Consent Management: Track Shopper Consent

Track your shoppers’ approval for how your company interacts with them. Data subjects have the right to consent to the use of their personal data and can object to the processing of their personal data with respect to receiving marketing communications, online tracking, and user profiling. To help you assess your compliance with various data protection and privacy regulations, we give you examples of common shopper requests. And we provide details to help you determine the best way to comply with the regulations that apply to your company. For instance, a shopper visits a website and doesn’t want any of their information tracked while visiting the site.
Note: As new data protection and privacy solutions are launched, Commerce Cloud will provide specific documentation to help merchants understand how these new features can be used to help with compliance. This will cover existing tools and also extend to new release items. This page will be updated as more consent management functionality is made available. Check back for updates in future 2018 releases!
Many data protection and privacy regulations can require you to delete shoppers’ personal data when a shopper requests to receive only specific forms of contact from your company. We’ve listed a few of the regulations that are important to many companies collecting and processing their shoppers’ data.
  • General Data Protection Regulation
  • Personal Information Protection Act (PIPA), Japan
  • Privacy Act, Australia
  • Personal Information Protection and Electronic Documents Act (PIPEDA), Canada
If you have shoppers who request specific methods of contact from your company, review these common requests and the procedures related to them.
Product Common Shopper Request Actions to Consider Things to Consider
Salesforce B2C Commerce I don't want your site to track my personal information for marketing or other purposes.

Set the Tracking site preference.

Programmatically override the site preference using the Script API.

Read about a sample consent tracking implementation in SGJC (SiteGenesis JavaScript Controllers).

A new site preference, Tracking, lets you set default tracking behavior for each storefront.

If you want to override this behavior for an individual shopper, you can implement your own consent management solution by calling the dw.system.Session.isTrackingAllowed() and dw.system.Session.setTrackingAllowed(boolean) methods.

Session cookies are used by default, so you might want to discuss them with your legal team.
B2C Commerce I don't want your app to track my personal information for marketing or other purposes.

Determine shopper's tracking preference using the Shop API HTTP/HTTPS headers. See the OCAPI Global HTTP Headers topic.

Shop API resources let you set the HTTP(s) header DNT, which indicates whether personal information should be tracked.
B2C Commerce I want to know which cookies your site uses to store information about me.

Review the local browser storage topic to understand the usage and lifespan of data stored locally.

Inform the shopper of those cookies that might be relevant to their usage.

Many cookies are automatically deleted at the end of each session, but some have longer lifespans. A system or browser crash can prevent deletion.
X Privacy Update: We use cookies to make interactions with our websites and services easy and meaningful, to better understand how they are used and to tailor advertising. By continuing to use this site you are giving us your consent to do this.