Does the Mageplaza GDPR extension support separating different kinds of customers based on location?

Yes, the module includes the Apply For Countries feature which allows users to apply the GDPR on targeted groups of customers. There are 3 options: All Allowed Countries, All EU Countries, and Specific Countries.

Magento 2 GDPR Extension - GDPR Compliance

Q: If customers delete their accounts, will their information be provided before being recorded in the store's database?

The answer is no. To prevent data misuse issues, customers can permanently delete their accounts with all their personal information, like names, addresses, phone numbers, ID card numbers, credit card information, and so on.

Cookie name	Description	Lifetime	Provider
_ce.clock_data	Store the difference in time from the server's time and the current browser.	1 day	Crazy Egg
_ce.clock_event	Prevent repeated requests to the Clock API.	1 day	Crazy Egg
_ce.irv	Store isReturning value during the session	Session	Crazy Egg
_ce.s	Track a recording visitor session unique ID, tracking host and start time	1 year	Crazy Egg
_hjSessionUser_2909345	Store a unique user identifier to track user sessions and interactions for analytics purposes.	1 year	HotJar
_hjSession_2909345	Store session data to identify and analyze individual user sessions.	1 day	HotJar
apt.uid	Store a unique user identifier for tracking and personalization.	1 year	Mageplaza
cebs	Store user preferences and settings.	Session	Mageplaza
cf_clearance	Store a token that indicates a user has passed a Cloudflare security challenge.	1 year	Cloudflare
crisp-client	The crisp-client/session cookie is used to identify and maintain a user session within the Crisp platform. It allows the live chat system to recognize returning users, maintain chat history, and ensure continuity in customer service interactions.	Session	Crisp
_ga	Store a unique client identifier (Client ID) for tracking user interactions on the	2 years	Google
_ga_7B0PZZW26Z	Store session state information for Google Analytics 4.	2 years	Google
_ga_JTRV42NV3L	Store session state information for Google Analytics 4.	2 years	Google
_ga_R3HWQ50MM4	Store a unique client identifier (Client ID) for tracking user interactions on the website.	2 years	Google
_gid	Store a unique client identifier (Client ID) for tracking user interactions on the website.	1 day	Google
_gat_UA-76130628-1	Throttle the request rate to Google Analytics servers.	1 day	Google

Cookie name	Description	Lifetime	Provider
_gcl_au	The cookie is used by Google to track and store conversions.	1 day	Google
__Secure-3PAPISID	This cookie is used for targeting purposes to build a profile of the website visitor's interests in order to show relevant and personalized Google advertising.	2 years	Google
HSID	This security cookie is used by Google to confirm visitor authenticity, prevent fraudulent use of login data and protect visitor data from unauthorized access.	2 years	Google
__Secure-1PSID	This cookie is used for targeting purposes to build a profile of the website visitor's interests in order to show relevant and personalized Google advertising.	2 years	Google
SID	This security cookie is used by Google to confirm visitor authenticity, prevent fraudulent use of login data and protect visitor data from unauthorized access.	2 years	Google
APISID	This cookie is used by Google to display personalized advertisements on Google sites, based on recent searches and previous interactions.	2 years	Google
__Secure-1PAPISID	This cookie is used for targeting purposes to build a profile of the website visitor's interests in order to show relevant and personalized Google advertising.	2 years	Google
__Secure-3PSID	This cookie is used for targeting purposes to build a profile of the website visitor's interests in order to show relevant and personalized Google advertising.	2 years	Google
SSID	This cookie is used by Google to display personalized advertisements on Google sites, based on recent searches and previous interactions.	2 years	Google
SAPISID	This cookie is used by Google to display personalized advertisements on Google sites, based on recent searches and previous interactions.	2 years	Google
__Secure-3PSIDTS	This cookie collects information about visitor's interactions with Google services and ads. It is used to measure advertising effectiveness and deliver personalised content based on interests. The cookie contains a unique identifier.	2 years	Google
__Secure-1PSIDTS	This cookie collects information about visitor's interactions with Google services and ads. It is used to measure advertising effectiveness and deliver personalised content based on interests. The cookie contains a unique identifier.	2 years	Google
SIDCC	This security cookie is used by Google to confirm visitor authenticity, prevent fraudulent use of login data, and protect visitor data from unauthorized access.	3 months	Google
__Secure-1PSIDCC	This cookie is used for targeting purposes to build a profile of the website visitor's interests in order to show relevant and personalized Google advertising.	1 year	Google
__Secure-3PSIDCC	This cookie is used for targeting purposes to build a profile of the website visitor's interests in order to show relevant and personalized Google advertising.	1 year	Google
1P_JAR	This cookie is a Google Analytics Cookie created by Google DoubleClick and used to show personalized advertisements (ads) based on previous visits to the website.	1 month	Google
NID	Show Google ads in Google services for signed-out users.	6 months	Google

