing the purchase. PayPal also recommends allowing the customer to edit this information.

Since customer information was obtained from the Log in with PayPal session and was not entered directly by the customer, it is especially important that the customer has the opportunity to review and edit this information before making the purchase.

PayPal as default payment method

Research shows that most people who log in to Merchant websites with a PayPal account want to pay with PayPal. Having PayPal as a default payment option, or the first payment option, for customers who log in with a PayPal account is recommended.

Ensure a successful payouts experience

To provide a successful payout experience to the customer and to avoid unilateral payouts, PayPal allows the merchant to obtain the following information from the Log in with PayPal session:

  • Email Address
  • Account Verification Status
  • PayPal Account ID (Payer ID)

These should be used in accordance with the Payout API documentation to ensure that payout goes to an existing and verified account.