What store supplier Ecwid has done to comply with the GDPR


Ecwid collects, stores, processes and shares personal data based on GDPR guidelines and complies with GDPR requirements in the following ways:

  • we assigned a Data Protection Officer who is in charge of the Ecwid Data Protection Policy;

  • we started to deliver GDPR-focused training to our key teams and personnel;

  • we implemented a detailed procedure to deal with all data subject access requests, deletion requests, and government access requests;

  • we work only with subprocessors who provide an adequate protection of the personal data through robust technical and organizational measures;

  • we developed a reliable method to detect, report and investigate a personal data breach;

  • we established the necessary records of data processing activities;

  • we are certified under the EU - U.S. and Swiss - U.S. Privacy Shield frameworks; this arrangement calls for certified organisations to guarantee a level of security in line with EU data protection law regarding the transfer of personal data from the EEA and Switzerland to the U.S.