Magento Expert Forum - Improve your Magento experience

Results 1 to 4 of 4

All you need to know about GDPR

  1. #1
    Junior Member
    Join Date
    Jun 2017
    Thanked 3 Times in 3 Posts

    Default All you need to know about GDPR

    So what is the entire buzz about the May 25th deadline and GDPR compliance? Are you an online retailer? Well, in that case you will also need to join the crowd. Are you still confused about what you will need to do exactly? Read on to know how this GDPR compliance may bring changes in your business processes and how you will need to introduce modifications in your online setup.

    What is GDPR?

    Let us begin with what is GDPR. Though you might have an idea of General Data Protection Rules or GDPR as it is called and adhering to these rules, let us focus more on the current scenario and your role in keeping your store on par with these regulations. In a gist, online stores running their business in the European Union or EU as it is referred to will need to be GDPR compliant. Also, concerns from other countries that are associated with EU will be scrutinized for the GDPR compliance without any compromises.

    Need for GDPR:

    How did the need for GDPR arise and how does it serve the purpose? Any data transaction with respect to an individual’s personal information or sensitive information will need to be checked for this compliance. Why? Simply to enhance the security levels and curb misuse. What is the difference between personal information and sensitive information? Data like name, location, address is categorized as the personal information. Sensitive information is the in-depth details which specify the person like height, weight, appearance and so on. GDPR ensures that such data is passed over only to an authorized source, unless and until necessary.

    How does GDPR expect you to obtain data from your customers?

    Always be sure to get the acceptance of your customers before getting their information
    Ensure to rule out options of blanket consent, obtaining consent by default or including consent into the general terms and conditions
    Keep in mind to provide your customers the right to revert their acceptance at any point of time
    How to begin with your GDPR compliance?

    Start with asking these questions to yourself about your online store:

    What is the methodology my store is using to obtain data from customers?
    Are proper measures in place to secure critical information?
    Am I appropriately informing my customers about their data usage?
    Am I giving proper space to my customers regarding their data usage? Are they being given the right to restrict the usage of this data?
    GDPR compliance for Magento:

    Focus on getting due consent from the data owner before using information. Ensure that you have a transparent process in place to inform your customer about what is happening to their data.
    Eliminate default checked boxes and get the consent from the customers explicitly
    Let your customers delete information or their accounts, if needed.
    Pseudonymization is maintaining the security of personal data. Information is encrypted and it will require more information from the data owner to decrypt this information. This feature ensures complete data security.
    The subject access request should be handled within a month, says the GDPR law. This gives a customer the right to ask for all the information in the system for his access in the machine readable format at any point of time.
    To summarize, GDPR has revived its regulations in an attempt to eliminate all possible risks pertaining to data mishandling for maintaining customer data security.

    For more blogs you can checkout:

    View more threads in the same category:

  2. The Following User Says Thank You to Jessimahe For This Useful Post:

    ethanjohns (20-07-2018)

  3. #2
    Junior Member
    Join Date
    Feb 2018
    Thanked 2 Times in 2 Posts


    GDPR Extension for Magento 2

    To help Magento 2 platform users comply with General Data Protection Regulation (GDPR) in EU region, BSSCommerce are developing an extension called GDPR Extension for Magento 2. With this extension, now store owners using Magento 2 platform can protect customers’ data effectively and comply this legislation. The primary feature of this extension include:
    Allow customers of Magento 2 platform store to delete their shopping accounts and export data on Account dashboard
    Hide customer data in Orders
    Send notification to customers about the Cookie usage on Magento 2 platform website. Try Magento 2 Cookie Notice Extension to get the permission of customers
    Create and update Privacy Policy page
    Send notification to customers about any update in Privacy Policy
    Display checkboxes and popup for customers to give approvals to websites
    For any further information and buying extension, please visit GDPR Extension for Magento 2

  4. The Following User Says Thank You to wadewilson For This Useful Post:

    ethanjohns (20-07-2018)

  5. #3
    Junior Member
    Join Date
    Jun 2017
    Thanked 3 Times in 3 Posts


    Thanks for the info you can also check out for the below URL,

  6. The Following User Says Thank You to Jessimahe For This Useful Post:

    ethanjohns (20-07-2018)

  7. #4
    Junior Member
    Join Date
    Jun 2015
    Thanked 9 Times in 9 Posts


    For Magento 2 : FREE GDPR for Magento 2 is an extension which helps e-commerce stores to comply with some of the most essential GDPR regulations.

    Name:  687474703a2f2f7468656d65732e6d616765736f6c7574696f6e2e636f6d2f636c6175652f636f6e74656e742f676470.jpg
Views: 8
Size:  199.9 KB

    The General Data Protection Regulation (GDPR) has been in the works for a long time. Drawn up by the EU, it strengthens the data rights of EU residents and harmonises data protection law across all member states, making it identical.
    It increases the potential fines organisations face for misusing data, and makes it easier for people to discover what information organisations have on them. In essence, it seeks to bring more transparency to people about what data organisations collect about them, and what those organisations use it for, as well as enabling people to prevent unnecessary data collection.
    Manage the display of Cookie Restriction Mode
    Change content of cookie notice message
    Add validating checkbox on login form and registration form
    Permanently delete customers’ accounts

Tags for this Thread


Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts