GDPR for Wordpress

GDPR for WordPress

The past few months you’ve probably noticed a significant amount of emails from companies saying they have updated their privacy policy to be GDPR compliant. So you’re probably wondering – do I need to do this as well?

What is the GDPR and do I need it on my WordPress website?

All companies processing and holding the personal data of data subjects residing in the European Union, regardless of the company’s location are required to be GDPR (General Data Protection Regulation) compliant. If you collect any type of data, and you have visitors from Europe than yes you need to make sure you offer a way for anyone to request their personal data.

Do you have any of the following on your website? :

  • A blog with comments?
  • Google Analytics or another analytics program to track user activity?
  • A contact form?
  • A member login?
  • A shopping cart?
  • Google Adsense or other advertising?
  • Affiliate links?

If you answered yes to any of these than yes, you do need to be GDPR compliant.

3 steps to GDPR – for WordPress users

If you own a WordPress website like many of us do (including this one) there is a great plugin that can be used to notify users of your policies and offer them a way to request their personal data.

GDPR for WordPress websites

Step 1. Download and install the WP GDPR plugin. This easy-to-install, free WordPress plugin will help you comply with the new European laws for GDPR. What does it do?

  • It provides a GDPR page where users can access their data.
  • Visitors can request their data to be deleted in an easy and secure way.
  • Optional premium add-ons provide support with the world’s biggest plugins.

Step 2. Create or update a Privacy Policy. Here’s ours as an example.

Step 3. If you are a blogger that earns money from links on your website, you will need a Disclosure Policy as well. Here is an example of mine for

BeautifulDawn Designs does a great job of explaining how to go about this and she offers templates too! Score!

Check out her blog post below.

How to Add a Privacy and Disclosure Policy to Your Blog: Includes Templates

In Conclusion

Even if you think that you don’t have any international visitors, or that your business doesn’t sell goods outside the U.S. it doesn’t hurt to let everyone know that you respect their personal data. And the process to do really isn’t that complicated, but if you have any questions you may want to ask for legal advice from an attorney. LegalZoom is also a good resource for information and help with this topic.

What are your thoughts on the GDPR? Comments please! 🙂