Merchants serving webstores to shoppers in the European Union (EU) and collecting their data must comply with European Union General Data Protection Regulation (GDPR), which was approved in 2016 and will become effective on May 25, 2018. After that date, organizations found to be in non-compliance will potentially face heavy fines. If you operate in the EU, it is important to prepare for GDPR compliance.
This regulation is designed to protect the data privacy of all EU residents and requires website operators, among other requirements, to consider any applicable notice and consent requirements when collecting personal data from shoppers (e.g. using cookies).
If you're wondering if this regulation affects you, please note that GDPR not only applies to organizations located within the EU, but it also applies to organizations located outside of the EU, if they offer goods or services to EU shoppers. It is therefore safe to presume that it broadly applies to all companies processing and collecting personal data of persons residing in the European Union, regardless of the company's location.
This post will help you understand how Oracle Commerce Cloud (OCC) can be utilized to help comply with certain GDPR requirements.