Privacy: About Your Customer's Data

4 min read
Note:
Only the site owner can access the privacy settings.
Legislation such as the California Consumer Protection Act (CCPA) and the EU's General Data Protection Regulation (GDPR) and Brazil's Lei Geral de Proteção de Dados (LGPD) are designed to secure the personal data of those regions' citizens. 
The CCPA gives consumers, who are defined as residents of California, rights over their personal information and how businesses may use that data. The GDPR is a regulation intended to strengthen and unify data protection for all individuals within the European Union (EU). This may affect businesses or websites that interact with EU citizens. Similarly, the LGPD provides data protection rights for Brazilian citizens. 
The CCPA, LGPD and the GDPR grant customers the right to access data that site-owners have collected, as well as the right to have that data deleted.   
With Wix, you can provide your site visitors with a file of their data or delete their data from your database entirely. It's important to note that not all data is included in the file and not all data is erased. As a site owner, if you receive a request, it is your responsibility to ensure that you provide your site visitor with all their data. Likewise, if you receive a delete request, you must ensure that all their data is deleted. 

What's included in your customer's data file? What's erased when you delete a customer's data?

  • Contact details
  • Activities
  • Orders
  • Invoices
  • Other

What's not included in the data file? What isn't erased when you delete a customer's data?

Data from Custom Code (Velo by Wix)

Data from custom code is not included in your site visitor's data archive and it is not erased when you delete their data. Click here for more information. 

Data from third-party apps

Data collected by third-party apps on your site is not included in the data file and is not erased when you delete your customer's data. It is your responsibility to retrieve your customer's data from your site's third-party apps and include it with the data file.

Data from other services implemented on your site

Data collected by other services implemented on your site is not included in your customer's data file or erased when you delete your customer's data. This includes, for instance, data collected by tracking and analytics tools, such as Google Analytics or the Facebook pixel. It is your responsibility to contact these services and retrieve or erase your users' data upon request. 
Important
As stated in our Terms of Use, it is your responsibility to ensure that Wix services are permitted and abide by your local laws. Any information contained herein is not legal advice and you should not rely upon it as such. Both the CCPA and GDPR are complex laws that demand multiple actions from site owners. We recommend that you seek legal advice to understand and to prepare for possible additional requirements stated in such regulations.

Getting a Copy of Your Customer's Data

Your customers may request a copy of their data that your site has collected. 

To get a copy of your customer's data:

  1. Go to Privacy & Cookies in your site's settings.
  2. Click Visitor Data.
  3. Click Data Request.
  4. Click + New Request
  5. Click the dropdown and select Get a copy of their data
  6. Click Continue
  7. Verify that the email or phone number belongs to the customer who made the request:
    • Enter their phone number.
    • Enter their email address.
      Important: Make sure to enter the email address exactly as it is saved in your contact list.  
  8. Click Submit Request
After submitting a request you will receive a notification confirming the start of the process. You'll receive your customer's data file within 48 hours of submitting the request. 
After you've received your customer's data file make sure to doing the following:
  • Confirm the customer's identity and contact details.
  • Download your customer's data file using the link in the email.
  • Send the file to your customer via email. 
Notes:
  • For larger files you may wish to use a file sharing service agreed with the customer.
  • No email is sent to your customer. As a site owner, it is your responsibility to send the data file. 

Permanently Deleting Your Customer's Data

Your customers may request that you permanently delete their data that has been processed on your site. 

To delete your customer's data:


  1. Go to Privacy & Cookies in your site's settings.
  2. Click Visitor Data.
  3. Click Data Request.
  4. Click + New Request
  5. Click the dropdown and select Delete their data
  6. Click Continue
  7. Verify that the email or phone number belongs to the customer who made the request:
    • Enter their phone number.
    • Enter their email address. 
  8. Click Submit Request
After submitting a delete request you will receive a notification confirming the start of the process. Your customer's data will be deleted within 48 hours of submitting the request. 
Please note that your customer has not been notified of this process. It is your responsibility to inform your customer when their data has been deleted. 

Did this help?

|