A high-volume one Online shop build up, many companies have already discovered this sales opportunity for themselves. But with an online shop you also have to be on the safe side legally.
The online retailer must inevitably deal with the topics of terms and conditions, imprint, declaration of revocation and other topics. Because without a legal dispute with these key points, there is a risk of warnings. Operating an online shop also requires an intensive consideration of data protection issues!
Use the advantages of heyData and receive your non-binding offer.
There are two main reasons why companies shouldn't treat data protection as secondary when running an online shop:
Legal requirements in the area of data protection also apply to the Nuse of a shop system. Compliance with these legal requirements is monitored by the legislature, the data protection authorities, the consumer advice center and also by your competitors.
Without a data protection compliant handling of the personal data of your customers lose credibility and image. Surveys have shown that customers break off the contractual relationship with companies that do not comply with data protection requirements. A customer churn is therefore not unlikely without a well thought-out data protection model!
No online shop can do without the elevation of personal data exist. In online trading, the customer must disclose their personal data in order to be able to successfully complete the ordering process.
This data collection basically includes:
the name of the purchaser
Address data (address & Co.)
account information
However, most shop systems will request significantly more data, which will be processed internally by the provider. This data is all personal data and are all subject to the GDPR.
Since shop systems work and process automatically, it is essential to set up the process in a way that complies with data protection regulations. If customer data is handled improperly, there is a risk of fines from the authorities, expensive warnings, other sanctions and a catastrophic loss of image (the press is currently gratefully including data protection violations as a headline ...).
heyData offers you the secure option of guaranteeing your customers a data protection-compliant shopping experience. We will be happy to provide you with a professional, external data protection officer so that you can relax and concentrate on your core business.
The tasks are varied. This starts with the data requested in the check-out process. These must be highlighted because too much data must not be queried for no reason. Marketing tracking tools used are also checked for their legally compliant use. These and other data protection-specific topics are carefully examined by our data protection officer during the first inventory.
The aim of our work is that the customer has submitted all personal data - when checking out from the online shop - in a legally secure manner and that further processing is on a reliable basis.
Data protection in online trading protects customers, but also poses a multitude of tasks and problems for the online provider. Just offering a privacy policy is not enough.
Our external data protection officer studies and illuminates a large number of points relevant to data protection:
- the privacy policy
-the cookie banner
- the correct encryption of the website (see lock in the browser)
- Forms (data economy as a requirement of the GDPR)
- Opt-in and opt-out (customer consents)
- Newsletter (is it possible to send it?)
- the use of evaluation tools
- Data protection compliant customer loyalty
- Socia media plugins (data protection compliant social media marketing)
- AV contracts (order processing contract)
- Directory of processing activities
- Concept for data erasure
- legally compliant answering of customer questions
- dealing with data breaches (workflow)
These are just a few of the points to consider when correct Data protection of an online shop must consider. Keep in mind that every shop and every company has different processes and an individual focus. There is no out-of-the-box solution or one-size-fits-all approach! With an external data protection officer, heyData offers you the solution that turns your shop system into a data protection compliant platform power.
At the beginning of our partnership, we will take stock with you and examine all areas relevant to data protection. You will then receive a written evaluation and we will give you specific instructions for improvement. Our data protection officer will always be a serious contact person and will discover and close the data protection gaps with you. This means you are well protected from expensive fines and can concentrate on your day-to-day business.
Do you know the right to information or the right to erasure? You don't have to either - the heyData data protection officer also takes over this job! Our data protection officer knows all the obligations and deadlines of the right to information and will give you professional advice.
Various deadlines must also be complied with here. A request for information must be processed and answered within one month. Our external data protection officer always keeps an eye on these deadlines and possible extensions of deadlines. If desired, he will take over the communication with the other party and will never disturb or stand in the way of your day-to-day business.
The heyData data protection officer will keep an eye on the following points for you in a case of information:
Get in touchthe processing purposes of the respective data
the categories of personal data you process
the recipients of the data
the retention period
the existence of a right to correction or deletion
the existence of a right of appeal to a supervisory authority
the origin of the data
whether there is automated decision-making
The above points reflect only a fraction of the work to be done if you want to run a legally compliant online shop. Data protection is not just a question of ethics here, but also a legal and marketing obligation. the external data protection officer von heyData will work with you to develop a professional and transparent solution.
You and your employees will also shop online on the Internet. Here you will pay attention to security, a serious appearance and legal principles. the Data Protection Commissioner von heyData thinks practically and has industry knowledge. We help you to turn new customers into convinced regular customers.
Request offerThe more relevant the technology becomes, the more the use of e-commerce increases. Big or small, all types of online retailers are responsible for ordering goods through to delivery. In order for customers to properly receive the products or services they have purchased, online retailers are particularly reliant on keeping customers' personal information secure, including:
E-commerce in particular is severely affected by the General Data Protection Regulation (GDPR). The processing of customer data happens regularly and can end negatively for online retailers due to careless handling. The requirements of the GDPR must therefore be observed in order to prevent consequences such as damage to image, loss of trust and fines. It is therefore crucial with what care and transparency sensitive customer data is handled in accordance with data protection measures.
Choose heyData and benefit from your personal and professional contact person who ensures data protection compliance at all levels and at the highest level.
The basic idea of data protection is that modern data processing endangers the free development of the personality of each individual. The assumption is that those who do not know or cannot control what information is being stored and retained about him or her adjust their behavior out of caution. Data protection therefore protects individuals from the state or a company collecting or storing their personal data without authorisation. The General Data Protection Regulation (GDPR) of 2018 sets strict limits on the processing of personal data. It is important that companies follow these guidelines, otherwise there is a risk of fines, warnings and competitive disadvantages.
On our How it works page you can find out why data protection is relevant for your company and how we at heyData support you. In our FAQs, our data protection basics and in our magazine you will also get an overview of the complex topic of data protection. Our white papers also provide an insight into the important basics of data protection aspects. Finally, we regularly offer free webinars on data protection. These give you the opportunity to educate yourself on exciting topics and to ask an expert questions.
Internally, it is an important task of a data protection officer in accordance with Art. 39 Para. 1 GDPR to point out that data protection regulations are observed. However, this is not an end in itself, but rather protects your company from expensive fines. 17 supervisory authorities monitor compliance with data protection regulations on the state side. If there are violations, your company can be punished with fines of up to 20 million euros or 4% of the turnover. In addition, warnings are threatened.
The Data Protection Act regulates all relevant provisions that affect personal data processing in the company. Every company that operates in the EU is obliged to comply with data protection regulations. Management is responsible for this.
The most important obligations of companies in the data protection area are: