PrestaSignal
Privacy & GDPR

Accurate tracking, respectful of your customers.

Server-side tracking is often sold as a privacy workaround. We see it differently: done properly, it is a chance to handle customer data more carefully than a browser pixel ever could. Here is exactly how PrestaSignal treats personal data.

Personal data is hashed before it leaves your server

Email, phone number, first and last name, city and state are normalised and SHA-256 hashed on your PrestaShop server — before anything is sent anywhere. The ad platforms receive only irreversible hashes for matching (exactly what Enhanced Conversions and the Meta Conversions API expect), never raw personal details.

What we send, and how

Every field, accounted for.

Nothing identifying ever leaves your server in the clear. Here is exactly what happens to each piece of data.

Hashed before sending
SHA-256, on your server
  • #Email address
  • #Phone number
  • #First name
  • #Last name
  • #City
  • #State / region
Sent in plain form
As Google requires
  • ·Country
  • ·Postal code

Non-identifying on their own; required in plain form for geographic matching.

Never leaves your server
Not in the clear, not in the browser
  • Raw email or phone
  • Your Meta CAPI token
  • Anything that identifies a person in the clear

Your secrets never reach the browser

Sensitive credentials — like your Meta Conversions API token — stay strictly server-side. They are never exposed in page source or to any client-side script, which is one more thing a browser-based setup cannot guarantee.

Consent is respected, not bypassed

Server-side does not mean consent-free. PrestaSignal is designed to honour your store’s consent state, so you stay compliant while still recovering the conversions you are entitled to measure. Country and postal code are sent in the plain form Google requires; everything identifying is hashed.

Data retention, in plain terms

We keep as little as possible for as long as necessary. The tracking server forwards events to your connected platforms; it is a conduit, not a long-term data store of your customers’ personal information. The platforms you send to — GA4, Google Ads, Meta — apply their own retention policies to the data they receive, which you control from within each platform.

The chain of custody

Who processes your data

Your events pass through infrastructure we operate and the ad platforms you choose to connect. We don’t sell or share your customers’ data with anyone else, and we don’t use it for any purpose beyond delivering the tracking you’ve asked for.

Your hosted tracking server

Runs the server-side container that receives events from your store and forwards them on.

The platforms you connect

GA4, Google Ads and Meta receive only the events and fields needed for measurement.

No one else

No data brokers, no resale, no secondary use. Your customer data stays within that chain.

You stay in control

Because personal data is hashed before it leaves your server and consent signals are respected, you remain the controller of your customers’ information. You decide which platforms to connect, what consent gates apply, and you can stop sending at any time by disabling the module.

In plain terms

Privacy — your questions.

Which personal fields are hashed?+

Email, phone, first name, last name, city and state are SHA-256 hashed on your server before transmission. Country and postal code are sent in plain form because Google’s matching requires it; nothing directly identifying is sent in the clear.

Is this GDPR-compliant?+

PrestaSignal is built to respect consent and to minimise what personal data is transmitted, hashing it irreversibly first. Used with a proper consent banner, it supports a compliant setup — but you remain the data controller for your store.

Can the ad platforms reverse the hashes?+

No. SHA-256 is a one-way hash used only for matching. The platforms compare your hashes against their own hashed data; they cannot recover the original email or phone number from what you send.

Where is my Meta CAPI token stored?+

Server-side only. It is never placed in page HTML or any browser script, so it cannot be scraped from your site.

Is this GDPR-compliant?+

The architecture is built to support compliance: PII is SHA-256 hashed before transmission, consent signals are respected, and you control which platforms receive data. Compliance also depends on your own consent banner and privacy policy, but the tracking layer is designed to fit a GDPR setup rather than fight it.

Do you store my customers’ personal data?+

The tracking server acts as a conduit that forwards events to your platforms; it isn’t a marketing database of your customers. Identifying fields are hashed before they’re sent, so what passes through is not readable personal data.

Related reading
GDPR-friendly tracking with Google Consent ModeCookie PolicyGlossary

Tracking you can stand behind.

Book a teardown — we’ll walk through exactly what your store would send, and how it’s protected.

Book my teardown
Part of the PrestaChamps family →
PrestaChampsPayPerChampsPrestaSpeedPrestaInsightRetailorAI