When doing business in the European Union (EU), you have to follow the General Data Protection Regulation (GDPR) requirements. GDPR rules allow customers to control their personal data your store may want to collect and store or share. For instance, users can request the deletion of the data, accept or deny using the cookie, etc.
GDPR Magento 2 module helps to comply with GDPR law and still collect consents by rendering GDPR-friendly forms. In fact, it is an important functionality when collecting EU customers' data.
With our extension you can:
- Ask users to consent to different types of data processing
- Show GDPR-friendly forms with opt-in checkboxes or buttons
- Show forms for gaining consents in different site forms
- Display Cookie consent banner
- Easily access all consents accepted by customers
- Add “Privacy Tools” page at the user's account to let him view the list of given consents
- Allow users request the account removal
Our module follows the "right to be forgotten" established in GDPR rules. It allows for deleting the account on user request. This and other extension feature will help you to provide a trustworthy service to all of your customers. In the module backend, you can process the user request manually or delete the request as well as cancel it.
Extension approved on Magento Marketplace
- Free installation
- Activate up to 10 times
- All extensions $79
- Approved on Magento Marketplace
Installation instructions and manuals
Clear and simple GDPR-friendly forms
We developed our extension to help you add GDPR-compliance forms on your Magento 2 site. Using forms you let your visitors give consent to collecting their personal data. With the module you can show the banner, checkboxes as well as buttons to let users accept and save consents, or deny. M2 GDPR module allows for display opt-in forms on the customer registration page, Contact Us page, submit testimonial form, newsletter subscription, and product reviews page. During the first visit, your customers will also see the cookie banner with consent button.
Configurable settings for GDPR-forms
M2 GDPR module includes easy-to-use settings separately for different types of consent. Through the configuration, you can enable/disable a consent checkbox, set a sort order, choose a location (forms) to show a consent checkbox or button, and specify a checkbox label text. HTML and Magento’s WYSIWYG directives are supported. In addition, you receive a clear admin interface for processing the data deletion request. You can set a name for the string when replacing personal user data. You can also set the number of days to wait the request processing enabled.
“Privacy Tools” page
Our Magento 2 GDPR module includes the “Privacy Tools” page which is visible for registered customers. The account privacy page plays an important role in building your website's credibility. They can easily manage the page at their account navigation panel. On “Privacy Tools” page users can view the list of given consents and request to delete the account. Your clients are permitted to withdraw newsletter consent via “Newsletter Subscriptions Management” section of the page. The feature is good not only for your customers.
Cookie consent feature with a cookie bar
With the extension, you can inform visitors about the purposes and usage of the cookies. Via the cookie banner, users will be able to give consent to all by clicking the button or accept the preferable cookies by ticking checkboxes and save. Our module blocks all optional cookies until the visitor accepts to consent. You can use included separate Cookie Registry page to control cookie settings and register an unlimited count of additional cookies and groups. You will regularly check if all cookies that are used on the site are in the consent list. It's also easy to modify the content for the Cookie banner and Cookie settings page.
GDPR 1.8.3
9th December 2025- Updated Breeze integration
GDPR 1.8.0
18th June 2025- #Improved display of accepted newsletter subscription consents for registered customers. If a customer subscribed with multiple emails, a consent entry is shown for each email.
- #Added integration with the newsletter confirmation feature. Now, if a customer has not confirmed the subscription, the consent is marked as “Awaiting confirmation”.
- #Newsletter consent is automatically revoked when a customer is unsubscribed from the email newsletter by an administrator.
GDPR 1.7.13
9th April 2025- PHP 8.4 support added.
- Magento 2.4.8 support added.
GDPR 1.7.11
27th February 2025- Breeze: fixed js error when enabling focus-trap on slow internet connections.
GDPR 1.7.9
12th December 2024- Fixed unclickable search field when cookie bar consent is visible.
GDPR 1.7.8
27th October 2024- Accessibility improvements.
- Improve GoogleConsent integration. Now, we update consents right after default values was set. This makes much better compatibility with third-party GTM modules.
- Fixed blink of default cookie bar for a moment.
- Fixed conflict with built-in cookie restriction mode.
- Fixed not working GDPR consents validation in UI forms.
GDPR 1.7.3
3rd July 2024- Prevent vanilla js events DOMContentLoaded deferring
- Fix for autogenerated scripts
GDPR 1.7.0
27thApril 2024- Added ability to change and create region-specific default Google consent values.
- Added “Deny” and “Allow Selection” buttons to minimal cookie bar mode.
- Fixed not working default Google consent values.
- Do not set Google consent values until customer presses “Accept” or “Deny” buttons.
- Allow using url_passthrough variable when consent is declined.
- Default cookie wall color changed to dark.
GDPR 1.6.3
2nd April 2024- Breeze: fixed missing focus styles.
- Improve styles for cookie togglers.
GDPR 1.6.2
15th March 2024- Do not store !notfound cookie group in cookies.
GDPR 1.6.0
5th March 2024- Added integration with Google Consent Mode v2. It’s enabled by default. Still, you can disable it from the module configuration.
- Cookies reorganized into better groups. Preferences cookie group added. Advertisement group merged into Marketing group.
- Removed useless customers section update after cookie consent settings were changed.
GDPR 1.5.24
2nd February 2024- Breeze integration updated. Dynamic JS support added.
- Locale files cleanup.
GDPR 1.5.20
28th November 2023- Code cleanup.
GDPR 1.5.19
15th September 2023- Performance: improved LCP when cookie bar is enabled.
GDPR 1.5.18
28th July 2023- Breeze integration fixes.
