WooCommerce Compliance Checklist - free audit for your store

#WooCommerce Compliance Checklist

47 checkpoints that show you exactly where your store meets requirements and where it has gaps.

Polish e-commerce law and EU directives impose dozens of obligations on online stores. The problem? Most store owners do not know which ones apply to them and whether their store meets them.

This checklist solves that problem in 10 minutes.

#Download the checklist

Enter your email - we will send you the checklist + a template for ongoing monitoring. You can also download it right away in printable format.

#What you will check

#1. GDPR and consent (8 checkpoints)

• Does your privacy policy contain all required elements under Art. 13 GDPR?
• Are checkout consent checkboxes separate for each processing purpose?
• Are checkboxes unchecked by default?
• Do you log consent audit trails (who, when, what)?
• Do you have a consent withdrawal form?
• Do you have data processing agreements with processors?
• Do you maintain a record of processing activities?
• Is your cookie policy compliant with active consent requirements?

#2. Omnibus and pricing (6 checkpoints)

• Do you display the lowest price from 30 days when showing a discount?
• Is the lowest price calculated automatically (not manually)?
• Are unit prices visible (per kg, litre, piece)?
• Is the VAT amount clearly communicated?
• Are promotional pricing rules transparent?
• Do you archive price history?

#3. GPSR - product safety (7 checkpoints)

• Do product pages include manufacturer data?
• Do you indicate the EU responsible person for compliance?
• Do you provide product identifiers (EAN, GTIN)?
• Do you include safety warnings and instructions?
• Do imported products have importer data?
• Do you have a product recall procedure?
• Are your marketplace listings GPSR-compliant?

#4. DSA - Digital Services Act (4 checkpoints)

• Do you have a form for reporting illegal content?
• Do you have a designated DSA contact person?
• Do you publish content moderation rules?
• Do you have a procedure for responding to reports?

#5. KSeF and e-invoices (5 checkpoints)

• Is your invoicing system ready for KSeF XML export?
• Do you detect orders requiring e-invoices (NIP in order)?
• Do you validate NIP format at checkout?
• Do you have a procedure for bulk invoice generation?
• Do you archive invoices as required (min. 5 years)?

#6. Consumer rights and returns (7 checkpoints)

• Do you inform about the right of withdrawal before purchase?
• Do you have a withdrawal form (mandatory from 19.06.2026)?
• Do you allow one-click withdrawal submission?
• Do you send confirmation of withdrawal receipt?
• Do you include the standard withdrawal instructions template?
• Does your terms of service cover complaints?
• Do you inform about alternative dispute resolution (ODR)?

#7. Company data and identification (5 checkpoints)

• Does the footer show full company name, address and NIP?
• Is the REGON number provided?
• Do you have terms of service compliant with the Electronic Services Act?
• Are contact details (email, phone) easily accessible?
• Do you show business register information (KRS/CEIDG)?

#8. Technical requirements (5 checkpoints)

• Does the store run over HTTPS with a valid SSL certificate?
• Do you back up customer data?
• Are plugins up to date (none >6 months without updates)?
• Do you have uptime monitoring?
• Is HPOS (Custom Order Tables) enabled?

#What to do after completing the checklist

Mostly green: Your store is in good shape. Use the checklist quarterly for ongoing monitoring.

A few reds in GDPR/Omnibus/returns: Install the free Polski for WooCommerce - it resolves most of these at no cost.

Reds in invoices/KSeF/shipping/checkout: These areas require Polski PRO - invoicing, NIP validation, courier integrations and multi-step checkout are premium features.

Many reds: Book a free consultation - we will help you create a step-by-step remediation plan.