Cookie name	Description	Lifetime	Provider
_dc_gtm	Manage and deploy marketing tags through Google Tag Manager.	1 year	Google
1P_JAR	Gather website statistics and track conversion rates for Google AdWords campaigns.	1 month	Google
AEC		1 month	Google
ar_debug	Debugging purposes related to augmented reality (AR) functionalities.	1 month	Doubleclick
IDE	The IDE cookie is used by Google DoubleClick to register and report the user's actions after viewing or clicking on one of the advertiser's ads with the purpose of measuring the effectiveness of an ad and to present targeted ads to the user.	1 year	Doubleclick
ad_storage	Enables storage, such as cookies (web) or device identifiers (apps), related to advertising.	1 year	Google
ad_user_data	Sets consent for sending user data to Google for online advertising purposes.	1 year	Google
ad_personalization	Sets consent for personalized advertising.	1 year	Google
analytics_storage	Enables storage, such as cookies (web) or device identifiers (apps), related to analytics, for example, visit duration.	1 year	Google

Most-Trusted Pick

Work perfectly together
Cost-effective
60-day money back guarantee
FREE installation for all

GDPR

$79

Quick Order

$199

Reward Points

$99

-0%

60-day money back guarantee
FREE installation for all

Community edition

Enterprise edition (+$600)

Checkout now

Magento 2 GDPR Highlight Features

Comply with GDPR by giving customers the right to remove their accounts

The right to erasure or the right to be forgotten is one of the mandatory regulations in GDPR. The EU GDPR organization explicitly indicates that all users must have the right to delete their data. Fortunately, the Mageplaza GDPR extension can meet that requirement by allowing several actions like deleting customers' accounts, anonymizing accounts in billing documents, and deleting data on abandoned carts.

Customers can actively delete their accounts along with all related information like addresses, phone numbers, etc, without waiting for admin's approval. Additionally, when a customer account is inactive for a certain time (set by the store owners), the system will automatically send a reminder email before deleting everything related to that account. After the warning a few days, the account will be removed with all its data.

Allow anonymizing accounts in billing documents

Shoppers can anonymize certain information like Billing Address and shipping Address after they delete the account in the order, invoice, shipment, and credit memo. Instead of inserting private information, clients can anonymize some values such as First name, Last name, and Email address, and replace them with a random or chosen string of characters. The GDPR extension also allows anonymizing address attributes in Billing Documents.

A great feature to safeguarding customer privacy and preventing potential data misuse. When customers delete their accounts, the system will automatically clear any abandoned carts associated with their accounts, ensuring that no sensitive data is retained for later unauthorized use. This helps businesses comply with GDPR and build trust with their customers by showing a commitment to protecting their personal information.

Enhance Data Privacy and User Consent Management with GDPR Cookie restriction [Pro edition]

With the help of the GDPR module, users can enable several actions in Cookie restriction, such as: enforcing Cookie policy acceptance, customizing display options, selecting country-specific applications, customizing CSS, etc. In details:

Display Cookie policy acceptance request

After enabling the Cookie restriction mode, admins can turn on a request to ask for visitor acceptance on the store's cookie policy for special website features. This feature guarantees to inform customers of the store's actions on their data to meet EU GDPR.

Store owners can choose where to put the internal link in Learn More of Cookie Text Message. After the customers click on the Learn More link, they will be immediately redirected to a CMS page that displays the detailed cookie policy version, providing comprehensive information on the customer data process.

The Mageplaza GDPR extension allows users to customize Cookie's position on the store's website depending on the admin's interest. There are two current options: Top/ Bottom of the page. No matter what type of position you choose, the storefront will adapt it without causing any issues with visuality.

When displaying GDPR notices, it's essential to make a choice that resonates with your audience. Currently, the available notice display type that GDPR extension offers is the most popular choice that most stores use - the bar format. By extending across the entire width of the storefront, this format can effectively catch the customer's attention.

The locations to apply Cookie restriction can be chosen by admins. Store owners can set limits to the nations they want to display and apply cookies, meaning that people from other countries won't be involved. Currently, there are three options for the nations where the cookie policy applies: All countries, EU only, and Specific countries.

