Legal, Compliance & Privacy
Legal, privacy, and compliance terms covering GDPR, accessibility requirements, and regulatory considerations for online retailers.
The metrics that decide whether your brand scales.
Compliance is the risk you don't think about until a class-action notice arrives. GDPR, CCPA, CPRA, ADA, age verification for restricted products, pixel consent, data residency — every term in this category exists because regulators are catching up with how DTC brands actually use customer data.
Most Shopify brands ignore this category until their legal counsel flags an issue or a customer files a complaint. The terms here are the minimum vocabulary you need to evaluate whether your privacy policy, cookie banner, and consent management are doing their job.
This isn't legal advice — it's the language to read your own legal docs and ask the right questions when you do consult counsel.
Browse the full list
Showing 10 of 10 terms in Legal, Compliance & Privacy
GDPR
General Data Protection Regulation - European privacy law requiring consent for data collection.
CCPA
California Consumer Privacy Act - giving residents rights over personal data.
Privacy Policy
A legal document explaining what data you collect and how it's used.
Consent Management Platform
CMPSoftware managing user consent for cookies and data collection.
PCI DSS
Payment Card Industry Data Security Standard - security standards for handling credit card data.
Chargeback
A forced transaction reversal initiated by a cardholder through their bank.
Fraud Prevention
Systems and practices to detect and prevent fraudulent transactions.
Sales Tax
State and local taxes on retail sales. Requirements vary by nexus in each state.
Economic Nexus
A sales tax obligation triggered by reaching revenue thresholds in a state.
VAT
Value Added Tax - consumption tax used in EU and many other countries.
Related glossary categories
Explore related glossary categories.