SlideShare ist ein Scribd-Unternehmen logo

E-COMMERCE EXPO 2018 GDPR

E-Commerce Berlin EXPO
E-Commerce Berlin EXPO

Petr Svoboda CEO & Founder Shopsys The EU’s General Data Protection Regulation becomes enforceable starting May 25, 2018. Petr Svoboda, the CEO of Shopsys, will share all the know-how of implementing GDPR compliance into tens of leading e-commerce sites. The presentation will cover: Protection of user data in today’s digital era; data subject/controller/processor relationship; obligations and customizations (customer rights, privacy policy consent); other recommended customizations; and the most important takeaways.

Recht
1 von 47
Downloaden Sie, um offline zu lesen
E-COMMERCE BERLIN EXPO 2018 FEBRUARY 15 STATION BERLIN
How GDPR Will Affect Your Ecommerce Technology Petr Svoboda, CEO at Shopsys
GDPR Protection of users data in today’s digital era Controlled user data flow in a supply chain Users’ consent to processing their data Prevention of users data leaks The same regulation over all EU countries
Agenda Data Subject, Controller and Processor Obligations and Customizations Customer Rights Privacy Policy Consent Recommended Customizations Additional Customizations Takeaways
Data Subject Data Controller Data Processor Customer Employee eRetailer Authorities Tax Office, Social Insurance Administration, … Payroll Clerk Marketing Agency Software Provider Server Provider 1 1 2 2 2 2 3 1 Information obligation 2 Contract on the processing of personal data 3 Records of processing of personal data
GDPR.shopsys.com
GDPR.shopsys.com
Obligations and Customizations
Customer Rights
Right To Access Customer can make a request to retailer for all personal information gathered. Information must be provided within 30 days of request. E-commerce platform’s administration panel can provide feature to export all founded data.
Right To Be Forgotten Customer can request that any and all personal information be erased, except that pertaining to specific legal duties (eg. accounting, archiving, etc.) E-commerce platform’s administration panel can provide feature to erase all founded and collected data.
Transfer Of Information If a customer decides to change providers, he will still be able to transfer his data. We recommend preparing the import and export features of a customer’s data and order history ahead of time. Shopsys and APEK (Czech e-commerce association) have prepared an XML template document
Three-layered Information 1st layer: Sentence along checkbox with agreement (easily understandable) 2nd layer: Paragraph describing the handling of user data (easily understandable) hovering bubble over 1st layer, or summary on the top of the page with the Privacy Policy (2nd and 3rd layer together). 3rd layer: Full version of the Privacy Policy.
Privacy Policy Consent
Newsletter Consent to Privacy Policy Un-checked checkbox Log with date & time Recommendations: double opt-in bubble with 2nd level of three layered information
User Registration Consent to Privacy Policy Un-checked checkbox Log with date & time Recommendations: double opt-in bubble with 2nd level of Three layered information
Order If there are only inputs needed for processing the order: “I acknowledge the Privacy Policy for the purpose of order execution”, along with agreement with the Terms and Conditions. There is no need for a stand-alone checkbox for Newsletter/Promotions since you can send it to all your customers (with an unsubscribe option). Recommendation: bubble with 2nd level of Three layered information
Order If we use a third-party service for the post-purchase survey: stand-alone checkbox for agreement with survey authorities recommend unchecked checkbox survey providers recommend checked checkbox
Order If asked to supply data not needed for processing the order you need to use the stand-alone agreement with the Privacy Policy. The same applies for user’s registration.
Loyalty programs, Competitions Consent to Privacy Policy Un-checked checkbox Log with date & time Recommendations: double opt-in bubble with 2nd level of Three layered information
Reviews, Discussions Consent to Privacy Policy Un-checked checkbox Log with date & time Recommendations: double opt-in bubble with 2nd level of Three layered information
User Tracking Consent ePrivacy (separate from GDPR) Currently recommend waiting for a valid version Presumably: 1st party cookies and 3rd party cookies continue to collect anonymous data without requiring user agreement
Recommended Customizations
Double Opt-in Newsletter/Promotions Sign-Up, Product Review Submit, User Registration, etc. are completed once a confirmation link in the email has been clicked. Verifies identity of email address owner.
HTTPS Use encrypted communications with a trusted SSL certificate
Security Audit Security audit and implementation against the leak of personal and other data. We recommend following OWASP Top 10 - 2017: 
 shopsys.com/u/OWASP17
OWASP Injection Broken Authentification Sensitive Data Exposure XML External Entities Broken Access Control Security Misconfiguration Cross-Site Scripting Insecure Deserialization Using Components with Known Vulnerabilities Insufficient Logging & Monitoring
Additional Customizations
Data Pseudonymization User data is encrypted before being saved in the database Encryption key is stored on separate sever and communicated via API Technically difficult solution
Anonymizing Of User Data Anonymizing/overwriting of all user data when database is being copied by developers to their local computers or internal servers. Inability to reverse decryption
Monitoring Data Access Monitoring and logging of all accesses to user data at administration panel of e-commerce platform on development and production server
Takeaways
Takeaways Add Consent to the Privacy Policy when asking for user data (except for data for execution of an order) Make a security audit and migrate to HTTPS Always provide an unsubscribe option in your promotion e-mails
Deck & specifications: GDPR.shopsys.com
www.shopsys-framework.com

Empfohlen

Privacy Policy
Privacy Policy Privacy Policy
Privacy Policy Greg Hague
 
Eu GDPR Compliance Magento 2 Extension User Guide- SetuBridge
Eu GDPR Compliance Magento 2 Extension User Guide- SetuBridgeEu GDPR Compliance Magento 2 Extension User Guide- SetuBridge
Eu GDPR Compliance Magento 2 Extension User Guide- SetuBridgeSetuBridge Technolabs
 
CRAF General Help and Tips
CRAF General Help and TipsCRAF General Help and Tips
CRAF General Help and TipsUTMartineForms
 
GDPR: A Practical Guide for Marketers
GDPR: A Practical Guide for MarketersGDPR: A Practical Guide for Marketers
GDPR: A Practical Guide for MarketersTreasure Data, Inc.
 
