Merchant Checklist
A practical checklist to help you run Zolvio features responsibly.
1) Configure Consent
- Use a consent banner that can control analytics consent in your region(s)
- Confirm your banner integrates with Shopify’s consent APIs (when available)
- Review excluded paths and ensure checkout/account-like pages are not recorded. See Cookie & Consent.
2) Update Your Policies
- Disclose session recording and behavioral analytics in your privacy policy
- Describe what is captured, what is masked, and your retention period
- Link to your cookie policy (where applicable)
Suggested wording (starting point)
“We use analytics tools to understand how visitors interact with our site (e.g., clicks and scrolling). Where required, we ask for consent before enabling these tools. We take steps to reduce sensitive data collection by masking form inputs and excluding sensitive pages.”
3) Set Retention Expectations
- Know your plan’s retention period
- Document how long recordings, heatmaps, and experiments are kept
- Link to Data Retention Policy for detail
4) Prepare for DSAR Requests
Depending on your region, visitors may request access or deletion. Learn the workflow in DSAR Guide.
5) Restrict Access Internally
- Limit app access to team members who need it
- Use least-privilege Shopify roles
- Have an internal process for support access and auditing