← Back to EuRevoke
Privacy Policy

EuRevoke Privacy Policy

EU withdrawal compliance for WooCommerce and Shopify

Last updated: 6 March 2026

1. Introduction

EuRevoke ("we", "us") is an EU withdrawal compliance solution for WooCommerce and Shopify. This privacy policy explains how we handle data when you use our website, purchase a license (WooCommerce), use the plugin, or use the Shopify app. We process personal data in accordance with the GDPR (Regulation (EU) 2016/679) and applicable EU consumer rights legislation, including Directive (EU) 2023/2673 (effective 19 June 2026).

2. Data controller – WooCommerce plugin

When you use the EuRevoke WooCommerce plugin, withdrawal data (order number, customer email, name, reason, timestamps) is stored in your WordPress database on your own server. You are the data controller for that data. We do not receive, process, or store any withdrawal requests from your customers.

Your responsibility: ensure your shop's privacy policy informs customers about withdrawal requests and how you process them. The plugin provides the technical means; you remain responsible for your overall compliance with data protection and consumer law.

3. Data we collect

We collect data only where necessary:

  • Website visitors: Cookies and analytics (see our main privacy policy) when you browse year3000.nl
  • License purchase: When you buy Starter or Business via Freemius checkout, Freemius processes your payment and contact details. See Freemius Privacy Policy
  • License activation: The plugin may communicate with Freemius to verify your license (site URL, license key). No withdrawal data is sent.

Legal basis: Contract performance (license delivery), legitimate interest (fraud prevention, support).

4. Third-party processors

We use the following services:

  • Freemius – License sales, activation, and updates. Data processed: email, site URL, payment info (handled by Freemius). Privacy policy
  • WordPress.org – Plugin distribution (free version). No personal data from us; downloads are anonymous.
  • Year 3000 website hosting – Standard web hosting for year3000.nl. See our main privacy policy for details.

5. Data retention

WooCommerce plugin: Withdrawal data is stored on your server. You decide retention. We recommend aligning with your legal obligations in your jurisdiction (e.g. tax retention periods where applicable).

License data: Freemius retains purchase and license data as per their policy. We do not store copies of your payment details.

6. Your rights (GDPR)

Under the GDPR you have the right to:

  • Access your personal data
  • Rectify inaccurate data
  • Erase your data (right to be forgotten)
  • Restrict processing
  • Data portability
  • Object to processing
  • Withdraw consent where applicable
  • Lodge a complaint with a supervisory authority

For license-related data: contact Freemius or us. For withdrawal data on your WooCommerce site: you control it; use WordPress privacy tools (export, erasure) to handle customer requests.

7. Security

We do not store withdrawal data. For license and website data we rely on:

  • TLS encryption for data in transit
  • Secure hosting and access controls
  • No sensitive data in logs

8. Shopify app

For the EuRevoke Shopify app, we process withdrawal data in our infrastructure (order number, email, name, reason, timestamps) on behalf of the merchant. We act as data processor; the merchant is the data controller. We implement retention (default 180 days), encryption (TLS in transit, database encryption at rest), and Shopify compliance webhooks (customers/data_request, customers/redact, shop/redact). We do not use data for marketing or sell it to third parties. A Data Processing Agreement is available for Shopify merchants on request.

9. Contact

EuRevoke is developed by Year 3000. For privacy-related questions:

Email: joey@year3000.nl

Disclaimer: This document is not legal advice. Consult a privacy or compliance specialist for your specific situation. Laws may vary by jurisdiction.