The General Data Protection Regulation (GDPR) sets guidelines for businesses handling the personal data of EU citizens, ensuring that their data is collected and processed lawfully. As a business using Growave, understanding how personal data is managed under GDPR is crucial for maintaining customer trust and complying with legal obligations.
What is GDPR?
The General Data Protection Regulation (GDPR) is a comprehensive set of rules designed to give individuals within the European Union (EU) more control over their personal data. GDPR also requires businesses, regardless of location, to meet strict standards for how they handle the data of EU citizens.
GDPR focuses on transparency, accountability, and security in data handling, with non-compliance resulting in substantial penalties.
What is GDPR compliance?
GDPR compliance ensures that personal data is collected, processed, and stored in a way that protects individuals’ rights. Businesses must follow key principles such as:
Informed consent: Users must provide explicit permission before their data is collected or processed.
Data transparency: Users have the right to know what data is collected and how it is used.
Data security: Personal data must be stored securely and protected from misuse or unauthorized access.
Rights to access and deletion: Users can request to view, modify, or delete their personal data.
How does Growave handle GDPR?
At Growave, we have implemented all necessary measures to ensure our platform complies with GDPR standards. This means your customers’ data is secure, and their privacy is protected.
We collect only the data necessary to provide our services, and we do not share sensitive information without explicit consent. Our data protection practices ensure that personal information is never misused.
You can review our full privacy policy, which details how Growave processes and protects personal data, by visiting Growave App Privacy Notice page.
Your role as a store owner
While Growave ensures GDPR compliance on our platform, as a store owner, you are responsible for obtaining customer consent and ensuring that your store adheres to data protection regulations.
Make sure your store clearly communicates how personal data is collected, processed, and stored. Customers should be able to access your store’s privacy policy, understand their rights, and know how they can manage their personal data.
Built-in tools to help you collect consent
To help you easily obtain explicit customer consent and remain GDPR compliant, Growave provides specific settings you can enable directly in your admin panel:
Rewards program consent
You can require customers to explicitly agree to join your loyalty program before they can earn points or access rewards features.
To activate this, go to Rewards → Settings → General → Rewards availability settings and enable Require customer consent to join the Rewards program.
Review usage consent
You can require customers to provide explicit consent for the processing of their personal data and user-generated content (like text and uploaded media) before they can submit a product review. You can also include a direct link to your Privacy Policy
To activate this, go to Reviews → Settings → General → Moderation and display and enable Require customers to provide consent before posting a review.
If you have any questions regarding GDPR compliance, feel free to contact us at [email protected] or use the chat in the bottom-right corner.