Up to 40% Off on Selected Extension!

Magento 2 GDPR Compliance

The Magento 2 GDPR is an ingenious extension that provides complete tool-set required to help online website/store comply with the latest EU's regulations in a secure way.

100% of 100
90+ downloads
  • Ensures EU’s GDPR comply
  • Activate & personalize cookie consent
  • Delete account option for customer
  • Download/erase data on account page
  • Manage Privacy consent (upto 3) for admin
  • Customer consent tracking grids
  • Email verification to protect for data theft
  • configure auto erase unwanted data
  • Set data handling request (by admin, by customer or auto)
Highlight Featurs
was $199 Special Price $79
Community Edition2.1.x, 2.2.x, 2.3.x
Enterprise Edition2.1.x, 2.2.x
was $199 Special Price $79
was $199 Special Price $79

Version 1.0.1 CE (Released on Aug 17, 2018)

  • * Bug Fixes & Improvement
  • + Enterprise Edition Compatibility

Version 1.0.0 CE (Released on Jun 23, 2018)

  • + Core GDPR rules follows for delete-anonymize-export personal data can be managed from 'My Account > Manage Account'
  • + To avoid data theft & fraudulent actions, there are Admin Moderation and Email Verification gate on handle request made by the customer.
  • + Privacy Consent will be mentioned and show up on a register and checkout. It will also be updated on the Account > Privacy setting page.
  • + Customer Consent Grids to tracking for all accepted assent & till which are not accepted the notice.
  • + A cookie compliant notice pop-up can be customized with a top & bottom position of your web-page.
  • + Admin configuration for auto-deletion of unwanted data like an abandoned cart.
  • + Privacy Policy management enables max. 3 number of request which might appear on a register, checkout or any other page where applicable. all policies will be included on a privacy page.
  • + Consent Reset when policy update & added 2 new grid for consent visibility
  • + Popup appearing when customer get the login for update consent


EU’s General Data Protection Regulation is serious stuff that needs to be looked at by every company selling online. Merchants can't ignore this due to they're high on Penalties for breaching. With our Magento 2 GDPR moduleyou to comply with various Checklist of EU’s GDPR for Magento 2 store.

This module opens customers to access their right to control, delete, access to their personal data. At the same time, It allows online store owners to manage their privacy policy and requests privacy consent from users at the right time.

Manage Account with (Delete, Download & Erase action)

Admin can configure each of this request processing immediate, Awaiting admin approval or auto mode as described above after sensing the right need.

Delete Account:

According to an EU’s regulation, a user should have an option to delete an account permanently. This compliant plugin empowers users to delete an account from the new “My Account > Manage Account” page. The request is handled securely by sending out the request mail to user ensures action is taken by an authorized user only

Download Personal Data:

In order to accomplish with an EU’s right to access rule, the module allows the user to make a download request from “My Account > Manage Account” page. This will export all user’s own personal info, sales history, invoicing etc. into the machine-readable format (atm its CSV only). Once the download is ready, a downloadable attachment link will be sent to the user’s verified the email address.

Erase/Anonymize Account Data:

To comply right to be forgotten, this M2 plugin adds an option to Erase/Anonymise user data which replaces customer personal data, sales history with placeholder text in the database which hides customer's information.

Each of these data-related requests (delete, erase & download) allows 3 modes of servicing enhancing the flexibility and security:

  • By Customer
  • Auto
  • By Admin

In By Customer mode, when requests are raised by any users, a mail will be received by a user through whom they can take action either to delete or access their data.

In Auto mode when a request raised by the customer and completes email verification, all received requests will then be automatically serviced based on cron setting done by admin and email will be sent out to respective customers who then take control through an email received.

In By Admin mode, when a request raised by the user, the admin receives all request on his dashboard and when the admin approves the request then a mail is sent out to the customer who then takes a relevant action to complete their request. This method is used to ensure more security.

Privacy Consent Management

A Magento 2 GDPR complant plug-in also sets cronjob for automatically truncate abandoned carts from quote table periodically. admin can set this frequency on the backend via cron settings.

EU regulation includes, customer privacy consent should be asked before accessing their personal information. Also, it should be clear with privacy document that when & where your information going to be used. Our plugin allows admin to inject upto 3 consents which will appear on registration and/or checkout page if they have not accepted by a user. A user can anytime update this consent value by going into a dedicated Privacy Policy page in my account area.

Admin will be presented 2 separate user consents grids loading users who accepted consents & customers pending privacy consents. Admin can reset previously recorded users consent to run through new privacy terms. The customer then has to give their consents again with new privacy updates.

Cookie Consents

Our Magento plugin enables cookie consent with a customized popup at the top or bottom of the screen to the user.

Important notice

This Magento module for "EU's General Data Protection Regulation" designed with the best of our knowledge & understanding of regulation to help eCommerce merchants fulfil with EU's regulation. However, please consult your lawyer to confirm compliant accordingly.

Extension Set up:

1. Install the module from the marketplace.
2. For using Magento module, go to STORE> Configuration > SETUBRIDGE > GDPR Tab:

Extension Configuration:

Cookie Consent configuration:

This section enables cookie consent settings with regards to the cookie information and also positioning of cookie consent request.

Privacy Consent configuration:

This section enables you to add consent request for the store along with a description of the privacy policy.

Download Account Data Configuration:

This configuration helps you allow customers to download their personal data. You can select whether a request is to be handled in the auto, by customers or by admin mode. You can also set notification related setting along with email of sender for a notification.

Erase Anonymous Personal Data Configuration:

Anonymise your customer's data by configuring erase data configuration. same as above here all modes are available to handle the request. Also, a notification can be sent for the current action.

Delete Account Configuration:

Allow your customer to delete their data completely after account deletion. this action also available on three-mode (by admin, by customer & auto mode). Admin can send the notification with an email for this action also.

Cron Setting Configuration:

This handles the cron-setting in terms of when the request servicing should take place in cases where a request is set in the auto mode.

Erase Unwanted Data Configuration:

There are some unwanted data that gets stored sometimes this configuration enables deletion of those data.
The Privacy Setting can be configured by customer using the privacy setting tab.

How to use the GDPR module:

Access the Manage Account tab which displays request Type and click on appropriate request.
A request received can be tracked through an admin panel. Depending on a mode selected during setting the admin might have approved request. A notification will then be sent to a customer.


Write Your Own Review
You're reviewing:Magento 2 GDPR Compliance
Your Rating