My theme has an option for GDPR banner, am I covered?
Many Shopify themes provide options to show a banner about GDPR that give the ability to your visitors to click on a button to accept your policy.
Although this seems to be a convenient solution, in fact is not a compliant solution for your store because this is just a visual banner and it not dealing with your store's tracking technologies.
GDPR requires a lot more than a banner that visually informed your visitors for your privacy and cookie policy.
In order to be compliant with GDPR you need to cover the following requirements:
- Provide a banner about the use of cookies and other tracking technologies and request for consent by the visitor.
- Ideally your banner should give to your visitors detailed consent options.
- Your banner depending the user's consent preferences should allow or decline cookies and other tracking technologies in the future visits of this visitor.
- Your banner needs to be integrated with Shopify's Customer Privacy API.
- Provide a cookie policy page with a detailed and up to date list of tracking technologies of your store.
- You need to collect the consents from your visitors and be able to find a specific consent in case of an audit.
- You need to be able to handle data subject requests from your customers.
Updated on: 17/12/2024
Thank you!