Compliance

Legal & compliance

Review our legal documents and compliance policies governing your use of MerchantFlow.

Privacy policyTerms of serviceGDPR consentData retention

Placeholder

GDPR consent banners

Scope: EU/EEA visitors and any customers subject to GDPR.

This page outlines the planned consent experience and data subject controls while the final implementation is built and validated.

Planned consent flow

  1. Detect EU/EEA visitors and display a consent banner before optional cookies load.
  2. Provide clear options to accept analytics cookies, reject non-essential cookies, or manage granular preferences.
  3. Log consent choices with timestamps so they can be audited and honored across sessions.
  4. Offer an always-available preference link in the footer so users can update their choices.

Data subject rights

We plan to support access, correction, deletion, and portability requests for data we store on behalf of EU customers. A dedicated workflow and response timelines will be published with the full policy.

Third-party tools

Vendor lists and cookie classifications will be documented before any tracking scripts are enabled for EU visitors. Until then, only essential cookies will be used.