Cookies & GDPR

Cookies are an important tool that can give businesses a big picture of their users' online activity. Despite their importance, the regulations governing cookies are split between the GDPR and the ePrivacy Directive.

What are cookies?

Cookies are small text files that websites place on users' devices as they browse your pages. They are processed and stored by the web browser. By themselves, cookies are harmless and serve critical functions for websites. Cookies can also be easily viewed and deleted.

Platform cookies?

Shopie, like any e-commerce platform, uses cookies to temporarily store the user's shopping cart data and the settings the user has chosen for cookies. It does not store personal data, as it is not necessary for its operation.

Note

{process.env.BUSINESS_NAME} cookies are retained on the user's device for 30 days. This means that the user's cart, if they have added products, is available even if they visit your store after 30 days.

In the event that you use analytics (Google Analytics), the Google program stores its own cookies on the user's device in order to be able to recognize them as they navigate from page to page. Also, Google Analytics cookies do not store personal data. The collection of data is anonymous.

Based on the law, each website is now obliged to inform the user in detail, during their visit, what cookies it uses and for what purpose.

Visitor information

During a user's first visit to your online store, a small window pops up with informational text about cookies. Since the platform's cookies do not collect and process personal data, the text is informative and the user's consent is not required. If you have installed the Google Analytics application, additional information about Google Analytics cookies and a selection switch for storing them on the user's device are added to the cookie text.

What is GDPR

The General Data Protection Regulation is a law that sets out the operating rules for organizations that collect or manage personal data.

You can find out more about it: GDPR.EU

This regulation gives the user the right to be forgotten. That is, to request the immediate deletion of their personal data from the system of the organization that controls them. Online stores collect sensitive personal data, necessary for their operation, such as the customer's name and address. That's why they are required to request the customer' consent before storing them and to give them the right to request their deletion at any time.

Platform compliance

There are two levels regarding the platform's compliance with the GDPR guidelines. One level is the platform's actions, as software that stores the data, and the other level is you, as the owners of the online store. From our side, we have integrated all the functions that a website is required to have.

The platform - Data processing is illegal according to article 6 of the GDPR, unless the user has consented to it. The Shopie platform adds a control element to all forms where personal data needs to be entered, requesting the user's consent for the processing of their data. This element requires the user to read your business's privacy policy and terms of use. The user can withdraw their consent at any time. The platform allows them to request the deletion of their data, from the customer login area or using the contact form.

You - As the data controller, you are obliged to report to your store, with full transparency and in detail, how you use this data. The purpose of the platform is to process orders and communicate between customer and merchant. Any other purpose is your responsibility and must be reported in the privacy policy.

Note

Don't be discouraged! We have prepared a privacy policy template that you can rely on to create one that suits your business. View it here: Privacy policy template

Settings

See how to settings for cookies and GDPR.