GDPR: 2Checkout as of May, 25th 2018

As you are probably aware, the General Data Protection Regulation (GDPR) will come into effect on May 25th, 2018. 2Checkout is committed to transparency, control and accountability. We have been working on GDPR for months and we can guarantee that on May 25th 2Checkout will be fully GDPR compliant. Our focus is to process payments securely and efficiently, whilst adhering to the latest changes and updates to the payments industry and to EU regulations.

What is GDPR Compliance?
The General Data Protection Regulation (GDPR) is an EU-wide regulation for the protection of European citizens’ data that comes into force on May 25th, 2018 and all companies that collect such data will need to comply with it. It establishes a set of compliance and security processes around managing personally identifiable information so that it is not misused. Currently, there is no certification or license required or available for GDPR.

How Are We Preparing for GDPR?
2Checkout has been working towards becoming compliant for many months and is in the final stages of that process. 2Checkout will be GDPR compliant by May 25th, 2018. Since it is a complex process, it takes time and involves mapping, assessing, planning and implementing changes throughout the company. We are working with subject matter experts from the field and consultancy firms to support us in the process.
By continuing to work with 2Checkout you agree to the following updated documents:
Privacy Policy – updated to meet GDPR requirements and present in the Shopping cart alongside age verification
Terms of Use – with a clear scope and easy to understand
Refunds Policies and Delivery Policies have been updated as well
How GDPR Impacts Your Business
If you sell to European citizens you will need to make sure that both you and all your partners (that have access to private data) are GDPR compliant by May 25th. 2Checkout will be GDPR compliant by May 25th, 2018.

If you use a 3rd party cart integration, please make sure that you add the age verification in the shopping cart as well, as have a Privacy Policy with a clear scope for collection of data and GDPR requirements. We recommend using the 2CO Privacy Policy.
Please note that for the data you collect outside of our systems – 2Checkout Platform – you must be GDPR compliant as well and need to take all necessary measures.
Please read our blogpost: GDPR Compliance – Practical Checklist for insights on what you can do to become compliant. For in-depth knowledge adapted to your business on how you can become GDPR Compliant we recommend you consult the appropriate legal counsel.

Please visit our GDPR page and FAQs for more details on what 2Checkout has done to comply with GDPR.