Updating the privacy policy content
You can update the privacy policy content for your store to change the privacy policy details that display to shoppers on your store Privacy Policy and Just-in-Time Privacy Policy pages.
By default, the same privacy policy content is displayed on the Privacy Policy and Just-in-Time Privacy Policy pages. The Privacy Policy page is enabled to display in all stores by default, and can be accessed at any time from a link in the footer. The Just-in-Time Privacy Policy is an optional page that when enabled is displayed as a pop-up window. The Just-in-Time Privacy Policy is displayed to shoppers when they first visit the store to ensure that shoppers review and accept the store's privacy policy before they proceed to browse the store.
About this task
If you are including a privacy policy page or just-in time privacy policy notice within your custom store, create the content that needs to display on the pages. If your site includes multiple stores, create a privacy policy specific to each store. The acceptance of a store's privacy policy is recorded and applicable for just that store. Any consent that is provided by a shopper for a store to collect and use the shopper's data is provided for only the store where the consent was given by the shopper.
If you are copying and using the sample privacy policy pages that are provided with the Aurora store, replace the sample content with your store’s privacy policy content. The content that is included on the sample store pages is provided as a sample only for demonstrating how to display content on the page. Do not use this content as-is within your custom store.
Your organization is responsible for ensuring that any sample page that your store uses is customized to disclose the correct information to your shoppers. Your organization is also responsible for ensuring that your legal counsel has completed any required reviews of your store pages and privacy policy.
When you are planning the content to include in the privacy notice, detail your organization's request for consent and reasons for requiring consent. Include details to inform your shoppers about what data your store collects when a shopper provides consent and how the data is used and processed. Present the privacy notice to shoppers and obtain consent before your site collects any data about the shopper. It is your responsibility to ensure that the privacy notice content that you create takes into account any GDPR responsibilities for privacy notices that you may have. For the full details about the GDPR requirements for privacy notices and consent, see GDPR legislation.
The marketing content that includes the details for privacy policy can be updated or replaced within the Marketing tool for .
If you want to keep previous versions of the marketing content, such as for auditing purposes, consider creating and replacing the content with a new version instead of directly updating the content text. The following steps demonstrate how to copy and replace the content. If you do not want to keep the previous content version, you can directly update the existing content. The recording of each version of your store's privacy notices and the historical use of each version, such as for auditing purposes, is the responsibility of your organization. WebSphere Commerce does not record or provide this information.