Making your marketing opt-ins GDPR compliant is easy, and totally worth it. Not only does it solidify the legality of your opt-ins, it can help improve the quality of each opt-in as well by informing customers up-front about what their consent is for.
What is GDPR compliance?
GDPR (General Data Protection Regulation) is a law enacted by the European Commission (EU) in 2016 that was designed to protect the privacy of citizens in the EU that, among many other things, dictates requirements when asking for or collecting marketing consent.
Making sure to build your opt-in forms with GDPR requirements in mind will make sure all of your opt-ins in Octane AI are GDPR compliant.
Here are essential rules to consider for collecting GDPR compliant opt-ins:
Creating a GDPR compliant opt-in form
We'll use a visual comparison of a GDPR compliant pop-up versus a non-compliant pop-up that you can use as a cue for your own content.
✅ GDPR Compliant
❌ GDPR Non-Compliant
In the second pop-up, both the SMS & email fields are required and the pop-up asks for information without stating what the information will be used for.
Importantly, you should always include an SMS opt-in disclaimer when collecting phone numbers (Octane AI provides one by default).
Requesting customer data in Shopify
GDPR allows your store's customers to request personal data about them that's being processed by a company.
If a customer requests their data from you, you can process these requests in Shopify. The customer's data, including any data Octane AI has on them (if available) will be emailed to the store owner.