Privacy‑by‑Design for GDPR & DPDP in Unified Commerce
Privacy scales when it is modeled as product constraints. Map data flows before you write code.
- Data Mapping: list systems (storefront, OMS, ERP, CDP, support), purposes, and retention.
- Consent & Preferences: single source of truth with API read/write allowed across surfaces.
- DLP & Telemetry: strip PII from logs; pseudonymize identifiers; rotate keys.
Design for access, rectification, deletion as first‑class operations with idempotent APIs.