← Back to What's New

GDPR data-subject requests: erasure engine + privacy inbox

Improvement

Week of June 15, 2026

Stoked now has a general data-privacy framework for honoring data-subject requests, with Shopify’s mandatory privacy webhooks as the first source plugged into it.

  • Privacy requests in your Inbox — when a shopper asks a connected store for the data Stoked holds about them, a “Customer data request” appears in your Inbox with the stored order details. Share them with the shopper, then mark it handled.
  • Erasure on request — a deletion request nulls the person’s stored contact details (email/phone) across the data Stoked holds, while keeping anonymized history (reward attributions, financial records) intact.
  • Store uninstall — removing a store after uninstalling wipes its stored customer contact data and disconnects Stoked’s saved Shopify credentials.
  • Behind the scenes — Stoked staff can action a data-subject erasure across every community a person appears in, from an internal admin console.

No admin action required.

© 2024-2026 Stoked — Real conversations. Real trust.