Localisation and Compliance in Shopware for European Markets

European Compliance Landscape

Selling online in Europe requires navigating a complex web of regulations: GDPR, ePrivacy, consumer protection, tax law, product safety, and accessibility. Shopware's European origin gives it a compliance advantage, but proper configuration is essential.

GDPR Compliance

Data Privacy Fundamentals

The General Data Protection Regulation applies to all businesses processing EU residents' personal data. Key requirements:

Lawful Basis for Processing

• Consent for marketing communications
• Contractual necessity for order processing
• Legitimate interest for analytics (with proper balancing test)

Shopware Implementation

• Double opt-in for newsletter subscription (standard in Shopware)
• Consent checkboxes during registration and checkout
• Data processing information during checkout
• Privacy policy page linked throughout the store

Right to Access and Erasure

GDPR gives customers the right to:

• Request all personal data you hold about them
• Request deletion of their personal data
• Receive data in a portable format

Shopware Features

• Customer data export from admin panel
• Customer account deletion functionality
• Order anonymisation for fulfilled orders
• Automated data retention policies via plugins

Data Processing Agreements

You need DPAs with all third-party services processing customer data:

• Payment providers (Stripe, Mollie, PayPal)
• Email services (Klaviyo, Mailchimp)
• Analytics (Google Analytics)
• Hosting providers
• CDN providers
• Any other services receiving personal data

Cookie Consent

ePrivacy Requirements

EU ePrivacy Directive requires informed consent before setting non-essential cookies:

Essential cookies: Allowed without consent (session, cart, authentication)

Analytics cookies: Require consent (Google Analytics, Hotjar)

Marketing cookies: Require consent (Facebook Pixel, Google Ads, retargeting)

Implementation in Shopware

• Install a cookie consent plugin (Consentmo, CookieFirst, or custom)
• Configure cookie categories (essential, analytics, marketing)
• Block non-essential scripts until consent given
• Allow granular consent (users choose categories)
• Store consent records for audit purposes
• Enable consent withdrawal at any time

Country-Specific Cookie Rules

• Germany: Strict interpretation. Planet49 ruling requires explicit opt-in.
• France: CNIL guidelines require clear, specific consent. No cookie walls.
• Italy: Garante rules require banner with clear options.
• Netherlands: AP guidance allows limited analytics without consent if configured correctly.

Consumer Protection

EU Consumer Rights Directive

Required information for all EU online stores:

Before Purchase

• Full seller identity (company name, address, registration number)
• Total price including all taxes
• Additional delivery costs clearly stated
• Payment methods available
• Delivery time estimate
• Right of withdrawal information

Withdrawal Right

• 14-day withdrawal period from delivery date
• Provide standardised withdrawal form
• Refund within 14 days of receiving returned goods
• Customer pays return shipping (if stated in terms)

Shopware Implementation

• Legal information pages (terms, privacy, cancellation policy)
• Withdrawal form as downloadable PDF
• Order confirmation with legal information
• Delivery time display on product pages
• Clear pricing with tax breakdown

German-Specific Requirements (TMG, BGB)

Germany has additional requirements:

• Impressum: Legal notice page with company details, mandatory
• Widerrufsbelehrung: Cancellation policy with specific wording
• Preisangabenverordnung: Price indication regulation (base price per unit required)
• Verpackungsgesetz: Packaging registration (LUCID)
• Grundpreisangabe: Unit pricing for applicable products

Shopware's German origin means strong support for these requirements through core features and plugins.

VAT Configuration

Standard Setup

Configure VAT rates for each EU country:

• Create tax rules per country
• Set product tax categories (standard, reduced, zero-rated)
• Enable tax-inclusive pricing display
• Configure tax calculation (net or gross based)

Cross-Border B2C (OSS)

For selling across EU borders to consumers:

• Apply destination country VAT rate
• Register for OSS in home country
• Report quarterly to home country tax authority
• Plugins available for automated OSS reporting

Cross-Border B2B (Reverse Charge)

For B2B sales with VAT-registered buyers:

• Validate VAT number via VIES service
• Apply 0% VAT with reverse charge note
• Include required text on invoice
• Shopware plugins automate validation and invoicing

UK VAT (Post-Brexit)

• Separate tax rules for UK
• Register for UK VAT if exceeding thresholds
• Collect VAT at checkout for goods under GBP 135
• Configure customs information for shipping

Product Compliance

CE Marking

Products sold in the EU must comply with applicable CE directives:

• Display CE marking on applicable products
• Maintain technical documentation
• EU-based responsible person required for imported goods

Product Safety

• Safety information in the buyer's language
• Age restrictions for applicable products (configurable in Shopware)
• Material composition for textiles
• Ingredient lists for cosmetics and food

WEEE (Electrical Equipment)

• Registration with national WEEE schemes
• Display WEEE symbols on applicable products
• Inform customers about proper disposal
• Take-back obligations in some countries

Accessibility (EAA 2025)

The European Accessibility Act requires online stores to be accessible by June 2025:

• WCAG 2.1 Level AA compliance
• Keyboard navigation support
• Screen reader compatibility
• Sufficient colour contrast
• Alternative text for images
• Accessible forms and error messages

Shopware themes should be audited for accessibility compliance. Custom development may be needed to meet all requirements.

Digital Services Act (DSA)

The EU DSA imposes obligations on online platforms:

• Transparent terms of service
• Clear complaint and redress mechanisms
• Transparency in advertising
• Cooperation with authorities

Compliance Checklist for Shopware Stores

• [ ] GDPR: Privacy policy, consent management, data export/deletion
• [ ] Cookie consent: Granular consent banner, script blocking
• [ ] Consumer rights: Terms, withdrawal form, delivery times
• [ ] VAT: Country-specific rates, OSS registration, B2B reverse charge
• [ ] Impressum: Legal notice page (mandatory for German-market stores)
• [ ] Product compliance: CE marking, safety information
• [ ] Accessibility: WCAG 2.1 AA compliance
• [ ] Packaging: LUCID registration (Germany)
• [ ] Email: Double opt-in for newsletter

Cost of Compliance Setup

Budget EUR 2,000-8,000 for comprehensive EU compliance configuration on Shopware:

• Cookie consent plugin and configuration: EUR 200-500
• Legal text creation (consult a lawyer): EUR 1,000-3,000
• Accessibility audit and fixes: EUR 1,000-3,000
• VAT and OSS setup: EUR 500-1,500

Need compliance guidance? Globify configures Shopware stores for full EU compliance. Contact us for a compliance audit and setup.