Hi All,
Trying to verify what is expected from third-party apps based on the mandatory requirements for apps to support GDPR.
Does this mean at the bare minimum, being able to receive payloads through the URLs you provide on the application setup ? Does Shopify define how you communicate/take action based on the requests received , if manual or automatic .
Are you required to always fulfil these requests, especially if your clients/customers operate within US-US.
Any answers on this would be very helpful.