cancel
Showing results for 
Search instead for 
Did you mean: 

GDPR Compliance for those with EU customers

Re: GDPR Compliance for those with EU customers

There is an eBook released by Divante regarding GDPR quite intersting and informative.

 

https://go.divante.co/gdpr-compliance-checklist-for-ecommerce/

Re: GDPR Compliance for those with EU customers

Thanks for sharing!

Re: GDPR Compliance for those with EU customers

Many thanks for the link!

Re: GDPR Compliance for those with EU customers

There is an extension for this, but only M1 currently :

https://marketplace.magento.com/zero1-zero1-gdpr.html

 

Re: GDPR Compliance for those with EU customers

Thanks for this link.

I'm still on M1 and will try this.

 

/Magnus

Re: GDPR Compliance for those with EU customers

The Zero1 extension is configurable in exactly the wrong way. The cookie nag can't be disabled, and unless you do extremely questionable things with cookies, you do not need to have 'express consent'. Using Google Analytics or Facebook or whatever for tracking customer behaviour is still allowed without express consent. You need specify what  exactly you use cookies for, though.

 

I would like the right to be forgotten / old order anonymization things without a mandatory cookie nag. I guess I have to do everything by myself then.

Re: GDPR Compliance for those with EU customers

Hi all, in case it's helpful we're building out GDPR resources here: https://magento.com/gdpr

--

Developer Relations, Adobe Experience Cloud
Problem solved? Click Accept as Solution!
Still stuck? Check out our documentation: https://magento.com/resources/technical

Re: GDPR Compliance for those with EU customers

Hey Sherrie,

 

Thanks, was just thinking about this. Should be very helpful in the coming weeks.

Leslie B.
Aspiration Hosting - Magento 1 & 2 Optimized Cloud Hosting
Problem solved? Click Accept as Solution!

Re: GDPR Compliance for those with EU customers

Thanks for the link, Sherrie

I have read the FAQ, but there are one thing I wonder about:

 

"Are changes required to the Magento products to be compliant with GDPR?

There are no anticipated material changes required for our products to be compliant with GDPR. (...) Enabling these rights doesn’t require customization of the Magento products (...)"

 

This is regarding to have a customer be "forgotten". Maybe I have missed something, but can this done in a vanilla Magento 1 (Open source)? I know that a customer account can be deleted, but their old orders are still there with all personal data... As I understand it, each order from this customer must be anonymised.

 

Regards,

Magnus

Re: GDPR Compliance for those with EU customers

Hi @Brake6, I'm checking into this with our team. When I hear back I will let you know!

--

Developer Relations, Adobe Experience Cloud
Problem solved? Click Accept as Solution!
Still stuck? Check out our documentation: https://magento.com/resources/technical