Does your website use third-party services? Get GDPR compliant in minutes.
Try FlowConsentFree plan · 10-min setup
Omacro is a US Where to Buy and dealer locator platform that helps brands route purchase intent customers to their distributors with AI driven Buy Now buttons.
Omacro is a US Where to Buy and dealer locator platform used by consumer brands to direct shoppers from a brand site to retailers selling the product. It exposes a JavaScript widget that searches stores by zip code or geolocation, captures click events, and reports conversions back to brand marketing teams. Omacro is typically embedded on product pages and is a common addition to consumer goods, beverages, automotive parts and home improvement brand websites.
The widget sets first party cookies to identify the visitor across product pages, captures the IP address, the user agent, the requested location (zip code or device geolocation), the chosen retailer and the click destination. These data points are stored in the Omacro analytics backend and are exposed to the brand through a reporting interface. When integrated with a CRM, Omacro can transmit anonymous identifiers that may be reconciled with known contacts.
Cookies set by Omacro are not strictly necessary for the website itself and require ePrivacy consent before the widget loads. Geolocation requests at fine granularity additionally require explicit user permission via the browser. The combination of IP, click and location data is personal data under GDPR and triggers documentation duties in the privacy notice and the Records of Processing Activities.
Get GDPR compliant in 10 minutes
Free plan available · No credit card required
Block the Omacro widget through your CMP until consent is granted. Document Omacro in the consent banner under a category such as functional or marketing depending on the use case. The notice must mention the US data transfer and the applicable safeguard.
Omacro is operated from the United States. Standard Contractual Clauses apply for transfers under GDPR Article 46. Document the transfer in your Records of Processing Activities and complete a Transfer Impact Assessment if Omacro is deployed at significant scale for European audiences.
Sign the Omacro DPA with SCCs, block the script behind a CMP, document Omacro in the privacy policy as a US processor, list the cookies in your cookie policy with name, type, duration and purpose, and review CRM integrations to keep personal data flows under control. Evaluate EU based Where to Buy alternatives for sensitive sectors.
Websites using Omacro must obtain user consent under GDPR regulations.
DPIA considerations
A DPIA is recommended when Omacro is integrated with CRM or marketing automation that links anonymous click data to identified contacts, when geolocation is used at fine granularity, or when the widget is deployed across many EU markets at once. The systematic collection of click and location data of European visitors and the transfer to the US contribute to a moderate risk profile.
Sample consent text
We use Omacro to power our Where to Buy and dealer locator on this site. Omacro sets cookies and processes your IP address, geolocation and click data on US infrastructure to display nearby retailers and measure conversions. Please accept to enable the locator.
Third-party domains contacted
omacro.comcdn.omacro.comapi.omacro.comCookies placed
| Name | Type | Duration | Purpose |
|---|---|---|---|
| omacro_session | http_cookie | session | Tracks the current browsing session of the visitor on brand sites where the Omacro widget is embedded |
| omacro_uid | http_cookie | 1 year | Anonymous user identifier used to deduplicate visitors and follow conversion paths to retailer destinations |
| omacro_click | http_cookie | 30 days | Click attribution cookie that links a Buy Now or Locate click to the resulting retailer outbound visit |
Omacro places tracking cookies for advertising — comply with GDPR using FlowConsent.
Omacro sets first or third party cookies for the Where to Buy widget, including a session identifier, an anonymous user identifier and a click attribution cookie. These persist between sessions and are tied to the brand site that loaded the widget.
Yes. The widget loads a third party script and stores cookies on the visitor browser. Article 5(3) of the ePrivacy Directive requires prior, informed consent. The brand must block the widget until the marketing or analytics category is accepted.
Article 6(1)(a) GDPR (consent) is the appropriate basis because the widget combines profiling, geolocation and cross border transfers. Legitimate interest does not pass the balancing test for tracking driven advertising tools.
Yes. Omacro LLC is based in the United States and processes data on US infrastructure. Transfers from the EEA require certification under the EU US Data Privacy Framework or Standard Contractual Clauses with a transfer impact assessment.
A DPIA is recommended. Geolocation, click level conversion data, brand and retailer profiling and US transfers are factors that, taken together, exceed the EDPB criteria for high risk processing.
Block the script behind your consent management platform. Document Omacro and its sub processors. Sign a DPA. Limit retention to the period needed for conversion analytics. Configure the widget to ask for geolocation only when the user clicks Locate.
Self hosted dealer locator widgets, retailer search APIs from your e commerce platform or static where to buy lists are alternatives that avoid third party tracking. Storelocator services hosted in the EU also reduce transfer risk.
List Omacro LLC as a processor with the categories of data (cookies, IP, geolocation, click events, retailer destination), purposes (where to buy, conversion analytics), retention, US transfer mechanism and a direct opt out link.