Configuring Account & Privacy Settings

  1. Home
  2. Docs
  3. E-Commerce ( Legacy Versi...
  4. Getting Started
  5. Configuring Account & Privacy Settings

Configuring Account & Privacy Settings

Go to WooCommerce > Settings > Accounts and Privacy to control options relating to customer accounts and data retention.

Guest Checkout

  • Allow customers to place orders without an account – Allows customers to check out without creating an account. Orders will not be tied to a user account in WordPress.
  • Allow customers to log into an existing account during checkout – This displays a login form and prompt on the checkout page if the customer is not already logged in.

Account Creation

  • Allow customers to create an account during checkout
  • Allow customers to create an account on the My account page
  • Automatically generate username from customer email – If this is disabled, there will be an input box for the user to create their own username.
  • Automatically generate customer password – If this is disabled, there will be an input box for the user to set their own password. Note that while the password strength notification will be displayed at Checkout, customers can choose any password so as to not limit conversions. On the My Account page, the password will need to meet certain complexity requirements (i.e. a combination of the number of characters and mixture of uppercase / lowercase / numeric / symbol characters).

Account erasure requests

  • Remove personal data from orders – WordPress 4.9 allows you to remove personal data on request. When doing this, if you enable this option, user data will also be removed from your orders if they belong to the user being erased.
  • Remove access to downloads – WordPress 4.9 allows you to remove personal data on request. When doing this, if you enable this option, download data will also be removed if it belongs to the user being erased. The erased user will no longer have access to any purchased downloads if this happens.

Personal data removal

  • Allow personal data to be removed in bulk from orders – Adds a new bulk action to remove personal data on the Orders page. Useful if you need to manually anonymize orders in bulk.

Privacy policy

This section lets you select a page for your privacy policy, and display privacy policy snippets on your account and checkout pages shown to customers.

  • Privacy Page – Select a page to act as your privacy policy. Using [privacy_policy] will link to this page. Some themes also use this option to link to a privacy policy in other places, such as the footer. This feature was added in WordPress 4.9.
  • Registration privacy policy – Shown on the registration form on the My Account page. You should include information about your privacy policy, and link to your page privacy policy page for more information.
  • Checkout privacy policy – Shown on the checkout form. You should include information about your privacy policy, and link to your page privacy policy page for more information.

Personal data retention

This section allows you decide how long to keep order data on your store. You should specify how long your site will retain data in your privacy policy; consider what makes sense for your store based on your local laws.

For each option, enter a number and choose the duration from days, weeks, months, or years. Leaving these options blank will disable them.

  • Retain inactive accounts – Inactive accounts are accounts which have not logged in nor placed an order for the specified duration.
  • Retain pending orders – Pending orders are unpaid or abandoned and should not need to be fulfilled.
  • Retain failed orders – Failed orders are unpaid or abandoned and should not need to be fulfilled.
  • Retain cancelled orders – Cancelled orders were orders cancelled on purpose by either the admin or the customer, or timed out waiting for payment.
  • Retain completed orders – Completed orders were fulfilled in the past.

Personal Data Exporter

WordPress 4.9.6 has the ability to export personal data associated with an email address to an HTML file. WooCommerce adds to the generated export file, exporting the following data:

  • Customer address/account information
  • Orders associated with the given email address
  • Download permissions and logs associated with the given email address

To ensure requests are genuine, a confirmation email is sent to verify the request. The verification process:

  1. Enter an email address or username.
  2. User is notified via email with a confirmation link.
  3. Confirmation link is used, and request is marked “confirmed.”
  4. Email with link to download their personal data is sent to the user.

Example of a Personal Data File:

How can we help?