GDPR 
- The Do’s and Don'ts for Marketeers
GDPR 
- The Do’s and Don'ts for Marketeers GDPR 
- The Do’s and Don'ts for Marketeers
GDPR 
- The Do’s and Don'ts for Marketeers Burst
 
Privacy and cookies crm inspiration days 2013
Privacy and cookies crm inspiration days 2013Privacy and cookies crm inspiration days 2013
Privacy and cookies crm inspiration days 2013Bart Van Den Brande
 
Cloud Roundtable
Cloud RoundtableCloud Roundtable
Cloud RoundtableMicrosoft
 
Are you GDPR compliant?
Are you GDPR compliant? Are you GDPR compliant?
Are you GDPR compliant? TrekkSoft
 

Empfohlen

Privacy Policy
Privacy Policy Privacy Policy
Privacy Policy Greg Hague
 
Eu GDPR Compliance Magento 2 Extension User Guide- SetuBridge
Eu GDPR Compliance Magento 2 Extension User Guide- SetuBridgeEu GDPR Compliance Magento 2 Extension User Guide- SetuBridge
Eu GDPR Compliance Magento 2 Extension User Guide- SetuBridgeSetuBridge Technolabs
 
CRAF General Help and Tips
CRAF General Help and TipsCRAF General Help and Tips
CRAF General Help and TipsUTMartineForms
 
GDPR: A Practical Guide for Marketers
GDPR: A Practical Guide for MarketersGDPR: A Practical Guide for Marketers
GDPR: A Practical Guide for MarketersTreasure Data, Inc.
 
GDPR 
- The Do’s and Don'ts for Marketeers
GDPR 
- The Do’s and Don'ts for Marketeers GDPR 
- The Do’s and Don'ts for Marketeers
GDPR 
- The Do’s and Don'ts for Marketeers Burst
 
Privacy and cookies crm inspiration days 2013
Privacy and cookies crm inspiration days 2013Privacy and cookies crm inspiration days 2013
Privacy and cookies crm inspiration days 2013Bart Van Den Brande
 
Cloud Roundtable
Cloud RoundtableCloud Roundtable
Cloud RoundtableMicrosoft
 
Are you GDPR compliant?
Are you GDPR compliant? Are you GDPR compliant?
Are you GDPR compliant? TrekkSoft
 
"GDPR - All You Need To Know" presentation from event Nov 16th in Berlin
"GDPR - All You Need To Know" presentation from event Nov 16th in Berlin"GDPR - All You Need To Know" presentation from event Nov 16th in Berlin
"GDPR - All You Need To Know" presentation from event Nov 16th in BerlinMailjet
 
Treasure Data Marketers Guide to GDPR (Global Data Protection Regulation)
Treasure Data Marketers Guide to GDPR (Global Data Protection Regulation)Treasure Data Marketers Guide to GDPR (Global Data Protection Regulation)
Treasure Data Marketers Guide to GDPR (Global Data Protection Regulation)WBDC of Florida
 
Data Restart 2022: Marina Mchedlishvili - How to build strong data strategies...
Data Restart 2022: Marina Mchedlishvili - How to build strong data strategies...Data Restart 2022: Marina Mchedlishvili - How to build strong data strategies...
Data Restart 2022: Marina Mchedlishvili - How to build strong data strategies...Taste
 
Data Security Whitepaper
Data Security WhitepaperData Security Whitepaper
Data Security WhitepaperSample Solutions
 
Are you GDPR Ready? Checklist Whitepaper
Are you GDPR Ready? Checklist WhitepaperAre you GDPR Ready? Checklist Whitepaper
Are you GDPR Ready? Checklist WhitepaperServersys
 
201804 idento.one v3
201804 idento.one v3201804 idento.one v3
201804 idento.one v3h-bauer2014
 
Unraveling the GDPR Compliance
Unraveling the GDPR ComplianceUnraveling the GDPR Compliance
Unraveling the GDPR ComplianceCleverTap
 
Preparing for GDPR: General Data Protection Regulation - Stakeholder Presenta...
Preparing for GDPR: General Data Protection Regulation - Stakeholder Presenta...Preparing for GDPR: General Data Protection Regulation - Stakeholder Presenta...
Preparing for GDPR: General Data Protection Regulation - Stakeholder Presenta...Qualsys Ltd
 
The GDPR Most Wanted: The Marketer and Analyst's Role in Compliance
The GDPR Most Wanted: The Marketer and Analyst's Role in ComplianceThe GDPR Most Wanted: The Marketer and Analyst's Role in Compliance
The GDPR Most Wanted: The Marketer and Analyst's Role in ComplianceObservePoint
 
Gdpr compliance critical changes
Gdpr compliance critical changesGdpr compliance critical changes
Gdpr compliance critical changesAngela Nubbert
 
Taking the Fear Out of GDPR
Taking the Fear Out of GDPRTaking the Fear Out of GDPR
Taking the Fear Out of GDPRNate Stockard
 
The Post-GDPR World for Event Marketers: What Happened, What We Did, What's Next
The Post-GDPR World for Event Marketers: What Happened, What We Did, What's NextThe Post-GDPR World for Event Marketers: What Happened, What We Did, What's Next
The Post-GDPR World for Event Marketers: What Happened, What We Did, What's NextSplash
 
GDPR - What You Need To Know
GDPR - What You Need To KnowGDPR - What You Need To Know
GDPR - What You Need To KnowAndrew Marks
 
What is GDPR and why does it matter to me?
What is GDPR and why does it matter to me? What is GDPR and why does it matter to me?
What is GDPR and why does it matter to me? Desynit
 
Kantara - Consent & Information Sharing WG Update
Kantara - Consent & Information Sharing WG UpdateKantara - Consent & Information Sharing WG Update
Kantara - Consent & Information Sharing WG Updatekantarainitiative
 
9 Practical Steps 2 GDPR Compliance
9 Practical Steps 2 GDPR Compliance9 Practical Steps 2 GDPR Compliance
9 Practical Steps 2 GDPR ComplianceAndreas Batsis
 
Are You Prepared for the GDPR?
Are You Prepared for the GDPR?Are You Prepared for the GDPR?
Are You Prepared for the GDPR?PrivacyPolicies.com
 
Privacy & Big Data: "What Marketers Need to Know About Privacy"
Privacy & Big Data: "What Marketers Need to Know About Privacy"Privacy & Big Data: "What Marketers Need to Know About Privacy"
Privacy & Big Data: "What Marketers Need to Know About Privacy"iMedia Connection
 
Privacy: a fundamental feature in web application development
Privacy: a fundamental feature in web application developmentPrivacy: a fundamental feature in web application development
Privacy: a fundamental feature in web application developmentAchilleas Papageorgiou
 