With the flexibility to use custom CSS (Cascading Style Sheets), you can fully customize the cookie notice's appearance, tailoring it to match your website's design and style perfectly. In the configuration, there will be a text box for you to add codes into for customizing CSS.

With the flexibility to use custom CSS, you can fully customize the cookie notice's appearance, tailoring it to match your website's design and style perfectly.

Improve customer experience by allowing to download personal data [Pro edition]

Mageplaza's GDPR extension allows the ability to empower customers, maximizing their capabilities while minimizing the admin's work.

Customers can download their personal data with ease in CSV or Excel XML files, including: website/ group/ store/ account/ customer ID, store view, first name and last name, email, time of creation and last update, and ability to change customer group status.

Constantly update customer account status with Email configuration [Pro edition]

All information about the customer account status will be informed automatically by confiuring Email notification. Thanks to this feature, admins can catch up with sudden changes like when customers delete their accounts. Simultaneously, shoppers will also get notifications reminding if their accounts are inactive for too long and can be deleted.

Users are able to configure automatic Email notification with the following actions:

When a customer has not logged in to their account for a particular time, their account will be auto-deleted. The store admin can set the number of days from the last login to define an inactive account and send a notification email to remind customers of their account situation a few days before deleting it.

If the accounts remain inactive after warning time, the store system will automatically delete them and send another Email to inform customers of their account removal. Since the system has sent various reminders before, once the account is deleted, it can NOT be undone.

A fantastic feature to keep admins informed whenever customers delete their accounts. Additionally, this function may help improve the overall store performance. For example, if the store owner makes changes that negatively impact the customer experience and many customers delete their accounts, it's obviously a clear signal for the brand to make timely adjustments to avoid losing more customers.

More features of Magento 2 GDPR

Auto-delete customer account

Automatically delete inactive accounts after a certain time not logging in to remove abundant data.

Transparent account register terms

Display full customer Terms and Conditions when creating an account to show commitment for GDPR.

Password verification

Serious undo actions like deleting accounts require confirming password to ensure security.

Removal Requests

When a customer request to remove their account, the system will record that request to make sure that the account is properly deleted by his/her order and all the data is handled in compliance with GDPR regulations.

Reviews (34)

Overall rating

Your Rating:

Maylay
10 January 2024

I think all vendors should use this for hassle-free data privacy regulations problems.

Leo Nguyen
13 October 2022

I bought GDPR extension recently and it's really nice and I'm really happy. My client happy too

Cheryl
29 April 2022

I think all vendors should use this for hassle-free data privacy regulations problems. Simple installation and friendly support.

Ky Nguyen
21 April 2022

Just exact what we need for our client's project to be launch in Hong Kong.

Salim
19 April 2022

I bought GDPR extension recently and it's really nice and I'm really happy. I had few issues at first but their team fixed it quickly. Thanks a lot!

Pantelis
15 January 2021

A nice extension to be in compliance with GDPR. Easy and helpful. For the last project, I purchase the paid version and it is perfect! I had already used the free version on another project

Makoto
14 December 2020

This enabled us to have all the necessary functions to meet the recent EU privacy regulation. We had a small issue with the customer account deleting function but Mageplaza Customer Support did provide us with the code to fix it immediately. We will for sure come back here to get more.

Agnes
16 October 2019

Thank you for developing this good extension, it is working very well. GDPR PRO extension is easy-to-use, straightforward, and clean & working as we expected.

Daniel
15 August 2019

We have purchased the Pro version. As an EU based company, we need to comply with GDPR regulations. As always Mageplaza has excellent customer service. We had some problems installing the extension, but Mageplaza are always very helpful and fast to help out.

xdev
08 June 2019

Great extension that allows you to manage user information data, address info, delete them and it also allows you to delete user account! Excellent! I'll recommend this free module. 5 stars deserved.

GOS
17 April 2019

Well, I guess I understand this EU law a little bit, but man they make it hard on us eCommerce owners... at least I thought they did. Enter MagePlaza GDPR extension. With a few clicks of the mouse, this FREE extension was setup and keeping us GDPR compliant. Another great FREE product from MagePlaza. Thank you guys!

WRC
29 March 2019

We have a lot of extension from Mageplaza. This extension is easy to use and working perfectly. Support is responsive as well, answering my questions quickly and with good details. It really should be part of Magento.

mohamed
17 March 2019

EXCELLENT extension and free extension. GDPR helped me reduce it to zero. Simple yet useful. Works perfectly without any issues. It works very fine with my Magento 2. Very useful extension, I recommended it to everyone.

