Data Privacy

The General Data Protection Regulation (GDPR) (EU) 2016/679 and the California Consumer Privacy Act (CCPA) are regulations in the EU and California (respectively) on data protection.

These regulations set out special rules and protections around the processing of personal data. With these tools, we make it easy for you to control data privacy settings.

Nosto’s Data Processing Addendum

Read how we use data to personalize user experiences

Nosto’s Data Privacy Control Tools

Please take a look at these new tools for data privacy controls and make choices about data settings.

Data Control Controls

Data control tools allow you to configure what personal data (types) Nosto will process and store to produce personalisation features. Nosto will cease to process the specified customer information from the time these settings are enabled. Read more.

Customer Data Removal Tool

Customer removal tool removes all personal data of an individual(s) collected by Nosto based on an email address in case you as a merchant receive a request to remove personal records of an individual. Read more.

Customer Data Takeout Tool

This tool prints out a record for data processor about all the data what Nosto has collected of an individual customer based on an email address. Read more.

Data Processing Policy Generator

This tool creates records of data processing activities with Nosto based on your current setup with Nosto tools. This tool helps you to describe what data Nosto processes and stores, describing the purpose of the service and other key information about Nosto’s data processing policies. Read more.

Data Controls for Facebook

This tool helps you to control what data Nosto sends to Facebook to create targeting audiences. Read more.

Marketing Permission Tagging for Triggered Emails

With this you can define if a customer has consented to email marketing. Without this consent, Nosto assumes that the current customer has not given their consent and Nosto will refrain from sending out any personalized Triggered Emails. Read more.

Customer “whitelist” Tool for Triggered Emails Marketing

With this tool you can whitelist email addresses to which Nosto can send personalized Triggered Emails. Read more.

Ignore Triggered Emails Marketing Permission Tool

This tool allows non-EU merchants to override all safety mechanisms regarding marketing permission tagging for Triggered Emails. With this Nosto will send out Triggered Emails to any email address we acquired. This tool is to support retailers outside of EU, who don’t process any EU resident data. Read more.

Customer Data Removal via API

The Redaction API allows you remove all personally identifiable information associated with a customer. Read more.

General Resources

European Commission Rules for the Protection of Personal Data inside and outside the EU

California Consumer Privacy Act (CCPA)

Nosto’s Guides

Tooling to help you to write your Privacy Policy Document

Customer Data Takeout Tool

Marketing Permission Tagging for Triggered Emails

Disabling Nosto for a Customer

Sender Email Address Re-Verification

In The Blog

Want to learn more about how Nosto is addressing data privacy topics like GDPR, CCPA and the Privacy Shield invalidation? Check out the tools we’ve put in place to help our clients remain GDPR and CCPA compliant, as well as how we continue to safeguard personal data. Read more