How to Collect and Process Data Under GDPR?
How to Collect and Process Data Under GDPR?How to Collect and Process Data Under GDPR?
How to Collect and Process Data Under GDPR?Piwik PRO
 
EBE 2020 Warum Amazon Advertising 2020 unverzichtbar für deinen Erfolg ist
EBE 2020 Warum Amazon Advertising 2020 unverzichtbar für deinen Erfolg istEBE 2020 Warum Amazon Advertising 2020 unverzichtbar für deinen Erfolg ist
EBE 2020 Warum Amazon Advertising 2020 unverzichtbar für deinen Erfolg istE-Commerce Berlin EXPO
 
EBE 2020 Get Empowered
EBE 2020 Get EmpoweredEBE 2020 Get Empowered
EBE 2020 Get EmpoweredE-Commerce Berlin EXPO
 

Weitere ähnliche Inhalte

Ähnlich wie E-COMMERCE EXPO 2018 GDPR

"GDPR - All You Need To Know" presentation from event Nov 16th in Berlin
"GDPR - All You Need To Know" presentation from event Nov 16th in Berlin"GDPR - All You Need To Know" presentation from event Nov 16th in Berlin
"GDPR - All You Need To Know" presentation from event Nov 16th in BerlinMailjet
 
Treasure Data Marketers Guide to GDPR (Global Data Protection Regulation)
Treasure Data Marketers Guide to GDPR (Global Data Protection Regulation)Treasure Data Marketers Guide to GDPR (Global Data Protection Regulation)
Treasure Data Marketers Guide to GDPR (Global Data Protection Regulation)WBDC of Florida
 
Data Restart 2022: Marina Mchedlishvili - How to build strong data strategies...
Data Restart 2022: Marina Mchedlishvili - How to build strong data strategies...Data Restart 2022: Marina Mchedlishvili - How to build strong data strategies...
Data Restart 2022: Marina Mchedlishvili - How to build strong data strategies...Taste
 
Are you GDPR Ready? Checklist Whitepaper
Are you GDPR Ready? Checklist WhitepaperAre you GDPR Ready? Checklist Whitepaper
Are you GDPR Ready? Checklist WhitepaperServersys
 
201804 idento.one v3
201804 idento.one v3201804 idento.one v3
201804 idento.one v3h-bauer2014
 
Unraveling the GDPR Compliance
Unraveling the GDPR ComplianceUnraveling the GDPR Compliance
Unraveling the GDPR ComplianceCleverTap
 
Preparing for GDPR: General Data Protection Regulation - Stakeholder Presenta...
Preparing for GDPR: General Data Protection Regulation - Stakeholder Presenta...Preparing for GDPR: General Data Protection Regulation - Stakeholder Presenta...
Preparing for GDPR: General Data Protection Regulation - Stakeholder Presenta...Qualsys Ltd
 
The GDPR Most Wanted: The Marketer and Analyst's Role in Compliance
The GDPR Most Wanted: The Marketer and Analyst's Role in ComplianceThe GDPR Most Wanted: The Marketer and Analyst's Role in Compliance
The GDPR Most Wanted: The Marketer and Analyst's Role in ComplianceObservePoint
 
Gdpr compliance critical changes
Gdpr compliance critical changesGdpr compliance critical changes
Gdpr compliance critical changesAngela Nubbert
 
Taking the Fear Out of GDPR
Taking the Fear Out of GDPRTaking the Fear Out of GDPR
Taking the Fear Out of GDPRNate Stockard
 
The Post-GDPR World for Event Marketers: What Happened, What We Did, What's Next
The Post-GDPR World for Event Marketers: What Happened, What We Did, What's NextThe Post-GDPR World for Event Marketers: What Happened, What We Did, What's Next
The Post-GDPR World for Event Marketers: What Happened, What We Did, What's NextSplash
 
GDPR - What You Need To Know
GDPR - What You Need To KnowGDPR - What You Need To Know
GDPR - What You Need To KnowAndrew Marks
 
What is GDPR and why does it matter to me?
What is GDPR and why does it matter to me? What is GDPR and why does it matter to me?
What is GDPR and why does it matter to me? Desynit
 
Kantara - Consent & Information Sharing WG Update
Kantara - Consent & Information Sharing WG UpdateKantara - Consent & Information Sharing WG Update
Kantara - Consent & Information Sharing WG Updatekantarainitiative
 
9 Practical Steps 2 GDPR Compliance
9 Practical Steps 2 GDPR Compliance9 Practical Steps 2 GDPR Compliance
9 Practical Steps 2 GDPR ComplianceAndreas Batsis
 
Privacy & Big Data: "What Marketers Need to Know About Privacy"
Privacy & Big Data: "What Marketers Need to Know About Privacy"Privacy & Big Data: "What Marketers Need to Know About Privacy"
Privacy & Big Data: "What Marketers Need to Know About Privacy"iMedia Connection
 
Privacy: a fundamental feature in web application development
Privacy: a fundamental feature in web application developmentPrivacy: a fundamental feature in web application development
Privacy: a fundamental feature in web application developmentAchilleas Papageorgiou
 
How to Collect and Process Data Under GDPR?
How to Collect and Process Data Under GDPR?How to Collect and Process Data Under GDPR?
How to Collect and Process Data Under GDPR?Piwik PRO
 

Ähnlich wie E-COMMERCE EXPO 2018 GDPR (20)

"GDPR - All You Need To Know" presentation from event Nov 16th in Berlin
"GDPR - All You Need To Know" presentation from event Nov 16th in Berlin"GDPR - All You Need To Know" presentation from event Nov 16th in Berlin
"GDPR - All You Need To Know" presentation from event Nov 16th in Berlin
 
Treasure Data Marketers Guide to GDPR (Global Data Protection Regulation)
Treasure Data Marketers Guide to GDPR (Global Data Protection Regulation)Treasure Data Marketers Guide to GDPR (Global Data Protection Regulation)
Treasure Data Marketers Guide to GDPR (Global Data Protection Regulation)
 
Data Restart 2022: Marina Mchedlishvili - How to build strong data strategies...
Data Restart 2022: Marina Mchedlishvili - How to build strong data strategies...Data Restart 2022: Marina Mchedlishvili - How to build strong data strategies...
Data Restart 2022: Marina Mchedlishvili - How to build strong data strategies...
 
