The General Data Protection Regulation (GDPR) overhauls how businesses process and handle data. It came into effect on May 25, 2018, targeting how businesses and the public sectors handle the information of 750 million European citizens. Although this law exists in the EU, its reach is global. Businesses that are outside of EU would still face penalties and fines if they do not comply with the legislation. Therefore, it is very crucial that you make your WordPress site GDPR compliant even if you aren’t based on the EU. And, if you haven’t already prepped your website yet, here’s a simple guide to make your WordPress site GDPR compliant.
Update to WordPress 4.9.6 or Higher
WordPress 4.9.6 has added tons of built-in privacy settings to WordPress core, which makes things easier for you to set yourself up for GDPR compliance success. WordPress has added several privacy features in 4.9.6, however, as you’re trying to make your WordPress site GDPR compliant, below are a few key features you need to stress on.
Comments Cookie Option:
WordPress, by default, stores a cookie so users don’t have to retype their information when leaving a new comment on your site. Now, there is an option included on the Comments Form automatically.
Data Export and Erase:
There are two new items under Tools section – Export personal data and Erase personal data. If you collect your user’s information, you can now effortlessly export a user’s information or completely erase them from your database at their request.
The most common ones are:
- Google Analytics and other tracking services
- Google Adwords, Bind and other as networks
- Cloudflare and CDN services
- Opt-ins or pop-ups
- Push Notifications
- Video Players
- Shopping Carts
You need to confirm user consent for newsletters. It can be done with either a checkbox that a user has to click before they opt-in or by requiring double-opt-in to your email list.
Add a Cookie Notice
Easier access for users to Request/Delete their Information
Notifications for Policy Updates
Finally, these were a few tips to make your WordPress site GDPR compliant. We hope the article was helpful to get you started with GDPR.
Note: GDPR applies to businesses and organizations based outside the EU as long as they’re handling data about EU residents.
We’d love to hear your thoughts and/or questions on GDPR, so feel free to leave a comment using the box below.
Reference: WP Explorer