Many thanks for the link!

There is an extension for this, but only M1 currently :

https://marketplace.magento.com/zero1-zero1-gdpr.html

Thanks for this link.

I'm still on M1 and will try this.

/Magnus

The Zero1 extension is configurable in exactly the wrong way. The cookie nag can't be disabled, and unless you do extremely questionable things with cookies, you do not need to have 'express consent'. Using Google Analytics or Facebook or whatever for tracking customer behaviour is still allowed without express consent. You need specify what  exactly you use cookies for, though.

I would like the right to be forgotten / old order anonymization things without a mandatory cookie nag. I guess I have to do everything by myself then.

Hi all, in case it's helpful we're building out GDPR resources here: https://magento.com/gdpr

Hey Sherrie,

Thanks, was just thinking about this. Should be very helpful in the coming weeks.

Thanks for the link, Sherrie

I have read the FAQ, but there are one thing I wonder about:

"Are changes required to the Magento products to be compliant with GDPR?

There are no anticipated material changes required for our products to be compliant with GDPR. (...) Enabling these rights doesn’t require customization of the Magento products (...)"

This is regarding to have a customer be "forgotten". Maybe I have missed something, but can this done in a vanilla Magento 1 (Open source)? I know that a customer account can be deleted, but their old orders are still there with all personal data... As I understand it, each order from this customer must be anonymised.

Regards,

Magnus

Hi @Brake6, I'm checking into this with our team. When I hear back I will let you know!