GDPR, GDPR and more GDPR. At all times and everywhere. The digital world, always in continuous evolution, faces the difficult (and necessary) task of protecting our privacy without reservation and with the greatest guarantees through a new modernized law that has no other purpose than to make us more owners of our data. This commitment , which at first glance seems as crystal clear as it is obvious, is causing a real headache for the main players in e-commerce. Companies without much idea of what the issue is about, customers without the desire to be informed, governments eager to hunt down the clueless and, above all, inboxes saturated with emails that look like spam. What a succulent menu, right? At Línea Gráfica we accept the challenge of deciphering what it brings, why it is necessary now and how to adapt to this new law in the simplest way possible if you have a PrestaShop business and you don't know where to start.
<
>
What is the GDPR?
These famous acronyms correspond to the General Regulation for Data Protection , a law promoted in the European Union that came into force last May and replaces the Organic Law on Personal Data Protection of 1999. That's nothing. After almost two decades subject to an extra limited law, we are finally made owners of the data we introduce into the network of networks. We are finally aware (to a greater or lesser extent) of where they go, what they are used for, for what purpose and what happens to them once we break the link with the site. All with the main objective of avoiding the trafficking of personal information and preserving privacy between company and consumer .Why is it necessary for the user?
The GDPR is of vital importance because users (more than ever) need security on the Internet . Nowadays, having legal support that protects our privacy as consumers not only offers peace of mind, but is also a historic achievement that invites positivism.
Does this mean that more laws of this type will come? The digital world is changing at a rapid pace and I am afraid that being part of such a revolution means being more vulnerable. So yes, this is seen as the first step for both companies and users:
- Limiting data retention : determining the duration beforehand, when the data provided has achieved the objective for which it was requested, it will be mandatory to completely delete it.
- My data, closer to you : thanks to data portability, users can retrieve and deliver all their information and take it to the network that interests them the most. Whether it's another social network, a financial website or the most bizarre video platform.
- Full protection for minors' information : they can demand that it be deleted without leaving a trace. This new guideline requires an adaptation of the content to improve understanding by the youngest children and makes parental consent mandatory for registering on a website.
- With Rights first: the new regulation allows users to have access to rectify or oppose data electronically. An essential aspect that deserved more prominence.
- Life after death: The GDPR allows us to control the retention, deletion and communication of data after death.
- Under the cloak of the authorities: in case of problems, it will be the government itself that will be responsible for solving them and not the company that owns our data.
How do I adapt my PrestaShop store to the GDPR?
Under the expert supervision of a Data Protection Officer (internal or external), we must adapt all the points mentioned above to comply with this new regulation. First of all, we must carry out a study on the privacy we offer in our PrestaShop store: what risks exist, what happens with the data we have accumulated and, above all, what we need to be up to date . This process is expected to be highly demanding, so the figure of a legal representative is recommended. In addition, measures must be adopted to guarantee compliance with the regulation from the moment a company, product, service or activity that involves data processing is designed , as a rule and from the source. And finally, through the Principle of transparency, legal notices and privacy policies must be easier to understand in their section of the store. This will save headaches for both companies and users, believe me.With Línea Gráfica the GDPR is easier
The function of Línea Gráfica is to make a series of improvements to the online store with the sole purpose of having all the necessary tools to comply with the new Data Protection. This personalized service will only be effective in versions 1.5.x, 1.6.x and 1.7.x and boasts the following functions:- Add the sections related to data protection ( Legal Notice for customer registration, Legal Notice for newsletter subscription, Privacy Policy and Cookies Policy ) which are sections of the store's CMS.
- Add (if you don't have it already) our European GDPR Cookie Law Module (Notice + Blocker) - LOPD
- Add to all the forms in the store (contact, registration, new customer, newsletter, etc.) that have a check or any type of validation where they accept the corresponding conditions, a text with a link to the CMS that contains the specific legal information related to the form.
- Add the CIF in the footer so that it is always displayed in the store.
- Review and add the CIF and company registration details (in the commercial register) to the " Privacy Policy " section.
- Add a module so that the client's account has a section with the following options:
- "MY PERSONAL INFORMATION" with a form to view the registered data, modify it and validate it.
- "MY PERSONAL DATA", which allows the user to download their data in PDF or CSV format and where they are informed of the right to modify and delete all personal data that appears on the "MY ACCOUNT" page through the contact page.
- In addition, the module adds the functionality of storing in the Database all the consents (checked) that have been made by the clients.
- Modify the "newsletter" template so that the legal conditions appear when they reach the client .
- Inform the client of the need to Send an email to all users registered in the newsletter where they are informed of the new conditions.
IMPORTANT: All texts informing about the new guideline must be provided by the client. LÍNEA GRÁFICA does not include any legal text in its service and is not responsible for the content of the texts provided by the client, since this is beyond its competence.
