A

Policy

HIGH

Privacy policy page reachable

A privacy policy page is reachable from the homepage nav or at a platform-conventional URL with non-stub body content. A privacy policy is required by GDPR/CCPA and is a baseline trust signal for AI agents, ad networks, and most merchant-listing programs.

What this check looks for

We discover candidate privacy-policy URLs in two passes: first by scoring nav/footer anchors for keywords like "privacy", "privacy policy", "gdpr", "cookie"; then by appending the platform's conventional path (`/policies/privacy-policy` on Shopify, `/privacy-policy/` on WooCommerce, etc.). We probe each URL in order — the first 2xx response with at least 200 characters of HTML-stripped body text passes.

Which AI surfaces it affects

  • Google AI Mode (UCP)80
  • Microsoft Copilot70
  • Perplexity60
  • Meta AI60
  • ChatGPT (ACP)50

Weighted against the live specs — ACP 2026-04-17, UCP 2026-04-08.

How to fix it

Publish a privacy policy page and link it from your site nav/footer

Shopify

A few minutes
  1. Settings → Policies → Privacy policy: paste Shopify's template and customize. Shopify auto-publishes it at `/policies/privacy-policy`.
  2. Confirm the policy is linked from your footer (Online Store → Navigation → Footer menu).

Platform docs ↗

BigCommerce

A few minutes
  1. Storefront → Web Pages → New: publish a privacy policy with slug `privacy` or `privacy-policy`.
  2. Storefront → Navigation: add the page to your footer menu.

Platform docs ↗

WooCommerce

A few minutes
  1. WordPress → Settings → Privacy: select your privacy policy page (WordPress ships a starter).
  2. WordPress → Pages → publish the page if it doesn't exist; slug `privacy-policy`.
  3. Appearance → Menus: add the page to your footer menu.

Platform docs ↗

Custom / headless

A few minutes
  1. Publish a privacy policy page at `/privacy-policy` (or your CMS's standard slug).
  2. Server-render at least 200 chars covering data collection, use, sharing, and deletion rights.
  3. Link the page from your site footer on every page.
<main>
  <h1>Privacy Policy</h1>
  <p>
    We collect the information you provide when you create an account
    or place an order (name, email, shipping address, billing details),
    plus standard server logs. We use it to fulfill orders, send order
    updates, and improve the store. We do not sell personal data. We
    share data only with payment processors and shipping carriers as
    required to complete your order. To request access or deletion,
    email privacy@example.com.
  </p>
</main>

The spec it's pinned to

  • Google merchant listing — privacy policy

    Google's merchant-listing acceptable-use guidance treats a reachable privacy policy as table stakes for any merchant collecting customer data. AI surfaces, ad networks, and most compliance regimes (GDPR, CCPA) require one.

Google merchant listing — privacy policy

Does your store pass this check?

Run the full audit — 82 checks across five AI shopping surfaces. Most tools only check whether you get mentioned; we check whether an agent can buy from you.

Related policy checks

← All 82 checks