PayPal Internet Merchant Accounts: A Complete Guide to Secure Online Payments for UK Businesses

Alex Solo
byAlex Solo5 min read
eCommerceSoftware & ITData & Privacy
Contents

Ready to start selling online? Whether you’re running a small side hustle or scaling a UK start-up, you’ll need a secure, compliant way to accept card payments. This guide explains how internet merchant accounts work, how PayPal fits in, and what legal steps you must take to protect your business and your customers.

What is an internet merchant account - and why it matters

An internet merchant account is a special type of business bank account that allows you to process and settle online card payments. It’s where funds are temporarily held while payments are authorised and cleared before being deposited into your main business account. This structure improves security, fraud prevention, and compliance. Without one, your business can’t legally or securely process online credit and debit card payments.
  • Customers pay online using a card or digital wallet.
  • Funds first land in your merchant account for authorisation and anti-fraud checks.
  • After settlement (usually within a few days), cleared funds move to your business current account.
For e-commerce, a merchant account is essential. Without it, you’d be limited to slower or less trusted payment methods like manual bank transfers or cheques.

Merchant accounts vs business accounts

  • Business bank account - used for everyday business income and expenses.
  • Merchant account - used specifically to receive and process card transactions before transfer to your main account.
Many banks require a separate application for a merchant account, or you can use third-party providers like PayPal or Stripe.

How PayPal internet merchant accounts work

PayPal combines both roles - it acts as the payment gateway and the merchant account provider. Here’s the process:
  1. The customer pays using PayPal or a card on your website.
  2. PayPal processes and authorises the payment securely.
  3. Funds are held in your PayPal merchant account while checks are completed.
  4. Once cleared, you transfer funds to your business bank account.
It’s quick to set up and widely recognised by customers. But you still remain legally responsible for compliance and consumer protection. Accepting online payments involves several layers of regulation. You must ensure your systems and documents comply with:
  • Consumer Rights Act 2015 - clear pricing, terms of sale, refund and complaints procedures.
  • Consumer Contracts Regulations 2013 - transparent pre-contract information and cancellation rights for consumers.
  • Data Protection Act 2018 and UK GDPR - proper handling of customer data with a compliant Privacy Policy.
  • PCI DSS (Payment Card Industry Data Security Standard) - required for any business accepting card payments, even through a third party like PayPal or Stripe.
  • E-commerce Regulations 2002 - require you to display your legal business name, address, contact details, and VAT number (if applicable) on your site.
  • Anti-Money Laundering (AML) rules - certain higher-risk merchants may need additional verification to meet FCA or HMRC obligations.

Setting up an internet merchant account

Step 1: Choose your provider

You can apply through:
  • Banks - traditional, slower approvals, higher setup fees, and fixed-term contracts.
  • Third-party providers - faster onboarding via PayPal, Stripe or Square, often ideal for SMEs and start-ups.
Compare transaction fees, settlement times, integration options, and customer support before committing.

Step 2: Gather documentation

  • Proof of business registration (Companies House, partnership, or sole trader evidence)
  • Business bank account details
  • Photo ID and address proof for directors or owners
  • Website URL and product or service details
  • Up-to-date Terms and Conditions and Privacy Policy

Step 3: Approval and compliance review

Your provider will assess your business for financial risk and compliance. They may review your website to confirm transparency and regulatory adherence before approving your account.

Step 4: Integration with your platform

Connect your merchant account or PayPal to your e-commerce platform (Shopify, WooCommerce, Wix, etc.). Always test payments for security and usability before launch.

Step 5: Monitor and maintain compliance

Review transactions regularly, respond promptly to chargebacks, and keep PCI and GDPR documentation current. Schedule annual compliance reviews with your provider or legal adviser.

