If you are a web publisher with visitors coming from Europe, no matter if you write about food, butterflies or NZ casinos for your phone, you have probably heard of the initialism “GDPR”. You probably know that it has to do with privacy protection and the way websites handle the visitors’ personal information. Below, you’ll find a crash course on what the GDPR means and how you can become compliant (if you haven’t already).
What is the GDPR
But fear not – even if you are not complying with this regulation, you won’t find yourself opening the door at home to a pair of GDPR officers taking everything you own. Those services that don’t comply will be notified first, then warned, then hit with a suspension of data processing, and the fine is the last resort.
Does the GDPR apply to WordPress websites?
Yes, it does. It applies to every business, no matter in which country, that is visited by people living in the European Union. The goal of the regulation is to protect the users’ personally identifying information, including names, email addresses, physical addresses, IP addresses, health data, income levels, and such. What you need to do is to get your visitors’ explicit consent for you storing and using such information – no pre-ticked checkboxes for them to receive your newsletter but true, real consent expressed by themselves. Did we mention that the goal of the GDPR is to improve the data processing standards online?
Besides, you must inform all of your EU-based visitors how and why their data is processed and used. In the case of a WordPress blog, the users leave their email addresses to comment and may get notified of replies to their comments. You have to let them know about this, and in the case of a breach – if your website is hacked and the database stolen, you have to inform them right away of the incident.
WordPress GDPR compliance