Data Security Whitepaper
Data Security WhitepaperData Security Whitepaper
Data Security Whitepaper
 
Are you GDPR Ready? Checklist Whitepaper
Are you GDPR Ready? Checklist WhitepaperAre you GDPR Ready? Checklist Whitepaper
Are you GDPR Ready? Checklist Whitepaper
 
201804 idento.one v3
201804 idento.one v3201804 idento.one v3
201804 idento.one v3
 
Unraveling the GDPR Compliance
Unraveling the GDPR ComplianceUnraveling the GDPR Compliance
Unraveling the GDPR Compliance
 
Preparing for GDPR: General Data Protection Regulation - Stakeholder Presenta...
Preparing for GDPR: General Data Protection Regulation - Stakeholder Presenta...Preparing for GDPR: General Data Protection Regulation - Stakeholder Presenta...
Preparing for GDPR: General Data Protection Regulation - Stakeholder Presenta...
 
The GDPR Most Wanted: The Marketer and Analyst's Role in Compliance
The GDPR Most Wanted: The Marketer and Analyst's Role in ComplianceThe GDPR Most Wanted: The Marketer and Analyst's Role in Compliance
The GDPR Most Wanted: The Marketer and Analyst's Role in Compliance
 
Gdpr compliance critical changes
Gdpr compliance critical changesGdpr compliance critical changes
Gdpr compliance critical changes
 
Taking the Fear Out of GDPR
Taking the Fear Out of GDPRTaking the Fear Out of GDPR
Taking the Fear Out of GDPR
 
The Post-GDPR World for Event Marketers: What Happened, What We Did, What's Next
The Post-GDPR World for Event Marketers: What Happened, What We Did, What's NextThe Post-GDPR World for Event Marketers: What Happened, What We Did, What's Next
The Post-GDPR World for Event Marketers: What Happened, What We Did, What's Next
 
GDPR - What You Need To Know
GDPR - What You Need To KnowGDPR - What You Need To Know
GDPR - What You Need To Know
 
What is GDPR and why does it matter to me?
What is GDPR and why does it matter to me? What is GDPR and why does it matter to me?
What is GDPR and why does it matter to me?
 
Kantara - Consent & Information Sharing WG Update
Kantara - Consent & Information Sharing WG UpdateKantara - Consent & Information Sharing WG Update
Kantara - Consent & Information Sharing WG Update
 
9 Practical Steps 2 GDPR Compliance
9 Practical Steps 2 GDPR Compliance9 Practical Steps 2 GDPR Compliance
9 Practical Steps 2 GDPR Compliance
 
Are You Prepared for the GDPR?
Are You Prepared for the GDPR?Are You Prepared for the GDPR?
Are You Prepared for the GDPR?
 
Privacy & Big Data: "What Marketers Need to Know About Privacy"
Privacy & Big Data: "What Marketers Need to Know About Privacy"Privacy & Big Data: "What Marketers Need to Know About Privacy"
Privacy & Big Data: "What Marketers Need to Know About Privacy"
 
Privacy: a fundamental feature in web application development
Privacy: a fundamental feature in web application developmentPrivacy: a fundamental feature in web application development
Privacy: a fundamental feature in web application development
 
How to Collect and Process Data Under GDPR?
How to Collect and Process Data Under GDPR?How to Collect and Process Data Under GDPR?
How to Collect and Process Data Under GDPR?
 

Mehr von E-Commerce Berlin EXPO

EBE 2020 Warum Amazon Advertising 2020 unverzichtbar für deinen Erfolg ist
EBE 2020 Warum Amazon Advertising 2020 unverzichtbar für deinen Erfolg istEBE 2020 Warum Amazon Advertising 2020 unverzichtbar für deinen Erfolg ist
EBE 2020 Warum Amazon Advertising 2020 unverzichtbar für deinen Erfolg istE-Commerce Berlin EXPO
 
EBE 2020 The truth behind mass customization - Unlock customization business ...
EBE 2020 The truth behind mass customization - Unlock customization business ...EBE 2020 The truth behind mass customization - Unlock customization business ...
EBE 2020 The truth behind mass customization - Unlock customization business ...E-Commerce Berlin EXPO
 
EBE 2020 Retargeting with Programmatic Advertising: Bring back customers to y...
EBE 2020 Retargeting with Programmatic Advertising: Bring back customers to y...EBE 2020 Retargeting with Programmatic Advertising: Bring back customers to y...
EBE 2020 Retargeting with Programmatic Advertising: Bring back customers to y...E-Commerce Berlin EXPO
 
EBE 2020 The Evolution of E-commerce Systems
EBE 2020 The Evolution of E-commerce SystemsEBE 2020 The Evolution of E-commerce Systems
EBE 2020 The Evolution of E-commerce SystemsE-Commerce Berlin EXPO
 
EBE 2020 1:1 Personalisierung im eCommerce - Tino Hartmann
EBE 2020 1:1 Personalisierung im eCommerce - Tino HartmannEBE 2020 1:1 Personalisierung im eCommerce - Tino Hartmann
EBE 2020 1:1 Personalisierung im eCommerce - Tino HartmannE-Commerce Berlin EXPO
 
EBE 2020 Program Management – How to influence without authority - Ramon Pall...
EBE 2020 Program Management – How to influence without authority - Ramon Pall...EBE 2020 Program Management – How to influence without authority - Ramon Pall...
EBE 2020 Program Management – How to influence without authority - Ramon Pall...E-Commerce Berlin EXPO
 
EBE 2020 Datengetriebene Insights – Erfolgsfaktor im E-Commerce und Retail - ...
EBE 2020 Datengetriebene Insights – Erfolgsfaktor im E-Commerce und Retail - ...EBE 2020 Datengetriebene Insights – Erfolgsfaktor im E-Commerce und Retail - ...
EBE 2020 Datengetriebene Insights – Erfolgsfaktor im E-Commerce und Retail - ...E-Commerce Berlin EXPO
 
EBE 2020 e-Commerce und Onlinemarketing - Erfolgreich in einer Nische - Dani...
EBE 2020 e-Commerce und Onlinemarketing - Erfolgreich in einer Nische - Dani...EBE 2020 e-Commerce und Onlinemarketing - Erfolgreich in einer Nische - Dani...
EBE 2020 e-Commerce und Onlinemarketing - Erfolgreich in einer Nische - Dani...E-Commerce Berlin EXPO
 
EBE 2020 Vom Keller zu einer der erfolgreichsten Versandapotheken Deutschlands
EBE 2020 Vom Keller zu einer der erfolgreichsten Versandapotheken DeutschlandsEBE 2020 Vom Keller zu einer der erfolgreichsten Versandapotheken Deutschlands
EBE 2020 Vom Keller zu einer der erfolgreichsten Versandapotheken DeutschlandsE-Commerce Berlin EXPO
 
