Magento GDPR Compliance (GDPR Compliance M2)

Compatible Version

Community 2.3, 2.2, 2.1

$69.00

On May 25, 2018 General Data Protection Regulation will come into force. If you are working with EU customers and processing their personal data, you store has to follow GDPR requirements. The extension helps you to prepare your Magento store for GDPR hands down.

Add checkboxes on six forms to get consent from customers
Allow customers to be forgotten
Easily get consent from parents to process children personal data
Export customers data in CSV format
Keep personal data relevant
Enable or disable any functionality of the extension
Notify customers and subscribers to confirm Privacy Policy
Send emails to customers to inform about changes in Privacy Policy
Redirect customers to the registration form to confirm their age
Allow data export for registered and non-registered customers
Show a popup to accept using cookies
Get notifications about customers’ request for deleting
Unsubscribe customers who do not accept Privacy Policy

Be ready for GDPR

In a few words, GDPR, or General Data Protection Regulation, is a new regulation in EU law on data protection and privacy relating to all individuals in the European Union. It concerns the exporting, keeping and processing of personal data outside the EU.

To be in line with the new law, every website struggles to be keeping with a number of requirements towards the way they manage private data. Carefully scrutinized the law, we’ve made up a list of features which help online merchants to prepare their stores for GDPR.

Important! We guarantee the bug-free functioning of the magento extensions only on the default theme.

Main Features

The Magento GDPR Compliance extension allows adding 'Privacy Policy' checkboxes to get permission from customers on Registration, Checkout, Log In, Contact Us forms, moreover under the newsletter subscription field, and when a customer leaves a review.

For customers who have already accepted Privacy Policy, you can display the optional link on Checkout, Log In, Contact Us, Newsletter Subscription forms, and when a customer leaves a review. So, customers know how their personal data are used.

In the admin panel, you can change the text for the ‘Privacy Policy’ page checkbox label, for the updated ‘Privacy Policy’ page checkbox label for the quick access to this page.

You can select any page to link it to the ‘Privacy Policy’ checkbox label. So, if you delete the ‘Privacy Policy’ page, you can link the checkbox label to any page.

You can send emails to already existed customers and subscribers so that they can accept it. The Privacy Policy is easy to confirm as there is a link to follow. You can use templates for email notifications to make the process easier.

If you have changed anything in your Privacy Policy, you send notifications to customers and subscribers. Mark the check box in the settings that the data was updated. Make them aware and let refuse the consent at any time.

In case, when Privacy Policy was updated, you can ask customers to reconfirm it. So, when a customer logs in, the checkbox with the link to updated Privacy Policy appears.

The Magento 2 GDPR extension is very flexible. According to your needs and specificity of your store, you can enable or disable any part of the functionality.

PERSONAL DATA DELETING

The Magento 2 GDPR extension makes it possible to destroy data in two ways:

1.You can delete personal data via the default Magento way, except orders and reviews data.

2.You can delete personal data including reviews and replace orders data with anonymous data.

A customer can delete data in personal account. But admin defines the process:

1.Data can be deleted directly from the management section of an account.

2.A customer has to request the deleting of data. He/she also receives an email to confirm this decision.

By default Magento deleting not all personal data is erased. Orders and reviews are remained. You can set the period to store this information if you want to save it for certain reasons.

If customers do not want to confirm Privacy Policy, they are free to delete their accounts from your store. Or you can set the configurations so that they should make a request for this action.

Specify a necessary email in configurations to get notifications of customers’ delete requests. So, you will always know about new ones and can fulfill them in a short period of time.

Be informed of all deleted customers’ accounts and unsubscribed users by getting notifications to the email you enter in the settings. You will receive notifications whether you set deleting with or without request.

CONFIRMATION STATUS

Add a column to grids of customers to see who have confirmed Privacy Policy or haven't accepted it yet. Moreover, you can check what customers haven’t agreed to Privacy Policy update. All in all, there are three statuses: Confirmed, Unconfirmed, Unconfirmed after Update. Use the filter, to select customers with the same status.

Existing subscribers receive an email notification for Privacy Policy confirmation. If they do not want to accept it, they can unsubscribe. However, admin cannot store info for a long period and needs to delete their data. It is easy to do it when you add the column for subscribers to see their confirmation status.

PERSONAL DATA EXPORT

According to the GDPR law, customers can request to get personal data in common use and machine-readable format. To simplify the process, with the extension you can export all customers personal data to CSV format.

Specify email to get notifications of data exporting. Select a template as well as an email address for sending. So you as admin will always see how many requests customer have made and control data.

Add a special Data Export section to customers’ accounts. So registered customers can export info right there. For other customers you can create a link in the footer to show a popup. There a customer can enter an email into a special field, where data concerning will be sent.

If a visitor has earlier made orders and then decides to create an account, all data will be transferred to this new account. It is very convenient to store collected data about one user in one place for an admin and for customers as well.

COOKIE USING NOTIFICATION

Show a popup for customers to accept using cookies. The text of popup can be customized. Using the popup customers can agree with cookie usage policy. In case they do not want to confirm, there is also a link to visit a page with instructions how to disable cookies in any browser.

Edit the text of a cookie notice to briefly and carefully explain the purposes of using cookies. The popup stimulates clicking on the ‘Allow’ button. As well the message links to your Privacy Policy page for more information, which is a good point for your visitors.

CHILDREN’S DATA PROTECTION

Any customer should verify the age on Registration, Login, Review and Contact Us Forms. The only thing that must be done is ticking the check box. Moreover, visitors can do it on Newsletter Subscription Form in the footer and on Check Out Form.

If a customer doesn’t mark a checkbox to confirm the age on the following forms: Registration, Checkout, Contact Us, Newsletter Subscription forms, and when leaving a review, he/she will see an additional field to enter a parent email for receiving a notification to confirm child’s registration.

When customers create an account, they need to confirm that their age is over 16. If they do not tick the check box, a field to enter a parent email appears. So, parents will receive a notification to give the consent for children’s data processing.

Changelog

ver. 1.1.0 (May 25,2018)

1. Bug fixes:

- downloadable products export

- virtual products export

2. New features:

- notifications to confirm Privacy Policy

- notifications about Privacy Policy changes

- customers age confirmation

- data export option for registered customers

- data export option for non-registered customers

- cookies using confirmation popup

- admin notification about a request for account deleting

- unsubscribe customers who don’t confirm Privacy Policy within 30 days

ver. 1.2.0 (June 15,2018)

1. Bug fixes:

- Privacy Policy confirmation sending on Magento 2.1

- success message displaying after confirmation

2. New features:

- customers confirmation grid

- guest orders and customers orders connection

- storage period for default deleting

- notifications of customers/subscribers deleting

ver. 1.2.2 (July 20, 2018)

1. Bug fixes:

- the console of the checkout page

- data anonymization of invoices, shipments and credit memo with all data deleting

2. Improvements:

- work of checkboxes on the notification modal window of the checkout page and log-in forms was set with AJAX

- from ver. 1.2.0 work of checkboxes in popup notification when guest checkout is disabled

- a success message after parent email was added

- 'Delete Customer Account' option was removed from the login form

ver.1.2.3 (July 27,2018)

Bug fixes

ver. 1.3.0 (January 4, 2019)

1. Improvements:

- Compatibility with Magento 2.3.0 was added.

2. Bug fixes:

- The text of the message about the child data sending was corrected.

- The sending of notification about allowing the use of child data was fixed.

Write Your Own Review

You're reviewing:GDPR Compliance M2

Your Rating

Rating

1 star 2 stars 3 stars

Nickname

Summary

Review