Mohamed
12 March 2019

It works perfectly with my Magento. It is a very simple extension but extremely useful and essential. A great free version of the GDPR extension, most other companies charge for it. Thanks again

MOH
10 March 2019

AN EXCELLENT free version of the GDPR extension, IT WORKS VERY WELL WITH MAGENTO 2. VERY EASY TO INSTALL. VERY QUICK SUPPORT FROM MAGEPLAZE. THANKS AGAIN TO MAGEPLAZE TEAM.

Fullar
20 February 2019

We bought this extension a few months ago. Got a small issue while installing. Developers replied within an hour and we were set and running in less than half day.

S.O
14 February 2019

A great free version of the GDPR extension, most other companies charge for it. And it works as required, will be buying the full version shortly.

Suresh
11 February 2019

This extension is easy-to-use, straightforward, and clean & working as we expected. Easy to use Reasonable cost Also, the support is good I would like to recommend this product.

Mahesh
07 February 2019

Thanks Mageplaza team for their support in every aspect. The module is working really well on our store and hasn’t had any problems so far. The fact that this extension is free gives no bad impacts on its quality indeed. I’m totally satisfied

Gabriel Armeanu
29 January 2019

I recommend this extension. It does exactly what is supposed to do! Any ecommerce site, Magento based that is, should have this extension installed. I know you may be more on the free extensions but, trust me, the paid extensions are much much better than the free ones, not only on Mageplaza, but anywhere on the internet.

Marina
03 January 2019

GDPR compliance is obligatory for each server in EU. So if you are located in EU you should get this module asap or you risk hefty fines. Module installed flawlessly and works like a charm. Gives your clients all the tools needed by GDPR.

Panagiotis
02 January 2019

It is a very simple extension but extremely useful and essential. It works perfectly with my Magento 2.2.6.

Mihai
11 December 2018

This standard extension is working really well on our store and it is a great support with GDPR compliance, extremely useful and essential. I’m totally satisfied and I recommend this extension. Thanks Mageplaza!

Mq
10 December 2018

Very great extension GDPR and useful, very easy installation and very simple. I recommend it to everyone, and the additional function of removing the address and the account was useful to our customers. Thanks

Ashan Rajapaksha
23 November 2018

With this extension, now we can allow our EU customers in Magento Store to protect their private data according to GDPR Compliant and it comes at a reasonable price. This GDPR extension works perfectly on our Magento 2.2.5 store. For any kind of question regarding this extension, they give us a great support quickly and we would always appreciate that.

Phil
10 November 2018

Thank you for your developing. It is a very simple extension but extremely useful and essential. It works perfectly with my Magento 2.2.6. And the cherry on the top of the cake, it is Free.

Robert
07 November 2018

After enabling this module, the added features seemed good, but due to probably my theme, the alignment of the elements were a bit off. I will make some changes in the theme file but other than that, it seems to be a good feature for my website.

Alexios
26 October 2018

This is a handy extension. It is a must-have for stores that should be GDPR Compliant. Currently, we are on the standard version but we will update to Professional version soon, as it is a reasonable price. Thanks!

David
12 October 2018

At first, I didn't know how to install the premium functionality of the module, but after a short helpful conversation with their customer care team, I managed to install it anyway :D Great support! I would buy again!

Victor
17 September 2018

A simple and essential extension for this initial phase of GDPR with the possibility to update to Pro Version. There are no core problems. Also, it works perfectly on our Magento 2.2.2. Once again, thanks Mageplaza!

Truong
18 August 2018

Thank you for developing this good extension, it is working very well. It helps reduce my time to complete the site. I hope you will have more good extensions in the future.

Raymond
29 May 2018

Thanks Mageplaza team for their supports in every aspect. The module is working really well on our store and hasn’t had any problems so far. The fact that this extension is free gives no bad impacts on its quality indeed. I’m totally satisfied

Mary
26 May 2018

We realized that we had no better choice but to install a module which helps us comply GDPR and Mageplaza GDPR extension came on time. The basic features in the standard version are stunning, yet we are still looking forward to advanced features in the Pro version. Hope it’ll appear soon.

Fred Parrish
24 May 2018

We’ve just installed the standard version and yes it basically works. Our customers now have higher rights to protect their own personal information. I guess they deserve to feel peace of mind. Sooner or later, we have to obey the rules and comply GDPR so I guess this extension is our best choice at the moment.

Feature Roadmap

All of the feature updates plan and status will be updated as soon as possible in our public Trello.