EBE 2020 Profitables Skalieren von Online Shops durch Social Media Marketing
EBE 2020 Profitables Skalieren von Online Shops durch Social Media MarketingEBE 2020 Profitables Skalieren von Online Shops durch Social Media Marketing
EBE 2020 Profitables Skalieren von Online Shops durch Social Media MarketingE-Commerce Berlin EXPO
 
EBE 2020 How to expand to new markets in 100 days - Dijana Dimitrovska
EBE 2020 How to expand to new markets in 100 days - Dijana DimitrovskaEBE 2020 How to expand to new markets in 100 days - Dijana Dimitrovska
EBE 2020 How to expand to new markets in 100 days - Dijana DimitrovskaE-Commerce Berlin EXPO
 
EBE 2020 The power of AI in risk management - minimize fraud & maximize reven...
EBE 2020 The power of AI in risk management - minimize fraud & maximize reven...EBE 2020 The power of AI in risk management - minimize fraud & maximize reven...
EBE 2020 The power of AI in risk management - minimize fraud & maximize reven...E-Commerce Berlin EXPO
 
EBE 2020 Signifikante Absatzsteigerung durch die Einführung von Customer Cent...
EBE 2020 Signifikante Absatzsteigerung durch die Einführung von Customer Cent...EBE 2020 Signifikante Absatzsteigerung durch die Einführung von Customer Cent...
EBE 2020 Signifikante Absatzsteigerung durch die Einführung von Customer Cent...E-Commerce Berlin EXPO
 
EBE 2020 Payment Excellence: Mit innovativen Payment-Features die Kundenloyal...
EBE 2020 Payment Excellence: Mit innovativen Payment-Features die Kundenloyal...EBE 2020 Payment Excellence: Mit innovativen Payment-Features die Kundenloyal...
EBE 2020 Payment Excellence: Mit innovativen Payment-Features die Kundenloyal...E-Commerce Berlin EXPO
 
EBE 2020 Getting ready for PSD2 on time! How online fashion retailer Zalando ...
EBE 2020 Getting ready for PSD2 on time! How online fashion retailer Zalando ...EBE 2020 Getting ready for PSD2 on time! How online fashion retailer Zalando ...
EBE 2020 Getting ready for PSD2 on time! How online fashion retailer Zalando ...E-Commerce Berlin EXPO
 
EBE 2020 How to put the consumer in the driving seat of the European Digital ...
EBE 2020 How to put the consumer in the driving seat of the European Digital ...EBE 2020 How to put the consumer in the driving seat of the European Digital ...
EBE 2020 How to put the consumer in the driving seat of the European Digital ...E-Commerce Berlin EXPO
 
EBE 2020 The Age of Machines and How to Re-think User Experience
EBE 2020 The Age of Machines and How to Re-think User ExperienceEBE 2020 The Age of Machines and How to Re-think User Experience
EBE 2020 The Age of Machines and How to Re-think User ExperienceE-Commerce Berlin EXPO
 
EBE 2020 Wie ich das sehe. Der Erfahrungsbericht. - Kai Schotten
EBE 2020 Wie ich das sehe. Der Erfahrungsbericht. - Kai SchottenEBE 2020 Wie ich das sehe. Der Erfahrungsbericht. - Kai Schotten
EBE 2020 Wie ich das sehe. Der Erfahrungsbericht. - Kai SchottenE-Commerce Berlin EXPO
 
EBE 2020 Product & category recommendations and user personalization for a me...
EBE 2020 Product & category recommendations and user personalization for a me...EBE 2020 Product & category recommendations and user personalization for a me...
EBE 2020 Product & category recommendations and user personalization for a me...E-Commerce Berlin EXPO
 

Mehr von E-Commerce Berlin EXPO (20)

EBE 2020 Warum Amazon Advertising 2020 unverzichtbar für deinen Erfolg ist
EBE 2020 Warum Amazon Advertising 2020 unverzichtbar für deinen Erfolg istEBE 2020 Warum Amazon Advertising 2020 unverzichtbar für deinen Erfolg ist
EBE 2020 Warum Amazon Advertising 2020 unverzichtbar für deinen Erfolg ist
 
EBE 2020 Get Empowered
EBE 2020 Get EmpoweredEBE 2020 Get Empowered
EBE 2020 Get Empowered
 
EBE 2020 The truth behind mass customization - Unlock customization business ...
EBE 2020 The truth behind mass customization - Unlock customization business ...EBE 2020 The truth behind mass customization - Unlock customization business ...
EBE 2020 The truth behind mass customization - Unlock customization business ...
 
EBE 2020 Retargeting with Programmatic Advertising: Bring back customers to y...
EBE 2020 Retargeting with Programmatic Advertising: Bring back customers to y...EBE 2020 Retargeting with Programmatic Advertising: Bring back customers to y...
EBE 2020 Retargeting with Programmatic Advertising: Bring back customers to y...
 
EBE 2020 The Evolution of E-commerce Systems
EBE 2020 The Evolution of E-commerce SystemsEBE 2020 The Evolution of E-commerce Systems
EBE 2020 The Evolution of E-commerce Systems
 
EBE 2020 1:1 Personalisierung im eCommerce - Tino Hartmann
EBE 2020 1:1 Personalisierung im eCommerce - Tino HartmannEBE 2020 1:1 Personalisierung im eCommerce - Tino Hartmann
EBE 2020 1:1 Personalisierung im eCommerce - Tino Hartmann
 
EBE 2020 Program Management – How to influence without authority - Ramon Pall...
EBE 2020 Program Management – How to influence without authority - Ramon Pall...EBE 2020 Program Management – How to influence without authority - Ramon Pall...
EBE 2020 Program Management – How to influence without authority - Ramon Pall...
 
EBE 2020 Datengetriebene Insights – Erfolgsfaktor im E-Commerce und Retail - ...
EBE 2020 Datengetriebene Insights – Erfolgsfaktor im E-Commerce und Retail - ...EBE 2020 Datengetriebene Insights – Erfolgsfaktor im E-Commerce und Retail - ...
EBE 2020 Datengetriebene Insights – Erfolgsfaktor im E-Commerce und Retail - ...
 
