Feel free to reach out!

Enquire now

July 18th, 2019

6 Valuable Tips To Build A GDPR-compliant WooCommerce Store


The emergence of data as an asset has also made it a prime target for theft. This has forced jurisdictions around the world to enact stringent data protection laws. One such regulation enforced in the European Union is the General Data Protection Regulation (GDPR). The law which came into effect in 2018 is meant to protect EU citizens’ sensitive private information inside and outside the European Economic Area. The law directs businesses to communicate to customers what information they are collecting and why do they need it. They must take a person’s consent before accessing her data. This means that if you are an e-commerce operator, then you need a GDPR-compliant WooCommerce store to remain in business. The following tips will help you in creating an outlet that conforms to the vital regulation. 

1. Define Your Store’s Privacy Policy

The privacy policy describes how you collect, use, share and handle data of your users. There must be a separate privacy policy page that mentions your organization’s name and all the information like names, e-mail IDS, URLs, etc. which you gather. It must also explain the reason for the purpose and the third-parties who have access to the data. It is also necessary to tell the audience how long the details are retained. Moreover, explain how can the information be downloaded or deleted and how can people get in touch for any data-related problems. WordPress provides a privacy policy generator that can be accessed by visiting Settings > Privacy in your dashboard.

2. Alter The Terms & Conditions Text

The terms and conditions include the rules, specifications, and arrangements that users must agree to if they want to conduct business with you. The text on this page must also be altered to make it compatible with the new regulation. The simplest way to do so is by including text which links to your store’s privacy policy. In case, you do not have a terms & conditions page, then you must get one now. It should also have a checkbox in which users will need to tick to show their agreement with your store’s conditions. Creating this page is easy and you need to only use the following path:

WooCommerce > Settings > Checkout > Terms and Conditions > Select a Page

3. Align The User Registration Process With GDPR

WooCommerce allows users to enable customer registration in the store. This can be done by visiting Settings > Accounts and ticking the relevant checkbox. This will add a registration form with username and password on the My Account page.  In order to enable people to subscribe to your outlet, you will require some of their key personal information. This means that the privacy policy checkbox must be a part of the registration form. Moreover, you must collect only the data you strictly need for your business purposes.

4. Make It Mandatory To Agree To The Privacy Policy In The Contact Form

Many people convert website to WordPress theme to start a virtual outlet. The main reason behind their switch is the availability of numerous plugins for adding versatile features. WooCommerce itself is one such tool that converts a WordPress interface into an online store. Another plugin category that is popular among business users is a contact form. These solutions add a form where visitors can enter personal information like name, e-mail address, phone number, etc. so that you can get back to them. The nature of the data being acquired through the form makes it necessary to include privacy policy consent in it. Include the privacy policy checkbox and make it mandatory for users to click it for submitting the form.

5. Only Allow Registered Users To Provide Product Reviews

Product reviews are a key part of all virtual shops which help visitors make up their minds while making a purchase. It is obvious that these kinds of feedback have personal information. This means store owners need to take the user’s consent before allowing them to post a review. Adding one more step can turn off most visitors from leaving feedback. The best solution is to let only registered users provide reviews. These people, during registration, have already agreed to your privacy policy and do not require to give the same consent again. This is one of the key tips for creating a GDPR-compliant WooCommerce store. Go to your dashboard and use the following path to access the relevant settings:

WooCommerce > Settings > Products > General

Now tick the box against the option saying Reviews can only be left by “verified owners”.

6. Install Plugins After Checking For GDPR Compliance

It has been over a year since the new law came into effect. Most plugin developers who create products that access user data have made sure that the items conform to the regulation. However, it will be sensible to look out for the GDPR-compliant tag before installing a software. Store owners use various third-party solutions for analytics, promotions, and other purposes. They must choose products that have been created by reliable service providers and clearly mention that they comply with the law. Business users must also remove any tool which is not aligned with the specifications of the regulation.


These are some helpful suggestions which you can use to make a store which complies with GDPR. You can also hire expert WordPress developers who will make the necessary modifications to the different website sections to align the outlet with the law.



Get Quote

We are always looking for innovation and new partnerships. Whether you would want to hear from us about our services, partnership collaborations, leave your information below, we would be really happy to help you.