FROM CACHE - en_header
Promotion image

Is Shopify or me responsible for customer data protection

Is Shopify or me responsible for customer data protection

Markssxx
Trailblazer
155 1 38
‎09-16-2023 01:06 PM

I am in the U.K. and about to open my gift store. One issue worries me is who is responsible for protecting my customers data? Is it me or Shopify? 

Labels:
1,380 Views
1 Like
Report
Replies 10 (10)

Taknify
Shopify Partner
263 18 29
‎09-16-2023 02:39 PM

Since you are from U.K, GDPR laws likely applies to you. It should be you that protects the customers data and not Shopify. If you collect any personal information, or do any sort of tracking (have google analytics, other analytics), you need to ask for consent before you can collect those user informations. 
An ideal case is you have a banner that you prompt, where users reject and accepts. Depending on that consent, you need to configure what ads, analytics, functionality cookies you store.
Let me know if you have any further questions. 

Need to tweak your store for Black Friday? Simply, send me a message.
1,353 Views
0 Likes
Report
In response to Taknify

Markssxx
Trailblazer
155 1 38
‎09-17-2023 04:10 AM

Thank you. I have had support from Pandectes who have helped me with their banner. Would you mind taking a look for your thoughts? My shop is here.

https://click-a-gift.com

thank you in advance.

1,340 Views
0 Likes
Report
In response to Markssxx

Taknify
Shopify Partner
263 18 29
‎09-17-2023 02:48 PM

Hi,
Just looking from the site, I wasn't able to check if this banner is properly configured or not. I need access to the store to check further. I have to read through the code from Pandectes to review this further. 

Need to tweak your store for Black Friday? Simply, send me a message.
1,329 Views
0 Likes
Report
In response to Taknify

Markssxx
Trailblazer
155 1 38
‎09-17-2023 03:38 PM

The banner was configured by Pandectesdirectly to my store. What do you need to gain access? Also I’m looking in to a VPN for additional security.

1,320 Views
0 Likes
Report
In response to Markssxx

Markssxx
Trailblazer
155 1 38
‎09-17-2023 03:43 PM

It’s interesting what you say because some people say it is Shopify responsibility for data protection and the payment gateways. 

1,320 Views
0 Likes
Report
In response to Markssxx

Taknify
Shopify Partner
263 18 29
‎09-17-2023 08:37 PM

I need access to your store via a collaborator access. This means I sent a collab access to your store and you accept it and therefore I can check if you have your banner + all the consents firing properly. 

Depends on which customer data points you collect. 
For anything payment related, those are handled already by whatever payment gateway you have. 
I am taking about if you have analytics and ads added to your website then you need to also configure consents accordingly. 
Example, if users reject on performance or targeting cookies from the banner, then any apps or custom logic you have for analytics or ads should not fire. (meaning if users rejects analytics cookies, so you are not allowed to track them)
I hope this helps a bit to clarify your question.Screenshot 2023-09-17 at 6.34.36 PM.png

Need to tweak your store for Black Friday? Simply, send me a message.
1,308 Views
0 Likes
Report
In response to Taknify

Markssxx
Trailblazer
155 1 38
‎09-18-2023 12:52 AM

Thank you. Yes please send a collaborator request. I believe the points you mentioned were actioned by Pandectes. But if you can check that’s useful. 

1,283 Views
0 Likes
Report
In response to Taknify

Markssxx
Trailblazer
155 1 38
‎09-19-2023 04:22 AM
Hi I could not see your request. Can you send it again?
1,226 Views
0 Likes
Report

SEOKart
Shopify Partner
171 4 26
‎09-18-2023 08:07 AM

Hello Markssxx,

 

Thanks for reaching out to the community!

 

Well, as you are the ‘Controller’, meaning data collector in e-commerce jargon, you are the one responsible for protecting the customers’ data.

 

As per the EU General Data Protection Regulation (GDPR), the e-commerce business store collecting the customer data in the UK shall clearly disclose the purpose behind collecting the personal information of their customers. Additionally, the collector is liable to keep the information secure by encrypting and sharing data on HTTPS (Hypertext Transfer Protocol Secure), processing it securely by using advanced technology, and storing it in password-secured database.

 

Hope it helps!

https://apps.shopify.com/seokart
1,264 Views
0 Likes
Report

MaxBennett
Tourist
5 0 0
‎12-13-2024 01:58 AM

Congrats on your store! From my experience, Shopify secures the platform and payments, but you’re responsible for complying with data protection laws (like GDPR in the U.K.). This includes having a privacy policy and ensuring customer data is handled safely. I'd recommend consulting a legal expert to make sure you're fully covered. Good luck with your launch!

 

319 Views
0 Likes
Report

Community Blog Articles

Shopify_0-1739389824316.jpeg
How to use the Shopify admin: A training series for new Shopify users

2m ago Learn the essential skills to navigate the Shopify admin with confidence. T...

By Shopify Feb 12, 2025
Academy marketing image.webp
Find Global Growth Opportunities For Your Business with Shopify Academy

Learn how to expand your operations internationally with Shopify Academy’s learning path...

By Shopify Feb 4, 2025
top members.webp
Highlighting our top users in 2024 and Member of January

Hey Community, happy February! Looking back to January, we kicked off the year with 8....

By JasonH Feb 3, 2025
Terms of Service Privacy Policy