EBE 2020 e-Commerce und Onlinemarketing - Erfolgreich in einer Nische - Dani...
EBE 2020 e-Commerce und Onlinemarketing - Erfolgreich in einer Nische - Dani...EBE 2020 e-Commerce und Onlinemarketing - Erfolgreich in einer Nische - Dani...
EBE 2020 e-Commerce und Onlinemarketing - Erfolgreich in einer Nische - Dani...
 
EBE 2020 Vom Keller zu einer der erfolgreichsten Versandapotheken Deutschlands
EBE 2020 Vom Keller zu einer der erfolgreichsten Versandapotheken DeutschlandsEBE 2020 Vom Keller zu einer der erfolgreichsten Versandapotheken Deutschlands
EBE 2020 Vom Keller zu einer der erfolgreichsten Versandapotheken Deutschlands
 
EBE 2020 Profitables Skalieren von Online Shops durch Social Media Marketing
EBE 2020 Profitables Skalieren von Online Shops durch Social Media MarketingEBE 2020 Profitables Skalieren von Online Shops durch Social Media Marketing
EBE 2020 Profitables Skalieren von Online Shops durch Social Media Marketing
 
EBE 2020 How to expand to new markets in 100 days - Dijana Dimitrovska
EBE 2020 How to expand to new markets in 100 days - Dijana DimitrovskaEBE 2020 How to expand to new markets in 100 days - Dijana Dimitrovska
EBE 2020 How to expand to new markets in 100 days - Dijana Dimitrovska
 
EBE 2020 The power of AI in risk management - minimize fraud & maximize reven...
EBE 2020 The power of AI in risk management - minimize fraud & maximize reven...EBE 2020 The power of AI in risk management - minimize fraud & maximize reven...
EBE 2020 The power of AI in risk management - minimize fraud & maximize reven...
 
EBE 2020 Signifikante Absatzsteigerung durch die Einführung von Customer Cent...
EBE 2020 Signifikante Absatzsteigerung durch die Einführung von Customer Cent...EBE 2020 Signifikante Absatzsteigerung durch die Einführung von Customer Cent...
EBE 2020 Signifikante Absatzsteigerung durch die Einführung von Customer Cent...
 
EBE 2020 Payment Excellence: Mit innovativen Payment-Features die Kundenloyal...
EBE 2020 Payment Excellence: Mit innovativen Payment-Features die Kundenloyal...EBE 2020 Payment Excellence: Mit innovativen Payment-Features die Kundenloyal...
EBE 2020 Payment Excellence: Mit innovativen Payment-Features die Kundenloyal...
 
EBE 2020 Getting ready for PSD2 on time! How online fashion retailer Zalando ...
EBE 2020 Getting ready for PSD2 on time! How online fashion retailer Zalando ...EBE 2020 Getting ready for PSD2 on time! How online fashion retailer Zalando ...
EBE 2020 Getting ready for PSD2 on time! How online fashion retailer Zalando ...
 
EBE 2020 How to put the consumer in the driving seat of the European Digital ...
EBE 2020 How to put the consumer in the driving seat of the European Digital ...EBE 2020 How to put the consumer in the driving seat of the European Digital ...
EBE 2020 How to put the consumer in the driving seat of the European Digital ...
 
EBE 2020 The Age of Machines and How to Re-think User Experience
EBE 2020 The Age of Machines and How to Re-think User ExperienceEBE 2020 The Age of Machines and How to Re-think User Experience
EBE 2020 The Age of Machines and How to Re-think User Experience
 
EBE 2020 Wie ich das sehe. Der Erfahrungsbericht. - Kai Schotten
EBE 2020 Wie ich das sehe. Der Erfahrungsbericht. - Kai SchottenEBE 2020 Wie ich das sehe. Der Erfahrungsbericht. - Kai Schotten
EBE 2020 Wie ich das sehe. Der Erfahrungsbericht. - Kai Schotten
 
EBE 2020 Product & category recommendations and user personalization for a me...
EBE 2020 Product & category recommendations and user personalization for a me...EBE 2020 Product & category recommendations and user personalization for a me...
EBE 2020 Product & category recommendations and user personalization for a me...
 

Kürzlich hochgeladen

citizenship in the Philippines as to the laws applicable
citizenship in the Philippines as to the laws applicablecitizenship in the Philippines as to the laws applicable
citizenship in the Philippines as to the laws applicableSaraSantiago44
 
Understanding Cyber Crime Litigation: Key Concepts and Legal Frameworks
Understanding Cyber Crime Litigation: Key Concepts and Legal FrameworksUnderstanding Cyber Crime Litigation: Key Concepts and Legal Frameworks
Understanding Cyber Crime Litigation: Key Concepts and Legal FrameworksFinlaw Associates
 
Illinois Department Of Corrections reentry guide
Illinois Department Of Corrections reentry guideIllinois Department Of Corrections reentry guide
Illinois Department Of Corrections reentry guideillinoisworknet11
 
PPT Template - Federal Law Enforcement Training Center
PPT Template - Federal Law Enforcement Training CenterPPT Template - Federal Law Enforcement Training Center
PPT Template - Federal Law Enforcement Training Centerejlfernandez22
 
Grey Area of the Information Technology Act, 2000.pptx
Grey Area of the Information Technology Act, 2000.pptxGrey Area of the Information Technology Act, 2000.pptx
Grey Area of the Information Technology Act, 2000.pptxBharatMunjal4
 
Sarvesh Raj IPS - A Journey of Dedication and Leadership.pptx
Sarvesh Raj IPS - A Journey of Dedication and Leadership.pptxSarvesh Raj IPS - A Journey of Dedication and Leadership.pptx
Sarvesh Raj IPS - A Journey of Dedication and Leadership.pptxAnto Jebin
 
Labour legislations in India and its history
Labour legislations in India and its historyLabour legislations in India and its history
Labour legislations in India and its historyprasannamurthy6
 
THE INDIAN CONTRACT ACT 1872 NOTES FOR STUDENTS
THE INDIAN CONTRACT ACT 1872 NOTES FOR STUDENTSTHE INDIAN CONTRACT ACT 1872 NOTES FOR STUDENTS
THE INDIAN CONTRACT ACT 1872 NOTES FOR STUDENTSRoshniSingh312153
 
Guide for Drug Education and Vice Control.docx
Guide for Drug Education and Vice Control.docxGuide for Drug Education and Vice Control.docx
Guide for Drug Education and Vice Control.docxjennysansano2
 
Hungarian legislation made by Robert Miklos
Hungarian legislation made by Robert MiklosHungarian legislation made by Robert Miklos
Hungarian legislation made by Robert Miklosbeduinpower135
 