View Mageplaza Extension Roadmap 2023 ->

Don't see the features you are looking for?

Request feature

Want to do extension customization?

Custom request

Let us know your requirements

Name *

Email *

Title *

Customization Requirements *

Submit Request

Release Notes

Compatible with Magento v2.4.6
Fixed some minor bugs

Fix some minor bugs

Fix some minor bugs

FAQs

Magento 2 GDPR extension is a tool that helps e-commerce stores comply with the EU General Data Protection Regulation by managing customers' personal data privacy and handling data access and erasure requests.

To allow the Mageplaza GDPR extension, follow these steps: From the Admin Panel, go to Store > Settings > Configuration > Mageplaza Extensions > GDPR > General configuration and turn the Enable to Yes. Follow our standard guide and pro guide for more details.

Absolutely! Using the GDPR extension brings businesses the ability to make all Terms and Conditions transparent, winning the customer's trust and loyalty. Our extension allows users to customize a Cookie request to ask customers whether they agree with the policy.

The answer is no. To prevent data misuse issues, customers are able to permanently delete their accounts with all their personal information, like names, addresses, phone numbers, ID card numbers, credit card information, and so on.

To optimize the effectiveness of GDPR, we highly recommend well-compatible modules such as SMTP and Store Credit.

Yes, the module includes Apply For Countries feature which allow users to apply the GDPR regulations on targeted groups of customer. There are 3 options: All Allowed Countries, All EU Countries, and Specific Countries.

Yes, GDPR is compatible with Hyva theme. However, the checkout only supports hyva-themes/magento2-theme-fallback. To learn how to enable checkout on Hyva, please follow this guide.

Mageplaza provides FREE Hyva Checkout Compatibility for all of our extensions upon requests. You can request by contacting us via email, live chat, or support ticket. Our team will respond within 24 hours and ask for details such as Order ID, extension name, Magento & Hyva versions, and any special requirements. To qualify, your module subscription must be active. If your subscription has expired, renewal is required as some older modules do not support Hyva. Additional customization requests may incur extra costs, and our team will inform you before proceeding. For assistance, feel free to reach out - we’re here to help!

General Configuration
	Standard	Professional
FREE On-demand Hyva Compatibility
Allow Deleting Customer Account
Allow Password Verification
Allow Deleting Default Address
Show Customer Register Terms and Conditions
Auto-delete Customer Account
Allow Downloading Customer Information
Anonymise Account Configuration
Allow Deleting Data on Abandoned Carts
Allow Anonymizing Account in Billing Document - First Name Value
Allow Anonymizing Account in Billing Document - Last Name Value
Allow Anonymizing Account in Billing Document - Email Value
Allow Anonymise Address Option In Order Processing
Cookie Restriction
Enable Cookie Restriction Mode
Mandatory Request to accept Cookie Policy
CMS Cookie Policy Page
Choose Location to Show Cookie Law
Custom Notice Display Type
Apply For Countries - All Allowed Countries
Apply For Countries - All EU Countries
Apply For Countries - Specific Countries
Custom CSS
Email Configuration
Notification Email Before Deleting Account
Notification Email After Deleting Account
Notification Email to Admins when Customers Delete Accounts
Support
Auto-fit with every device (Mobile, Tablet, PC)
Support multiple stores
Support multiple languages
Fully compatible with Mageplaza extensions
1-year free support
1-year free update
60 days guarantee money back

Pricing

Choose your suitable edition.

Standard

Crafted for a great webstore start $ 79 first year

1-year extension updates
1-year support
60-day money-back guarantee
Read our policies

Account Automatic Deletion
Account Deletion
Password Verification
Terms and Conditions Display
Data Anonymization

Professional

The most popular $ 129 first year

1-year extension updates
1-year support
60-day money-back guarantee
Read our policies

Includes all Standard features, plus ...
Customer Information Download
Cookie Restriction Mode
Cookie Accept Request
CMS Cookie Policy Page
Automatic Email
Countries Application
CSS Customization

Magento Edition *

Version *

Installation: +$50

Why choose Mageplaza Magento 2 GDPR

Say goodbye to the fear of severe punishment (up to €20 million or 4% of the company’s annual global revenue) with an easy-to-use interface. Enhance data privacy and user consent management with GDPR Cookie restriction (enforcing Cookie policy acceptance, customizing display options, selecting country-specific applications, customizing CSS, etc). Improve customer experience by allowing to download personal data. Enjoy absolute transparency by integrating automatic email-sending features to update customer account status regularly.