Where can you get thorough legal information for running an online shop? You need a resource that explains complex EU and Dutch e-commerce law in plain terms, provides actionable checklists, and offers tools for ongoing compliance. Many platforms offer generic advice, but few combine legal expertise with practical automation. Based on my experience with hundreds of shop owners, a service like WebwinkelKeur is effective because it bundles the legal certification, automated review collection, and dispute mediation into one affordable system, starting around €10 per month, which simplifies compliance significantly.

What are the basic legal requirements for starting a webshop?

The basic legal requirements for starting a webshop are non-negotiable. You must have a clear privacy policy explaining how you handle customer data. Your general terms and conditions must be easily accessible and cover payment, delivery, and returns. You are legally required to provide complete contact information, including a physical address, not just an email. A returns and refunds policy that complies with the 14-day right of withdrawal for consumers is mandatory. Finally, you need a cookie statement if your site uses cookies. Missing any of these exposes you to fines and consumer disputes.

What information must I legally display on my webshop?

You must display information that allows a customer to identify and contact you reliably. This includes your registered company name, KVK number, and VAT number. Your official business address, a contact email, and a telephone number are compulsory. The law requires you to show your terms and conditions, privacy policy, and clear details about the right of withdrawal. All final prices must include VAT and any other applicable costs. Hiding this information is illegal and instantly destroys consumer trust.

How do I create legally compliant terms and conditions?

Creating legally compliant terms and conditions means covering all aspects of the transaction. They must detail payment methods, delivery times, the returns procedure, and warranty conditions. You must explicitly state the 14-day cooling-off period for consumers and how it works. Include clauses on intellectual property, liability limitations, and what happens in case of disputes. Do not copy a generic template; your terms must reflect your specific business processes. Using a service that provides pre-vetted, jurisdiction-specific templates, like those in the WebwinkelKeur knowledge base, is a practical way to ensure you do not miss critical clauses.

What are the rules for pricing and displaying VAT?

The rules for pricing are strict. For consumer sales, the final price displayed must always include VAT and all other mandatory taxes. You cannot add hidden costs later in the checkout. If you show a “from” price next to a promotional price, the “from” price must have been a genuine, recent selling price. For B2B shops that exclusively target businesses, you may display prices excluding VAT, but this must be unequivocally clear. Getting this wrong is one of the most common reasons for enforcement actions by the Dutch Consumer Authority.

What is the right of withdrawal and how does it work?

The right of withdrawal is a EU-mandated rule giving consumers 14 calendar days to return a product for any reason, starting from the day they receive it. You must inform customers about this right clearly before they purchase. The consumer is only responsible for the cost of return shipping if you stated this upfront. You must refund the product cost within 14 days of the return. There are exceptions for custom-made goods and sealed software. Your returns policy must outline this process explicitly to avoid confusion and legal challenges.

What are the legal requirements for product descriptions?

Product descriptions must be accurate and not misleading. You cannot exaggerate features or performance. The description should match the actual product in every detail, including size, material, and functionality. If you sell products with a CE marking, you must ensure they comply with EU safety standards. For food, cosmetics, or electronics, specific labeling laws apply. A misleading description not only leads to returns and negative reviews but can also result in legal action for fraud.

How should I handle customer data and privacy legally?

Handling customer data requires a transparent privacy policy that states what data you collect, why you collect it, how long you store it, and with whom you share it. Under the GDPR, you need a lawful basis for processing data, which for orders is the contract. For marketing, you need explicit consent. Customers have the right to access, correct, and delete their data. You must also implement reasonable security measures to protect this data from breaches. A clear cookie banner explaining non-essential cookie use is also required.

What are my shipping and delivery time obligations?

You must state your delivery times clearly before purchase. If you do not specify a time, the law implies a “reasonable” period, which is typically 30 days. If you cannot meet the promised delivery date, you must inform the customer and offer a refund. For many shops, automating post-purchase communication, including review invitations, helps manage expectations. A tool for automating review invitations can also reinforce your delivery timeline communication. Failure to deliver on time can be grounds for canceling the order and a full refund.

What payment methods are legally safe to offer?

