Docs
In an age where more and more business activities are performed online, personal information of any given individual is processed in diverse ways, for many reasons and in several places. Obtaining consent from individuals before processing their personal information is crucial to ensuring their privacy. This is also why privacy regulation policies such as the GDPR make it mandatory to do so. Consequently, you may need to seek explicit consent from your customers for say, sending them marketing communication or capturing additional personal information.
Chargebee's Consent Management feature gives you powerful ways to capture consent from your customers and manage collected consent information.
Let's look at an example:
Consider that each time a customer comes on board with you, you wish to gather explicit consent from them for:
Also, you want to allow your customers to easily revoke consent whenever they wish.
Here's how you would accomplish this in Chargebee:
In Chargebee, any kind of customer consent that you wish to track is represented by a "consent field". For the example above, we would need one field each for "marketing" and "beta testing".
Here's how you can create the consent fields:
Go to Settings > Configure Chargebee > Customer Data Privacy > Consent Management and create the 2 consent fields for your Chargebee site:
There are two names for each field:
Once set, the API names cannot be changed so choose carefully.
Once you create the fields, they become part of every customer record in Chargebee. The field values inside the customer records are initialized to null which means "consent not set". They may be changed to the following values hereafter:
True: meaning "consent given"
False: meaning "consent not given"
Case 1: Using Chargebee Checkout & Self-Serve Portal v3
Consent for each of the two actions can be obtained from customers using Chargebee Checkout and thereafter managed by the customer using Chargebee Self-Serve Portal.
If you are using Chargebee Checkout and Self-serve Portal version 2, go to Case 2 for instructions.
Before we learn how to configure the settings, let's look at how the end result would look like for your customer:
Chargebee Checkout:
You can see how consent is solicited here via checkboxes during checkout.
If the checkout happens for an existing customer record in Chargebee, the checkboxes are not made available for the customer.
For existing customer records, we suggest one of these options:
Chargebee Self-Serve Portal:
The Self-Serve Portal can be used by the customers to choose what options they would like to consent to. Here again, checkboxes under "Permissions" make it as easy for the customer to revoke consent as it was to provide it. This way, Chargebee allows you to be compliant with international privacy regulation policies such as the GDPR.
Now let's see how you can configure the above hosted pages to work as described:
Once you have finished performing Step 1, navigate to Settings > Configure Chargebee > Checkout & Self-Serve Portal > Fields > Consent Information section and switch on the fields:
Once you click on the edit icon for any of the consent fields, the following settings are available:
Consent agreement label: Here, enter the actual text that the customer would see on the Checkout page and/or Self-Serve Portal and based on which they would give their consent. You have the option to format text here and insert hyperlinks too.
The next two settings control if and how the consent text shows up on Chargebee Checkout and Self-Serve Portal.
Visibility Option |
Meaning |
Available for Checkout Page? |
Available for Self-Serve Portal? |
"Show" |
Show the checkbox and allow the customer to select/clear it. |
Yes |
Yes |
"Hide" |
Disable the consent field. (Don't show) |
Yes |
Yes |
"Use as hidden parameter" |
Don't show the field but keep it enabled so that its value can be passed as parameters in the hosted page API call or in the hosted page URL. |
Yes |
No |
Case 2: Using Chargebee Checkout and Self-serve Portal v2
Consent for each of the two actions can be obtained from customers using Chargebee Checkout v2 and thereafter managed by the customer using Chargebee Self-Serve Portal v2.
Let's look at a sample of what the customer would see before we learn how to configure the settings:
Checkout Page v2:
You can see how consent is solicited here via checkboxes during checkout.
If the checkout happens for an existing customer record in Chargebee, the checkboxes are not made available for the customer.
For existing customer records, we suggest one of these options:
Chargebee Self-Serve Portal:
The Self-Serve Portal can be used by the customers to choose what options they would like to consent to.
The Account Information section shows whether consent has been granted or not:
Clicking on "Edit" on the previous screen allows the customer to access the checkboxes to grant or revoke consent using the checkboxes shown next:
Now let's see how you can configure the above hosted pages to work as described:
After ensuring that Step 1 is completed, continue as follows:
Step 2.1:
Navigate to Settings > Configure Chargebee > Checkout & Self-Serve Portal > Text Configurations > Consent Information section:
Set the actual text that the customer would see on the Checkout page and/or Self-Serve Portal and based on which they would give their consent. Use HTML tags for formatting the text as shown in the screenshot above. Next set the following:
Step 2.2:
Click on Field configurations on the left pane and choose the options under the Consent Information section as shown:
The available options are as follows:
Checkout Page:
Customer Portal:
Case 3: Using the Chargebee API
Chargebee also provides API support for managing consent information. Using the API gives you the flexibility to design your own ways of managing consent for your customers.
As soon as the consent fields are defined in Step 1 the API name values are set as new API attributes in the Customer resource.
Existing Customer Records:
On creation of the consent API attributes, the consent fields are created for all existing customer records and initialized to null. Now, the consent fields for any customer record can be set to true or false using the Update Customer API call.
New Customer Records:
When creating new customer records, the consent fields can be set to true or false using any of the following API calls: Create Customer , Create Subscription + Customer or Import Subscription .
Case 4: Using Chargebee API along with Chargebee Hosted Pages
API calls can be used in tandem with Chargebee hosted pages. Here are a couple of situations that fall under this:
Obtaining consent via Chargebee Checkout and managing it via API:
Obtaining consent and storing them via API and allowing customers to self-manage it via Chargebee Portal.
(1) How can I email existing customers requesting them to update their preferences?
You can send emails to several customers at once by navigating to Subscription > Customers and clicking the Send Email button. You may choose to apply filters to send emails to selected customers. For instance, if you wish to email all customers for whom the Marketing consent field is not set (is null), you must choose the filter as shown below:
(2) I send marketing emails to customers. What can I do if they choose to unsubscribe from them?
Direct them to their account portal where they can change their preferences around such emails. Chargebee's Self-Serve Portal can be a great place for this. Alternatively, use the Chargebee API to mark the consent field as "false" for the customer. You may use webhooks to inform your email system of the change made by the customer (see FAQ #5).
(3) Is there a way I can grant/revoke consent on behalf of a customer if they contact us?
On behalf of a customer, you can revoke consent in the Chargebee web interface but not grant it.
To revoke consent, navigate to the Customer details page for the customer and under Consent Information, click Remove Consent.
(4) Why is there no option to grant consent on behalf of a customer on the Chargebee web interface?
As a privacy-by-design feature, granting consent on behalf of a customer is not allowed via the Chargebee web interface. This ensures that the customer always grants their consent directly and never through an unauthorized person, thereby helping you comply with privacy regulation policies such as the GDPR.
However, we make an exception for site admins, by giving them a way to grant or revoke consent on behalf of customers through bulk operations.
(5) I use an email-marketing system such as Mailchimp. How can I ensure that such systems are aware of consent information in Chargebee so that emails are sent only to the right customers?
This can be achieved using Chargebee webhooks. Once a webhook has been setup in Chargebee, you can have your system listen to Customer-related events such as customer_created, customer_changed, customer_deleted etc. The value of the consent field(s) can be checked in the webhook posts for such events (except customer_deleted) to determine whether your system should send the emails to the customer or not.
