At TxtCart we want Shopify merchants and their customers to have a great experience when sending and receiving text messages.
For us, a great experience doesn’t just mean great deals and offers. It is also about being respectful of customers and their privacy, or in other words, being compliant with TCPA, CTIA, and GDPR regulations, and as of January 1, 2020 - with the California Consumer Privacy Act (CCPA).
In order for Shopify merchants to send text messages to customers based in the USA, Canada, UK & Australia they need to abide by all TCPA rules and know how to create a text message that respects and protects customer data according to CTIA guidelines. As for store owners who do business with California - since the beginning of the new year they need to also comply with the CCPA in regard to how they handle any type of personal information.
This article contains the steps needed to ensure you are compliant with TCPA and CTIA rules and regulations when using TxtCart, and additional information on CCPA.
What is TCPA?
TCPA stands for the “Telephone Consumer Protection Act” and was passed by the United States Congress and then ratified in 1991. The TCPA limits the use of auto-dialing systems, artificial or prerecorded voice messages, SMS text messages, and fax machines to make calls without the recipient’s prior consent.
Look at all TCPA regulations here.
What is CTIA?
The CTIA, or Cellular Telecommunications and Internet Association, represents the United States’ wireless communications industry and the companies throughout the mobile ecosystem in the United States, such as carriers and suppliers. The CTIA promotes the industry’s voluntary best practices.
You can get yourself familiar with their guide which includes best practices on how to send both SMS and MMS securely here.
What is the CCPA?
The California Consumer Privacy Act (CCPA), understandably, considers all California users and all businesses that do business with them and in any way collect personal information. The only companies exempt from the CCPA are “insurance institutions, agents, and support organizations”, as they already are subject to similar regulations.
The CCPA takes a wider view than the GDPR of what constitutes private data and discusses the matter of "selling" personal information in much broader terms. According to CCPA, it’s every California user’s right to demand a report of all the personal information a company has collected on them, and a list of all third parties this data is shared with (if any). Customers can also revoke their consent to have their personal data collected. The CCPA also specifies stricter requirements companies must meet to be able to share information with third parties.
For further information and a more in-depth look at the CCPA regulations, check out this text.
How to Comply with TCPA and CTIA in Shopify?
There are a few steps you as a Shopify store owner need to complete so you can start collecting SMS subscribers and sending marketing text messages.
Prior Written Consent
First and foremost, Shopify store owners should know that in order to send text marketing and automation messages, they need to have legally gathered customers’ phone numbers. Every customer must give you their explicit Prior Written Consent.
TxtCart offers three options for store owners to legally obtain a customer’s prior written consent to subscribe to text marketing services.
Shopify Checkout SMS Marketing Compliance
The checkout page is a great spot to invite your customers to subscribe for text message marketing deals and updates without being pushy.
You can easily set up an opt-in checkbox. From your, Shopify Settings go to Checkout.
Afterward, scroll down to Marketing Options and select the Show a Sign-up option at checkout. Make sure to always leave the Preselect the sign-up option DISABLED. Enable SMS marketing consent.
Don’t forget to hit Save to save all the changes you made.
Next, you want to configure what your opt-in option message will say to your customers. To do that, scroll further down to Checkout language and hit the Manage checkout language button.
With your Find function (Ctrl + F; CMD + F) search for Accept marketing checkbox label. In the designated field type in the message you want your customers to see. It should be inspirational enough for them to decide to subscribe to your store. Here is an example:
Text me exclusive promotions, offers and deals
Again, don’t forget to click Save before you continue.
Next up, let’s see how to enable phone fields where customers can leave their phone numbers to get exclusive deals and offers from your Shopify store.
With your Find function (Ctrl + F; CMD + F) search for Phone label and Optional Phone Label. Go ahead and write your message. Make it informative, but intriguing enough for the customer to want to leave their phone number. It can be something like this:
Phone - get support, offers, and updates via text
Save your changes and let’s move on to configuring the checkout footer language.
Search for Privacy in the checkout language.
From here scroll down to the Checkout & System items.
Confirm your changes and you will be all set to start gathering subscriptions on checkout in accordance with all TCPA, CTIA, and GDPR rules!
This is what your checkout page should look like if you have completed all steps successfully:
Shopify Plus Checkout Page
The setup and appearance of the checkout page in Shopify Plus accounts will differ from the one we just went over. Users on the Shopify Plus plan can choose between two options to customize their checkout opt-in box - with or without a discount code.
“Clear and Conspicuous” Agreement Forms
All agreement forms must be made "clear and conspicuous" prior to customers giving consent.
Try to be as clear as possible, e.g. if you are asking people to subscribe to a recurring SMS marketing campaign (such as weekly or monthly updates), then clearly explain the regularity (i.e. “sign up for monthly updates”).
Be specific. Messaging “Text YES to ### to subscribe to {SiteName}’s weekly update and receive deals” is more likely to increase your opt-in rate than a message like “Text YES to subscribe.”
How to Comply with the CCPA
The CCPA gives complete guidelines on what businesses can do to respect the CCPA and all users it affects under Section 8.
Among them is to give customers an explicit opt-out option on the company website and in your Privacy Policy, where they can revoke data sharing. This should not, however, require users to create an account.
In the event that companies use third parties for text marketing purposes (or any other marketing reasons), they should explicitly say so in their privacy policy and give complete information on who their vendor is.
If a customer does choose to opt out, according to the CCPA companies should refrain for at least 12 months from requesting that they authorize the sale of the consumer’s personal information.
💡Tip:
Still, Have questions?
Please feel free to reach out to our wonderful Support team at support@txtcartapp.com or via Live Chat.