The General Data Protection Regulation (GDPR) which will come into effect on May 25th aims at unifying regulations related to data privacy policies in the European Union. This text reinforces people’s rights and imposes a new accountability logic on entities involved by requiring them to take the necessary, appropriate measures to ensure a suitable level of security when processing personal data.
Concerned entities
GDPR is intended to apply to all processing of personal data, whether automated or manual. Processing of data is defined as an operation or set of operations carried out and applied to personal data or data sets (e.g. Collection, storage, modification, extraction, viewing, use, communication, destruction, etc.).
Personal data comprises all information relating to a natural person and enabling that person to be directly or indirectly identified (E.g. full name, email address, IP address, telephone number, location data, consumer habits, etc.).
The regulation concerns not only any European company, but also any company located outside this territory but processing personal data of European citizens.
PrestaShop Marketplace Partners
You are likely to be affected by this regulation, since the products you sell on Prestashop Marketplace are very likely to fulfill the conditions of application of the RGPD, namely:
- Your products (modules, themes, email templates) collect personal data like identity, email address, IP address, telephone number, location data, consumption habits, etc.
- The users of your products are located on the territory of the European Union, ie your products are listed on at least one of the EU countries.
FAQ:
Are my products concerned?
Your products are affected by the law if:
- They collect personal data (any information relating to a natural person that directly or indirectly enables him to be identified): identity, email address, IP address, phone number, localization, consumption habits, etc.
- They collect personal data if you selected EU countries when listing your products on PrestaShop Addons, these products should be compliant.
What do I need to do to ensure my products comply with the law?
PrestaShop has developed the Official RGPD by PrestaShop Module which includes new hooks for :
- Declare your module to the Official RGPD by PrestaShop Module,
- Display checkboxes to collect user consent ;
- Delete customers' personal data;
- Export personal data.