Right to life and personal liberty under article 21
Right to life and personal liberty under article 21Right to life and personal liberty under article 21
Right to life and personal liberty under article 21vasanthakumarsk17
 
Town of Haverhill's Motion for Summary Judgment on DTC Counterclaims
Town of Haverhill's Motion for Summary Judgment on DTC CounterclaimsTown of Haverhill's Motion for Summary Judgment on DTC Counterclaims
Town of Haverhill's Motion for Summary Judgment on DTC CounterclaimsRich Bergeron
 
Wurz Financial - Wealth Counsel to Law Firm Owners Services Guide.pdf
Wurz Financial - Wealth Counsel to Law Firm Owners Services Guide.pdfWurz Financial - Wealth Counsel to Law Firm Owners Services Guide.pdf
Wurz Financial - Wealth Counsel to Law Firm Owners Services Guide.pdfssuser3e15612
 
Are There Any Alternatives To Jail Time For Sex Crime Convictions in Los Angeles
Are There Any Alternatives To Jail Time For Sex Crime Convictions in Los AngelesAre There Any Alternatives To Jail Time For Sex Crime Convictions in Los Angeles
Are There Any Alternatives To Jail Time For Sex Crime Convictions in Los AngelesChesley Lawyer
 
Analysis on Law of Domicile under Private International laws.
Analysis on Law of Domicile under Private International laws.Analysis on Law of Domicile under Private International laws.
Analysis on Law of Domicile under Private International laws.2020000445musaib
 
Town of Haverhill's Statement of Facts for Summary Judgment on Counterclaims ...
Town of Haverhill's Statement of Facts for Summary Judgment on Counterclaims ...Town of Haverhill's Statement of Facts for Summary Judgment on Counterclaims ...
Town of Haverhill's Statement of Facts for Summary Judgment on Counterclaims ...Rich Bergeron
 
1990-2004 Bar Questions and Answers in Sales
1990-2004 Bar Questions and Answers in Sales1990-2004 Bar Questions and Answers in Sales
1990-2004 Bar Questions and Answers in SalesMelvinPernez2
 
The Punjab Land Reforms AcT 1972 HIRDEBIR.pptx
The Punjab Land Reforms AcT 1972 HIRDEBIR.pptxThe Punjab Land Reforms AcT 1972 HIRDEBIR.pptx
The Punjab Land Reforms AcT 1972 HIRDEBIR.pptxgurcharnsinghlecengl
 
RA. 7432 and RA 9994 Senior Citizen .pptx
RA. 7432 and RA 9994 Senior Citizen .pptxRA. 7432 and RA 9994 Senior Citizen .pptx
RA. 7432 and RA 9994 Senior Citizen .pptxJFSB1
 
Choosing the Right Business Structure for Your Small Business in Texas
Choosing the Right Business Structure for Your Small Business in TexasChoosing the Right Business Structure for Your Small Business in Texas
Choosing the Right Business Structure for Your Small Business in TexasBrandy Austin
 

Kürzlich hochgeladen (20)

citizenship in the Philippines as to the laws applicable
citizenship in the Philippines as to the laws applicablecitizenship in the Philippines as to the laws applicable
citizenship in the Philippines as to the laws applicable
 
Understanding Cyber Crime Litigation: Key Concepts and Legal Frameworks
Understanding Cyber Crime Litigation: Key Concepts and Legal FrameworksUnderstanding Cyber Crime Litigation: Key Concepts and Legal Frameworks
Understanding Cyber Crime Litigation: Key Concepts and Legal Frameworks
 
Illinois Department Of Corrections reentry guide
Illinois Department Of Corrections reentry guideIllinois Department Of Corrections reentry guide
Illinois Department Of Corrections reentry guide
 
PPT Template - Federal Law Enforcement Training Center
PPT Template - Federal Law Enforcement Training CenterPPT Template - Federal Law Enforcement Training Center
PPT Template - Federal Law Enforcement Training Center
 
Grey Area of the Information Technology Act, 2000.pptx
Grey Area of the Information Technology Act, 2000.pptxGrey Area of the Information Technology Act, 2000.pptx
Grey Area of the Information Technology Act, 2000.pptx
 
Sarvesh Raj IPS - A Journey of Dedication and Leadership.pptx
Sarvesh Raj IPS - A Journey of Dedication and Leadership.pptxSarvesh Raj IPS - A Journey of Dedication and Leadership.pptx
Sarvesh Raj IPS - A Journey of Dedication and Leadership.pptx
 
Labour legislations in India and its history
Labour legislations in India and its historyLabour legislations in India and its history
Labour legislations in India and its history
 
THE INDIAN CONTRACT ACT 1872 NOTES FOR STUDENTS
THE INDIAN CONTRACT ACT 1872 NOTES FOR STUDENTSTHE INDIAN CONTRACT ACT 1872 NOTES FOR STUDENTS
THE INDIAN CONTRACT ACT 1872 NOTES FOR STUDENTS
 
Guide for Drug Education and Vice Control.docx
Guide for Drug Education and Vice Control.docxGuide for Drug Education and Vice Control.docx
Guide for Drug Education and Vice Control.docx
 
Hungarian legislation made by Robert Miklos
Hungarian legislation made by Robert MiklosHungarian legislation made by Robert Miklos
Hungarian legislation made by Robert Miklos
 
Right to life and personal liberty under article 21
Right to life and personal liberty under article 21Right to life and personal liberty under article 21
Right to life and personal liberty under article 21
 
Town of Haverhill's Motion for Summary Judgment on DTC Counterclaims
Town of Haverhill's Motion for Summary Judgment on DTC CounterclaimsTown of Haverhill's Motion for Summary Judgment on DTC Counterclaims
Town of Haverhill's Motion for Summary Judgment on DTC Counterclaims
 
Wurz Financial - Wealth Counsel to Law Firm Owners Services Guide.pdf
Wurz Financial - Wealth Counsel to Law Firm Owners Services Guide.pdfWurz Financial - Wealth Counsel to Law Firm Owners Services Guide.pdf
Wurz Financial - Wealth Counsel to Law Firm Owners Services Guide.pdf
 
Are There Any Alternatives To Jail Time For Sex Crime Convictions in Los Angeles
Are There Any Alternatives To Jail Time For Sex Crime Convictions in Los AngelesAre There Any Alternatives To Jail Time For Sex Crime Convictions in Los Angeles
Are There Any Alternatives To Jail Time For Sex Crime Convictions in Los Angeles
 
Analysis on Law of Domicile under Private International laws.
Analysis on Law of Domicile under Private International laws.Analysis on Law of Domicile under Private International laws.
Analysis on Law of Domicile under Private International laws.
 