Typical fees and costs

  • Setup fees - may apply for traditional banks (often free with PayPal or Stripe)
  • Transaction fees - typically a percentage + flat fee (e.g. 2.9% + 30p per transaction)
  • Monthly service fees - more common with banks
  • Currency conversion or cross-border charges
  • Refund and chargeback fees

Banks vs third-party providers

Choosing the right provider depends on your business model:
  • Setup speed - third-party providers can be live within hours; banks may take weeks.
  • Contracts - banks often require long-term commitments; PayPal and Stripe are pay-as-you-go.
  • Settlement speed - PayPal usually settles funds within 24–48 hours; banks may take longer.
  • International sales - PayPal handles multi-currency automatically; banks may require extra setup.
  • Support - consider quality of customer service, especially for disputes or fraud alerts.
  • Hidden fees - read contracts carefully and compare effective transaction costs.
  • Chargebacks - keep records of all transactions, deliveries, and communications.
  • Settlement delays - avoid mismatched details and maintain clear documentation for audits.
  • Non-compliance - review PCI DSS, GDPR and consumer law obligations regularly.
  • Data security - always use SSL certificates and secure integrations to prevent breaches.

Speak to a lawyer before you launch

Before integrating payment systems, it’s wise to speak with a lawyer. A commercial and technology lawyer can:
  • Review your Terms of Sale, Privacy Policy and Website Terms for consumer and data protection compliance.
  • Check your merchant agreements and payment processor contracts for hidden risks.
  • Advise on refund, chargeback and dispute resolution procedures.
  • Ensure your setup meets PCI DSS and e-commerce transparency requirements.
Getting legal advice early prevents compliance gaps and gives you the confidence that your payment process is solid from day one. Sprintlaw’s team can help you review contracts, policies, and platform terms to make sure your online shop is both compliant and scalable.

Key takeaways

  • Internet merchant accounts enable secure online card payments and are separate from your business bank account.
  • PayPal acts as both payment gateway and merchant account for simplicity.
  • Comply with GDPR, PCI DSS, consumer protection, and e-commerce regulations.
  • Compare providers for cost, speed, and international support.
  • Keep policies, contracts and compliance documentation up to date.
  • Speak to a lawyer before launch to ensure everything aligns legally and commercially.

Need help?

Want to set up online payments securely and legally? Sprintlaw’s commercial lawyers can help review your contracts, and ensure your website meets UK e-commerce regulations. Call 0808 134 7754 or email team@sprintlaw.co.uk for a free, no-obligations chat.
Alex Solo
Alex Solo

Alex is Sprintlaw's co-founder and principal lawyer. Alex previously worked at a top-tier firm as a lawyer specialising in technology and media contracts, and founded a digital agency which he sold in 2015.

Need legal help?

Get in touch with our team

Tell us what you need and we'll come back with a fixed-fee quote - no obligation, no surprises.

Keep reading

Related Articles

Terms of Trade for Video Production Businesses in the UK

Terms of Trade for Video Production Businesses in the UK

Clear terms of trade can save UK video production businesses from disputes over scope, revisions, copyright, cancellations and payment. This guide

15 May 2026
Read more
Subscription Terms for UK Software Development Agencies

Subscription Terms for UK Software Development Agencies

Subscription terms can lock a UK software development agency into more than recurring fees. This guide explains what to check on renewals, service levels

13 May 2026
Read more
Cancellation and Refund Policies for UK Pest Control Businesses

Cancellation and Refund Policies for UK Pest Control Businesses

A clear cancellation and refund policy can save UK pest control businesses from chargebacks, customer complaints and unenforceable fees. Here is what to

11 May 2026
Read more
Cancellation and Refund Terms for UK Childcare and Early Learning Businesses

Cancellation and Refund Terms for UK Childcare and Early Learning Businesses

Clear cancellation and refund terms can help UK childcare and early learning businesses avoid disputes with parents over deposits, notice periods, missed

11 May 2026
Read more
Refund and Cancellation Terms for UK Building Inspection Businesses

Refund and Cancellation Terms for UK Building Inspection Businesses

Clear refund and cancellation terms help UK building inspection businesses manage deposits, wasted site visits, rescheduling and consumer booking rules

10 May 2026
Read more
Website Terms for Paid Webinars and Workshops in the UK

Website Terms for Paid Webinars and Workshops in the UK

Selling paid webinars or workshops in the UK can create legal issues around refunds, recordings, access rights and customer disputes. Clear webinar and

10 May 2026
Read more
Need support?

Need help with your business legals?

Speak with Sprintlaw to get practical legal support and fixed-fee options tailored to your business.

Get StartedBook A Call