GDPR for Magento 2

To stay in compliance with the GDPR, customers should be able to delete all the information collected on them. Empower customers to remove their private data from any third party website and to ensure that their data is not misused in any way.

To allow customers quickly delete their data from your website, enable 'Forget Me' option on their 'My Account' section. You can then approve the request by clicking 'Process Request' from the backend and the data will be permanently removed from your website.

One of the GDPR requirements is that customers should be able to extract their personal data from your website. The extension lets you comply with this requirement by allowing your customers to access their data. They will get a PDF file consisting all or any of the following information.

Category / Sub Categories

You can create independent categories for grouping files, whereas sub-categories can also be created under the parent group.

• All saved addresses & other account information
• All orders

This extension makes it easy for you to manage customer “Forget me” requests by displaying them in a central grid. You can use the following actions against each request.

• Delete
• Mark on-hold
• Process
• Process unsubscribe only
• Process orders removal requests only
• Process account deletion requests only
• Process all requests

GDPR ensures that customers have control over what they don’t want. If they don’t want your newsletters anymore, they should have the option to unsubscribe. This Magento 2 GDPR module allows you to add an unsubscribe checkbox to your newsletters and stop sending emails to customers who tap it.

You must inform customers why their personal data is collected and how you are going to use it. You also must tell them the terms and conditions of using your website and make sure they have read and accepted your policies. This is the basic requirement of GDPR.

Enable Privacy Check with Subscription

You can create a mandatory or optional checkbox for privacy policy on user registration page so that customers read it thoroughly before signing-up for an account. Enable the same for email subscriptions as well.

Add a ‘Terms and Conditions’ Checkbox

Enable a ‘Terms and conditions’ checkbox and mark it mandatory for user registration. You can also enable agreement policy consent on email subscriptions.

A data protection officer is someone who ensures that an organization processes the personal data of its staff and customers in compliance with the acceptable data protection rules.

With our Magento 2 GDPR extension, you can facilitate customers to directly communicate with DPO by providing his contact details with the following options.

• Enable DPO contact form
• Provide DPO email address
• Customize the link label and page title
• Add custom content to the form
• Select an email template

With general configuration settings, you can personalize header and title text, and write a custom success message. You can:

• Write a custom title for General Data Protection Regulation (GDPR) Related Tab in 'My Account' section
• Personalize the success message to the customer on submitting a request
• Compose header title on the registration page

You can handle GDPR related requests by configuring email notifications.

• Specify an admin email address for notifications
• Select an email template for customer requests
• Send an email to the customer upon request completion
• Choose an email template for the customer's reply