Town of Haverhill's Statement of Facts for Summary Judgment on Counterclaims ...
Town of Haverhill's Statement of Facts for Summary Judgment on Counterclaims ...Town of Haverhill's Statement of Facts for Summary Judgment on Counterclaims ...
Town of Haverhill's Statement of Facts for Summary Judgment on Counterclaims ...
 
1990-2004 Bar Questions and Answers in Sales
1990-2004 Bar Questions and Answers in Sales1990-2004 Bar Questions and Answers in Sales
1990-2004 Bar Questions and Answers in Sales
 
The Punjab Land Reforms AcT 1972 HIRDEBIR.pptx
The Punjab Land Reforms AcT 1972 HIRDEBIR.pptxThe Punjab Land Reforms AcT 1972 HIRDEBIR.pptx
The Punjab Land Reforms AcT 1972 HIRDEBIR.pptx
 
RA. 7432 and RA 9994 Senior Citizen .pptx
RA. 7432 and RA 9994 Senior Citizen .pptxRA. 7432 and RA 9994 Senior Citizen .pptx
RA. 7432 and RA 9994 Senior Citizen .pptx
 
Choosing the Right Business Structure for Your Small Business in Texas
Choosing the Right Business Structure for Your Small Business in TexasChoosing the Right Business Structure for Your Small Business in Texas
Choosing the Right Business Structure for Your Small Business in Texas
 

E-COMMERCE EXPO 2018 GDPR

  • 2. How GDPR Will Affect Your Ecommerce Technology Petr Svoboda, CEO at Shopsys
  • 3. GDPR Protection of users data in today’s digital era Controlled user data flow in a supply chain Users’ consent to processing their data Prevention of users data leaks The same regulation over all EU countries
  • 4. Agenda Data Subject, Controller and Processor Obligations and Customizations Customer Rights Privacy Policy Consent Recommended Customizations Additional Customizations Takeaways
  • 5. Data Subject Data Controller Data Processor Customer Employee eRetailer Authorities Tax Office, Social Insurance Administration, … Payroll Clerk Marketing Agency Software Provider Server Provider 1 1 2 2 2 2 3 1 Information obligation 2 Contract on the processing of personal data 3 Records of processing of personal data
  • 10. Right To Access Customer can make a request to retailer for all personal information gathered. Information must be provided within 30 days of request. E-commerce platform’s administration panel can provide feature to export all founded data.
  • 11. Right To Be Forgotten Customer can request that any and all personal information be erased, except that pertaining to specific legal duties (eg. accounting, archiving, etc.) E-commerce platform’s administration panel can provide feature to erase all founded and collected data.
  • 12. Transfer Of Information If a customer decides to change providers, he will still be able to transfer his data. We recommend preparing the import and export features of a customer’s data and order history ahead of time. Shopsys and APEK (Czech e-commerce association) have prepared an XML template document
  • 13. Three-layered Information 1st layer: Sentence along checkbox with agreement (easily understandable) 2nd layer: Paragraph describing the handling of user data (easily understandable) hovering bubble over 1st layer, or summary on the top of the page with the Privacy Policy (2nd and 3rd layer together). 3rd layer: Full version of the Privacy Policy.
  • 14.
  • 15.
  • 17. Newsletter Consent to Privacy Policy Un-checked checkbox Log with date & time Recommendations: double opt-in bubble with 2nd level of three layered information
  • 18.
  • 19. User Registration Consent to Privacy Policy Un-checked checkbox Log with date & time Recommendations: double opt-in bubble with 2nd level of Three layered information
  • 20.
  • 21. Order If there are only inputs needed for processing the order: “I acknowledge the Privacy Policy for the purpose of order execution”, along with agreement with the Terms and Conditions. There is no need for a stand-alone checkbox for Newsletter/Promotions since you can send it to all your customers (with an unsubscribe option). Recommendation: bubble with 2nd level of Three layered information
  • 22.
  • 23. Order If we use a third-party service for the post-purchase survey: stand-alone checkbox for agreement with survey authorities recommend unchecked checkbox survey providers recommend checked checkbox
  • 24.
  • 25. Order If asked to supply data not needed for processing the order you need to use the stand-alone agreement with the Privacy Policy. The same applies for user’s registration.
  • 26.
  • 27.
  • 28. Loyalty programs, Competitions Consent to Privacy Policy Un-checked checkbox Log with date & time Recommendations: double opt-in bubble with 2nd level of Three layered information
  • 29.
  • 30. Reviews, Discussions Consent to Privacy Policy Un-checked checkbox Log with date & time Recommendations: double opt-in bubble with 2nd level of Three layered information
  • 31.
  • 32. User Tracking Consent ePrivacy (separate from GDPR) Currently recommend waiting for a valid version Presumably: 1st party cookies and 3rd party cookies continue to collect anonymous data without requiring user agreement
  • 33.
  • 35. Double Opt-in Newsletter/Promotions Sign-Up, Product Review Submit, User Registration, etc. are completed once a confirmation link in the email has been clicked. Verifies identity of email address owner.
  • 36.
  • 37. HTTPS Use encrypted communications with a trusted SSL certificate
  • 38. Security Audit Security audit and implementation against the leak of personal and other data. We recommend following OWASP Top 10 - 2017: 
 shopsys.com/u/OWASP17
  • 39. OWASP Injection Broken Authentification Sensitive Data Exposure XML External Entities Broken Access Control Security Misconfiguration Cross-Site Scripting Insecure Deserialization Using Components with Known Vulnerabilities Insufficient Logging & Monitoring
  • 41. Data Pseudonymization User data is encrypted before being saved in the database Encryption key is stored on separate sever and communicated via API Technically difficult solution
  • 42. Anonymizing Of User Data Anonymizing/overwriting of all user data when database is being copied by developers to their local computers or internal servers. Inability to reverse decryption
  • 43. Monitoring Data Access Monitoring and logging of all accesses to user data at administration panel of e-commerce platform on development and production server
  • 45. Takeaways Add Consent to the Privacy Policy when asking for user data (except for data for execution of an order) Make a security audit and migrate to HTTPS Always provide an unsubscribe option in your promotion e-mails