Why am I not receiving GDPR webhooks from my data deletion requests?

Shopify Apps

Topic summary

Reports that GDPR data-deletion requests trigger Shopify’s email notification but no corresponding webhook is delivered to the app’s server endpoint. GDPR webhooks notify apps to act on data erasure requests; the user suspects a configuration or integration issue rather than a platform-wide failure.

Notes and context:

  • A prior issue with OAuth redirect URLs was fixed via auto-redirect, but the author believes it’s unrelated here.
  • References potential Node.js/SDK-related problems (Shopify shopify-api-js issue #256) that may be relevant.
  • Screenshots are provided (app settings/webhook configuration), which appear central to understanding the current setup and endpoints.

Open questions/status:

  • No confirmations of webhook receipt or specific error diagnostics are shared yet (e.g., logs, endpoint responses).
  • No community-provided solution or next steps in the thread so far; the author is continuing to investigate and asks what may be missing in their setup.
Summarized with AI on January 6. AI used: gpt-5.
1

Hi, I’m not receiving GDPR webhooks from Shopify when I request delete of data. I receive an email so I know it’s working, but I don’t get anything to my server. I had a similar issue with redirect URLs before where I needed to automatically redirect, but that doesn’t seem like the case here. I will continue to work on it, but figured I’d ask here in the meantime. I’ve seen a lot of people having somewhat related issues in NodeJS as well: https://github.com/Shopify/shopify-api-js/issues/256

Maybe there’s something I missed or am just unaware of that’s making this harder than it needs to be.

Screenshot 2024-02-08 at 11.04.21 AM.png
Screenshot 2024-02-08 at 11.04.21 AM.png988×674 71.8 KB

Screenshot 2024-02-08 at 11.03.47 AM.png
Screenshot 2024-02-08 at 11.03.47 AM.png658×290 22.6 KB

Screenshot 2024-02-08 at 11.03.28 AM.png
Screenshot 2024-02-08 at 11.03.28 AM.png805×511 75.4 KB