Go to website
Privacy Compliance Suite
How to setup a cookiebot account?
In order to activate the cookies consent dialog on our app "Cookiebot compliance suite", you should create an account on cookiebot. Head over to cookiebot, and fill in your email & password : Once you have access to your account, the next steps : Configure your domain Configure dialog content Copy the Domain Group ID from the sc
What is Domain Group ID from?
The identification that allows our app (Cookiebot compliance suite) to install cookiebot on your website, get your configurations & the cookiebot dialog translations. Get Domain Group ID from Cookiebot
What is the Cookiebot cookie scanner?
A tool provided by Cookiebot that crawls your site and detects all the cookies injected, and tries to classify them according to their cookies database. You can access all the functionalities provided by the scanner by going to the cookies in the header Here is a quick list of the functionalities provided to you as a Cookiebot admin (screenshot below) : Request an immediate cookie scan (2) View cookies discovered on your website Download the discovery report. (5) Update the classifi
How to declare custom cookies?
Go to the cookiebot administrative interface (screenshot below) : Click on Cookies in the header Click on Add Cookies. (1) Add all the information related to this new cookie : category, name, description etc.. (2) Save (3) Once added through this interface, it will be available in the cookie dialog to website visitors.
How does the cookie banner actually work on the website?
We have developed our own version of the dialog instead of using default version provided by cookiebot for a couple of reasons : Provide more customization options Allow for best integration with Shopify The dialog allows users to select cookeis categories they'd like to opt-in to /opt-out of : In regards to the content (translation) of the our dialog, we use the exact content entered in the cookiebot interface. In regards to consent : We communicate consent back to Cookiebot & to Sho
What is the "mark as done" checkbox?
This checkbox can be found on all the requests' lists, we've added it as a visual aid tool to help you identify with a scan which requests are pending & which are already closed. Here is where these checkboxes can be found : And here is how you can change the default behavior : Checked: If you believe that our process is sufficient & there is no more actions to carry out from your end. **Unchecke
How to respond to a rectification request ?
Under article 16(*), the GDPR text provides data subjects the right to correct incomplete or inaccurate personal data held or processed by a controller. How do we help you? If you see a new rectification request in the dedicated table, you can rest assured that we've already: Verified the identity of the requester _We do so by verifying that the requester has access to the submitted email address specified while submitting the request, and then ask for a second confirmation before allowin
How to respond to a portability request ?
Both the GDPR and the CCPA recognize a right to data portability(*). The CCPA considers data portability as part of the right to access, while the GDPR provides for a separate and distinctive right. GDPR: Articles 12, 20 | Recital 68 CCPA: Sections 1798.100, 1798.110, 1798.130, 1798.145 (g)(3) While preparing for portability type request, think about these questions: • Are you able to provide all of the required personal information if a customer asks for it? Try to plan for a request in ad
How to respond to an access request ?
Both regulations(*) give their data subjects the right to request a copy of their personal information, if a customer requests a copy of their personal information. GDPR Articles 12, 15, 20 | Recitals 59, 63, 64 CCPA Sections 1798.100, 1798.110, 1798.130, 1798.145 (g)(3) While preparing for access request, think about these questions: • Are you able to provide all of the required personal information if a customer asks for it? Try to plan for a request in advance by maintaining a map of all
How to respond to a deletion request?
Question3 - Deletion request
What is the Cookies page ?
This page is auto-generated and added to your Shoipfy back office under 'online store'/'pages'. If it advised that you add this page to the footer of your website in order to : Explain cookies & their usage List all cookies used on the website. Allow customers to view & update their consent. .
What is the Data Privacy Request process ?
Where to get Domain Group ID from?
Head over to your cookiebot account, Click on Your scripts, then copy the Domain Group ID Value.
How to access the consent report?
Follow the steps : Click on the user consent link from the header. Select your domain Select your Start Date Select your End Date
How much does cookiebot cost?
The most basic plan is free of charge. However, generally speaking, the pricing plans vary according to 2 factors : Number of pages on the website. Number of configured domains. Learn more directly though the pricing page.
What is an erasure request (right to be forgotten / right to deletion)?
GDPR (article 17) grants subjects the right to have their personal data erased, data controllers must also take reasonable steps to inform other data controllers about the request to take necessary actions. CCPA also grants similar rights. Through our application, the user can submit deletion requests, but the app doesn’t take any actions on behalf of the
Is it possible to customize emails and/or request pages?
Emails :These include all transactional emails sent to the admin (notifications) or the client (confirmations) regarding the Data Privacy Requests made on the site. Pages : The app manages 5 pages, the request page, access page, rectification page, portability page & erasure page. Once the request is submitted, the users will receive an email to confirm their ownership of the email & thus of eligibility for the requested action. If users accept the action in the email, by clicking on
What is an access request?
As described by the GDPR (article 15) and CCPA regulations (AB-375), “data subjects” should have the right to view their saved profile information & request some supplementary explanation on how it is used..
How to add social login features ?
What is the data that should be provided to customers upon an Access or a Portability requests?
The basic Shopify data saved about the customers: Email First Name Last Name Phone marketing consent Addresses. Orders Soon, a list of requests made by the user on the website. In addition : In case you collect more information about the user through custom forms and/or addition apps, you should be able to produce a list of all this data. In case the user asks for a context on how you’re using this data, you should also be prepared to provide : -- The purposes for which the
How to download the consent log?
Follow the steps : Go to user consents screen from the header, Select the domain, Select the start date Select the end date. Click on Download Log button beside the end date, It will prompt you with a download dialog. Save the CSV file & enjoy reading the consent log.
What is a data portability request (or Request for Disclosure)?
GDPR (article 20) grants subjects the right to received a copy of their personal data - when requested - in a structured, machine readable format. According to the CCPA (1798.131), a business must provide personal information in a readily useable format to enable a consumer to transmit the information from one entity to another entity without hindrance.
What is a rectification request?
GDPR (article 16) grants “Data-subjects” the right to : Complete personal information Correct it CCPA regulation impose nothing of the sort. Through our application, users will be able to request to modify their personal data which includes : First name Last name Phone Marketing consent Addresses.
What is the (data privacy ) request page?
The Data Privacy Request page, is a page deployed by the application allowing customers to submit Data Privacy Requests in accordance with their privacy rights. Global privacy regulations have given internet-users a number of rights to ensure they have a grip over their own data. This control is important because this data can be stored by an organization and used for research or even sold to advertisers or data brokerages. “Data subjects” as described by the GDPR ([article 15](https://gdpr-in