Data Deletion: Delete Personal Data
Delete personal data when itβs necessary to comply with various data protection and privacy regulations. We give you examples of common requests and things to consider. That way, you can determine a plan of action for complying with the regulations that apply to you.
Many data protection and privacy regulations can require you to delete shoppersβ
personal data when customers request it, or when it's no longer necessary to keep it.
We've listed a few of the regulations that are important to many companies collecting
and processing their customersβ data.
- General Data Protection Regulation (GDPR), European Union
- Personal Information Protection Act (PIPA), Japan
- Privacy Act, Australia
- Personal Information Protection and Electronic Documents Act (PIPEDA), Canada
| Product | Common Shopper Request | Actions to Consider | Things to Consider |
|---|---|---|---|
| B2C Commerce | I want you to delete my data from the system after my account is deleted. | Delete all data associated with the customer, as shown in this table. | When you delete a customer, you delete certain associated data. See
Deleting a Customer. All other data deletion requires additional steps, as noted in this table. See Browser-Based Local Data Storage to consider whether to inform the shopper of any browser cookies that might exist on their computer. |
| B2C Commerce | I want you to delete my order history. | Delete an order. | Set up automatic order removal after a set number of days using the Order Retention setting. The shopper may need to keep certain data to fulfill their obligations under tax and other laws. |
| B2C Commerce | I want you to delete any guest baskets I create. | Set basket lifetime for unregistered guests. | The system deletes guest baskets after 240 minutes by default. |
| B2C Commerce | I want you to delete any custom object containing my personal data. | Delete custom objects. | The merchant creates and maintains custom objects that can contain personal data. Verify this using the Custom Object Editor in Business Manager. |
| B2C Commerce | I want you to delete my personal information from all gift certificates. | Remove customer data from gift certificates. | Gift Certificates contain the email of a recipient. Either remove the recipient's email or delete the entire Gift Certificate. If you delete the entire Gift Certificate, consider how you will refund the remaining balance. |
| B2C Commerce | I want you to delete my personal information from redeemed coupons. | Delete email addresses from redeemed coupons. | Remove email addresses from redeemed coupons using the Forget Email feature. |
| B2C Commerce | I want you to delete any lingering cookies or data objects. | Instruct customers to delete cookies and objects from their browsers. | The process to delete cookies and objects depends on the browser the shopper is using. Instruct shoppers to refer to the documentation for their browser. |
| B2C Commerce | One of my shoppers in California asked that we not sell her data to other companies. | Consider if a third-party integration, built by the customer or otherwise enabled in Commerce Cloud, is within the scope of the request and how you would respond. | Customers should consider if they need to build customizations to pass on the request to vendors. |
| B2C Commerce | I want to create a button on my website to receive and honor customer requests not to sell their data. | Customers can create a button with a clear and conspicuous link on their website. It is the customer's responsibility to determine whether a button is needed. The customer and their implementation partner should build this button and any components to address other actions described in this table. | Customers should consider, through customization, how they can track the request and their responses to them. |
| Commerce Cloud Order Management | I want you to delete my account and order records. | Configure the nightly process that deletes personal data. | When one record is derived from another record, delete the derived
record before the original record. This rule affects all summary objects.
For example, when you delete an order, delete the corresponding order
summary and any related change orders first. Deleting a record doesnβt delete records that belong to it. For example, when you delete an order, delete its order items first. Also, remember to delete the order item summaries before the order items, because the summaries are derived from the underlying order item records. |