1. GDPR & Merchants

  2. Customers

  3. GDPR Compliance Center

GDPR & Merchants

The GDPR applies to any company that handles the personal data of residents in the European Economic Area (EEA). Each merchant is ultimately responsible for ensuring that their business complies with the laws of the jurisdictions in which they operate or have customers.

Using Shopify alone does not guarantee that a merchant or partner complies with the GDPR – merchants and customers must analyze their own business practices to ensure their compliance. This is the reason why each merchant needs to use the right GDPR application.


The GDPR also gives certain rights to identified or identifiable persons (referred to as data subjects), including customers visiting stores belonging to Shopify merchants.

These include the right to request:

  • Deletion (erasure) of their personal data

  • Correction (rectification) of their data

  • Access to their data

  • An export of their data in a common (portable) format

GDPR Compliance Center

The GDPR application will help merchants with the needed services that Shopify cannot provide to the stores because of the complexity that their management has. In fact, the application must do three basic jobs. These are:

  • Inform customers about the store’s cookie & data policy

  • Capture their consent about that

  • Give the option to customers to manage their personal data

This is what our complete free GDPR application does for your stores.

Did this answer your question?