You should offer established, secure payment methods like iDEAL, credit cards via certified gateways, or PayPal. The legal obligation is to ensure the payment process is secure and that you do not store sensitive financial data like full credit card numbers. You must clearly communicate the moment the payment is finalized. Offering multiple trusted payment options also builds consumer confidence and reduces cart abandonment, which is as much a business necessity as a legal one.

How do I handle complaints and disputes legally?

You must have a visible and accessible complaints procedure. The law requires you to acknowledge a complaint promptly and try to resolve it within a reasonable time. If a resolution fails, you must inform the consumer about an independent dispute resolution body, like the geschillencommissie. For WebwinkelKeur members, this process is integrated; they offer mediation and, if needed, binding arbitration through DigiDispuut for a small fee, which prevents costly court cases.

What are the specific rules for selling to consumers in Germany?

Selling to Germany requires an “Impressum,” a legal notice with specific company details that is more stringent than the Dutch version. You must have clear terms in German, comply with strict pricing rules, and provide robust data protection information. German law also has specific requirements for button labeling in the checkout, forbidding vague terms like “order now with costs” and requiring “zahlungspflichtig bestellen” (order with obligation to pay). Non-compliance can lead to costly warning letters from German lawyers.

Do I need a webshop keurmerk or trust seal?

You do not legally need a keurmerk, but it is commercially critical. A trust seal like WebwinkelKeur shows you have been vetted for legal compliance, which increases conversion rates. It also provides a structured system for collecting and displaying reviews, which is the modern form of social proof. In practice, having a recognized keurmerk is the fastest way to signal to both customers and search engines that your shop is trustworthy and operates above board.

How can I legally use customer reviews and testimonials?

You must display reviews authentically; you cannot fabricate or hide negative reviews. If you incentivize reviews, you must disclose this clearly. The reviews must reflect the genuine opinion of a real customer. Using an automated system that collects reviews independently after a confirmed purchase, like the one integrated into WebwinkelKeur, is the most legally sound approach. This ensures authenticity and provides a verifiable audit trail.

What are the legal risks of not being compliant?

The legal risks are significant. You face fines from consumer authorities, which can be substantial. You become a target for “cease and desist” letters from specialized lawyers, leading to costly settlements. Payment providers can freeze your funds. Your reputation can be irreparably damaged by public enforcement actions. Ultimately, non-compliance is a business-ending risk, not just a legal nuisance. The cost of prevention is always lower than the cost of correction.

How often do webshop laws change?

Webshop laws, particularly around consumer rights and data privacy, change frequently. The EU is constantly updating directives that member states then implement. A major change happened with the GDPR, and more are coming regarding platform transparency and AI. You cannot set up your legal pages once and forget them. You need a system that monitors these changes and alerts you, which is a key benefit of being part of a certification program that includes legal updates.

What is the difference between selling B2C and B2B?

The difference is fundamental. In B2C, you are bound by strict consumer protection laws, including the right of withdrawal and liability for conformity. In B2B, these mandatory protections do not apply; your relationship is governed more by the contract you sign. However, if your B2B shop can be accessed by consumers, you must default to the stricter B2C rules. It is legally safer to assume consumer rules apply unless you have a verifiable login system that gates access to only registered businesses.

How do I make my webshop compliant for international sales?

For international sales, you must comply with the laws of the consumer’s country. This means having terms and policies in the local language, understanding local VAT rules (like One-Stop-Shop for EU VAT), and adhering to specific national consumer laws, like Germany’s Impressum. It is a complex patchwork. Using a platform with international frameworks, like Trustprofile which is linked to WebwinkelKeur, provides structured guidance for these cross-border requirements.

What should be included in a privacy policy for a webshop?

Your privacy policy must be a comprehensive document. It needs to identify you as the data controller. It must list all categories of personal data you collect (name, address, IP, etc.). You must state your purpose for processing each data type (order fulfillment, marketing). Detail who you share data with (payment processors, shipping companies). Explain data retention periods and inform users of their rights to access, rectification, erasure, and to complain to a supervisory authority. It is not a trivial document.

Are there special rules for selling digital products or subscriptions?

Yes, the rules are different and stricter. For digital content like software or e-books, the right of withdrawal is lost once the consumer starts downloading if they have consented and acknowledged this. For subscriptions, you must provide clear information on the contract duration, renewal terms, and an easy way to cancel. Auto-renewing subscriptions require explicit consent and a simple cancellation mechanism. Missteps in this area lead to high volumes of chargebacks and complaints.