- Stability improvements.
GDPR 1.5.14
28th May 2023- Fixed missing validation message when form uses data-errors-message-box (Swissup_Askit)
GDPR 1.5.13
3rd April 2023- When new cookie group is added by store administrator, show cookie consent again to all visitors.
- Fixed possible initially invisible consents in all forms except newsletter.
- Remove outdated PHP code.
GDPR 1.5.10
17th March 2023- PHP 8.2 compatibility.
- Stability improvements.
GDPR 1.5.9
23th November 2022- Improve Breeze integration
GDPR 1.5.8
20th August 2022- GA4 cookies added to the known cookies list.
GDPR 1.5.2
16th April 2022- Magento 2.4.4 and PHP 8.1 compatibility..
GDPR 1.5.0
10th April 2022- Added ability to make a pre-checked cookie consent for optional cookie group. Previously only required cookie groups were pre-checked.
GDPR 1.4.11
30th January 2022- Magento Coding Standard fixes
- Breeze Theme integration added
GDPR 1.4.10
16th December 2021- Breeze theme integration added.
GDPR 1.4.9
28th September 2021- Facebook pixel cookie added to known cookies list.
GDPR 1.4.8
15th September 2021- Updated breeze integration.
GDPR 1.4.7
19th July 2021- Breeze integration updated. Fixed not working ‘Delete My Data’ button.
GDPR 1.4.6
19th July 2021- Breeze integration updated. Prevent js error when Magento_GoogleAnalytics is disabled.
GDPR 1.4.3
11th June 2021- Fixed not working ‘Add Cookie Group’ button in backend (Magento 2.4)
- “Accept All” button replaced with “Accept All & Save” in cookie bar component.
GDPR 1.4.3
14th May 2021- Breeze integration added.
GDPR 1.4.2
30th March 2021- Show accepted cookie group titles instead of group ids at account page.
- Fixed invalid ‘updated_at’ value when client consents gets updated.
- Better compatibility with Athlete theme.
GDPR 1.4.1
23th March 2021- Fixed overlay blink while styles are loading
GDPR 1.4.0
26th January 2021- Cookie Wall feature added.
GDPR 1.3.18
22nd January 2021- Fixed translation for “Agree & save” phrase.
- Updated integration with our Pagebuilder module
GDPR 1.3.17
27th November 2020- Do not send email notifications (order status update, newsletter, review reminders) to anonymized email addresses.
- Fixed possible disappeared message after add to cart. It prevents magneto from updating customer sections after registring unknown cookie.
- Decrease number of ajax requests if some module write cookies multiple times.v
- Fixed margin for newsletter consent at RTL locales.
GDPR 1.3.16
26th November 2020- Fixed possible disappeared message after add to cart. It prevents magneto from updating customer sections after registring unknown cookie.
- Decrease number of ajax requests if some module write cookies multiple times.
- Fixed margin for newsletter consent at RTL locales.
GDPR 1.3.14
28th October 2020- Improved frontend performance when a bunch of cookies are blocked. Previously GDPR module sent a request per each cookie. Now, all cookie names will be merged into a single request.
- Fixed blocked google analytics cookies when Magento_GoogleAnalytics module is enabled in runtime via third-party plugin.
- Fixed missing GDPR checkboxes on customer registration page when Swissup_CustomerFields is enabled
GDPR 1.3.11
17th October 2020- Fixed php error when using “Login as Customer” feature.
GDPR 1.3.10
14th October 2020- Pagebuilder integration added.
GDPR 1.3.9
25th August 2020- Fixed cookie bar flickering when critical css is enabled in theme.
GDPR 1.3.8
7th August 2020- Fixed ability to translate I accept following cookies.
- Do not show empty “Cookie Settings” on “Privacy Tools” page when it’s disabled.
GDPR 1.3.3
17th June 2020- Fixed DB error when customer logging in.
GDPR 1.3.1
28th April 2020- Fixed error during static content deploy when theme buttons use gradient for background.
- Fixed cookie bar positioning when theme uses margins on page-wrapper.
GDPR 1.3.0
17th April 2020Cookie consent feature added. Here is some highlights of the new feature:
- Cookie bar banner in minimalistic and full display modes.
- Separate page to control cookie settings.
- Cookie settings at customer account page.
- When the user creates an account, guest cookie consent automatically links with this account.
- Module blocks all optional cookies until visitor accept consent.
- Accepted cookie consent is saved into DB.
- All unknown blocked cookies automatically added to the backend list, so you can regulary check if all cookies that are used on the site are in the consent list.
- Store owner can register unlimited count of additional cookies and groups.
- All magento cookies are known by the module out of the box.
GDPR 1.2.3
17th February 2020- RTL fixes for newsletter consent
GDPR 1.2.2
3rd February 2019- Fixed broken ACL resources page in Magento older than 2.3.4
- Fixed too large margin in newsletter checkbox in Magento 2.3.4
GDPR 1.1.4
29th May 2019- Fixed missing accepted consents at 'privacy tools' page.
- Fixed not working link to the customer account page from the requests grid
GDPR 1.1.2
25th May 2019- PHPCS fix
- MEQP compatibility.
GDPR for Magento 2 1.1.1
29th March 2019- Added missing localization file
- Fixed mysql error on client consents page when table prefixes are used
GDPR for Magento 2 1.1.0
31st October 2018- Internal module naming convention was updated. We applied this changes to reach full compatibility with Magento Marketplace policy and new Composer-based installation process.
GDPR for Magento 2
26th of June 2018- Initial Release
Write Your Own Review