Gdpr - upcoming law for European merchants

kevinrm · #11 03-26-2018, 07:24 PM

They have zero jurisdiction over people not in Europe...

voodoo1967 · #12 03-26-2018, 11:29 PM

I would advise you have a read of this
http://safedatamatters.com/gdpr-datacontrollers-part1/

If you hold information on EU citizens then GDPR applies to you, it seems.

elmirage001 · #13 03-27-2018, 05:00 PM

We're in the US and about 4% of our business comes from the EU & UK. There is no way we're going to try to comply with GDPR. We'll just remove the EU countries and the UK.

Has anyone seen any opt out language? I'm sure we'll need some language in our Terms of Service.

Tim Soles · #14 04-05-2018, 02:08 AM

As a UK company we will have to comply with the new regulations and the main impact for us is getting the customer's specific permission through a tick box to allow us to subsequently send them marketing emails.

In the past, this consent was included in our general terms and conditions of placing an order, but now it has to be a separate specific and positive consent in a tick box, and we will have to retain a permanent record of this consent.

For our part we will prefer to have this built in to x-cart rather than establishing separate databases.

Triple A Racing · #15 04-05-2018, 08:50 AM

Quote:

Originally Posted by Tim Soles

For our part we will prefer to have this built in to x-cart rather than establishing separate databases.

Glad you added the prefix "...for our part" to that conclusion

Conjecture and Opinions on; Planned compliance measures, countries theoretically affected, countries actually affected, ergo businesses potentially at risk, the ability for this to actually be enforced etc etc etc vary massively and this collection of varied opinions, is the only true live reference point to GDPR... so far....

If and we say If, XC do decide to add a method of GDPR compliance to XC5, then this must only be by way of a module (free or chargeable / XC / Third Party Developer / Custom Home Built) because... this then allows selective choice by all storeowners, which is very important.

Many storeowners may / will be unaffected and therefore, will be (and rightly so) disenfranchised

with having any GPDR compliance processes forced upon them as part of XC5 #Core as it will be 100% superfluous in their case. @qualiteam please pass this on to the right XC people. Thx!

kevinrm · #16 04-05-2018, 07:30 PM

Quote:

Originally Posted by Triple A Racing

Glad you added the prefix "...for our part" to that conclusion

If and we say If, XC do decide to add a method of GDPR compliance to XC5, then this must only be by way of a module (free or chargeable / XC / Third Party Developer / Custom Home Built) because... this then allows selective choice by all storeowners, which is very important.

Adding a simple checkbox that will enable or disable a feature is hardly forcing anything. I'm beginning to wonder why you resist these simple things...

Triple A Racing · #17 04-05-2018, 09:56 PM

Quote:

Originally Posted by kevinrm

Adding a simple checkbox that will enable or disable a feature is hardly forcing anything

It's enforcing a #Core process / service that's completely unnecessary for some XC5 storeowners. That's the point.

It's just as easy to add a module if you need it or not add a module if you don't. That's currently still one of the attractions of XC5 i.e. controllable customisation.
Some previous #Core changes / improvements have been either superfluous to many or caused big issues elsewhere within XC5. As you know!

Quote:

Originally Posted by kevinrm

I'm beginning to wonder why you resist these simple things...

Feel free to wonder, but in this case, it's not a simple change. That's why. If you dig deeper into GDPR even at it's current status, then this will become pretty clear...

xim · #18 04-06-2018, 12:21 AM

In 2-3 weeks we are going to release GDPR-friendly add-ons for xc5.3.5.x and xc4.7.x branches.

And yes, it is not about a simple checkbox on the site. You need to change all your business process to make it compliant GDPR. However, our addon will help merchants to be GDPR friendly.

cflsystems · #19 04-06-2018, 04:57 AM

Max is this module going to be flexible or will it aim at EU stores only? Meaning - if any website/store does not need or want to accept and implement these rules can they still use the module but tweak info/wording/labels so to have sort of their own gdpr policy?

Basically use it more of a informative and self-aware tool for customers. I can see how some sites may want to skip the gdpr but voluntarily enforce their own rules and inform customers.

voodoo1967 · #20 04-06-2018, 07:27 AM

Can I also add in here GDPR is much more than a tick box. A customer can ask lots of questions of you, it also deals with security, hacking, notifying the relative authorities if you have been hacked had a data breach etc.
You also need to be able to demonstrate you have taken reasonable steps to secure your data.
The impact of GDPR is going to be huge in my opinion