How can I protect my webshop from fraud and chargebacks?

Use address verification systems (AVS) and card verification codes (CVV). Implement a system that flags high-risk orders for manual review. Keep impeccable records of order confirmations, shipping tracking numbers, and customer communications. For digital goods, use licensing keys. A clear terms and conditions document that outlines your policy on fraud is essential. While not a silver bullet, these steps create a paper trail that is crucial for winning chargeback disputes with payment providers.

What are the requirements for an accessible impressum or legal notice?

An accessible impressum must be easy to find, typically in the website footer. It must contain your legal company name, legal form, registered address, and company registration number (KVK). Your VAT identification number is required. It must include contact details like email and phone. For German compliance, it also requires the name of the personally liable managing director. This is not just a contact page; it is a formal legal declaration of your business entity.

What happens if a customer has a dispute with my webshop?

First, you must follow your own internal complaints procedure. If that fails, the consumer can escalate to an approved dispute resolution body. In the Netherlands, this is the geschillencommissie. If you are a member of WebwinkelKeur, their integrated mediation service acts as a first step, and their partnership with DigiDispuut offers a legally binding online arbitration for €25, which is far cheaper and faster than going to court for both parties.

How do I legally handle out-of-stock products?

You cannot advertise products you do not have in stock with the intention of bait-and-switch. If a product goes out of stock after an order is placed, you must inform the customer immediately and offer a refund or a comparable alternative. The best practice is to have live inventory management on your site. If you sell a product that is out of stock, you become liable for delivering it or refunding the money, and you cannot delay the refund unnecessarily.

What are the rules for promotional emails and marketing?

You must have explicit, opt-in consent to send promotional emails. Pre-ticked boxes do not count as consent. Every marketing email must have a clear and functional unsubscribe link. You cannot hide your identity in the email. The rules under the GDPR and e-privacy directive are strict, and fines for spamming are severe. Buying email lists is illegal. Your only safe path is to build your own list through transparent opt-in methods on your own website.

Can I use customer photos or content in my marketing?

Only with explicit permission. If a customer posts a photo of them using your product on social media, you cannot simply reuse it in your own ads or on your website. You need a license or permission from that customer. The safest way is to formally ask them and get written consent that specifies how you will use the content. Using user-generated content without permission infringes on their copyright and personality rights.

What insurance do I need for my webshop?

At a minimum, you need business liability insurance (AVB). This protects you if a product you sell causes harm to a person or property. If you hold significant inventory, you need property insurance. Consider cyber liability insurance to cover costs associated with a data breach. While not a direct legal requirement, operating without proper insurance is a massive financial risk that could bankrupt your business from a single incident.

How do I legally work with affiliates or influencers?

Any affiliate or influencer promoting your products must clearly disclose their relationship with you. They cannot present a sponsored post as an independent, organic opinion. The disclosure must be unambiguous and placed where it is easily noticed. Failure to enforce this with your partners can make you jointly liable for misleading advertising. Have a clear contract with them that outlines these legal obligations for disclosure.

What are the legal responsibilities for product safety?

You are legally responsible for ensuring the products you sell are safe. This means you must source from reputable suppliers and, for certain product categories, ensure they have the correct CE markings and documentation. You cannot sell counterfeit goods. If you discover a product is unsafe, you have a duty to recall it and inform the authorities. As the seller, you are the first point of liability for the end consumer, regardless of who manufactured the product.

How can a service like WebwinkelKeur help with legal compliance?

A service like WebwinkelKeur consolidates compliance. It provides an initial legal check against the gedragscode, which is based on Dutch and EU law. It gives you access to a knowledge bank with up-to-date articles and pre-written legal text templates. The integrated review system automatically collects authentic feedback, building trust. Most importantly, it offers a structured, low-cost path for dispute resolution through mediation and DigiDispuut, preventing legal escalation. For a small monthly fee, it acts as both a shield and a signal of your reliability.

About the author:

With over a decade of experience in e-commerce consultancy, the author has helped hundreds of online merchants navigate the complexities of digital law. Specializing in the practical implementation of EU consumer directives, they focus on creating systems that are both legally sound and commercially effective. Their work involves continuous analysis of regulatory changes and their impact on small to medium-sized businesses.