General Data Protection Regulation is the latest data privacy regulations set up by the EU government and started getting implemented by 25th May 2018.
Market analysts and business owners often comment that they are still struggling to make their website completely in line with the GDPR Compliance.
But, if you are conducting business online while targeting the EU member state audiences: customers, readers, viewers, etc., then you need to get the GDPR guidelines checked.
We know that the majority of us are already using WordPress as a platform for our digital businesses. But if you want to continue to tap into mature markets like the EU, then you must step back and learn more about getting your WordPress ready for the GDPR.
That’s our motive here: guiding you to prepare your WordPress website before it’s too late.
Things to Set Rights of WordPress Website Under GDPR Compliance
Check The Policy Through Policy Generator
GDPR compliance and policy focuses primarily on transparency. According to the terms and conditions under this regulatory act, your website should clearly state the processes related to the collection of data, as well as the practices to carry out using the information collected.
- Clearly written and articulated in a language that is clearly understandable by an average reader.
- Oriented on the website at such a place that it is clearly accessible, clicked, and bookmarked by readers for further perusal from their end.
More than that, your business operations, user interactions, data handling & processing features should be mentioned on a general basis. This helps the user acknowledge the fact that he or she isn’t oblivious to the same.
Erasing or Exporting User’s Personal Data
The users, whose information you collect, process, and use for expanding your business online and across nations, are to be informed regarding the same under the GDPR compliance rules.
These rights are to:
- Be informed
- Restrict the processing of their data your WordPress site collected
- Be forgotten
At the same time, as an example, if a person of your website requests to be forgotten, then you will have to comply.
Under certain conditions of the GDPR, you will have to erase the documents, data, and the other information related to that person you have in your database through WordPress.
So, for the user to exercise the rights, you need to have a contact form embedded, irrespective of the theme.
These contact forms help the customer or client reach out to you as soon as they feel uncomfortable or not sure about the content about themselves that your website is deemed to use.
To create the forms, you will them under the “Tools” heading on the WordPress dashboard system. Here, administrators of the website, like you are of your own site, can choose to “Erase the personal data” of the particular who has put forward that request.
Under this window, you get the option to enter that user’s ID who has requested such a query through contact forms. Then click the button that says “Send Request” to send the user a confirmation email that you will be processing his/her request.
Moving ahead, click the “Erase Data” option from the same window to erase the data that the WordPress site has originally collected from that user’s IP address.
Similarly, under the “Tools” section on the dashboard, you also have an option to “Export” the data. When you click this window, again you get an option to send the email to the user, asking for confirmation to export his or her personal detail.
Once that user sends the confirmation, then you can start exporting his or her data for further insights and business analysis.
Set Up The Cookie Opt-in Notification To Inform The User
WordPress uses two types of cookies: Session (keeps user’s session logged in) and Comment (collects the user data when they comment on any post).
For informing users that Comment cookies are being used by your website under the GDPR compliance, go to the “Settings” and select the checkbox of “Show comment cookies opt-in…”
Enabling this option will inform every user on your website in the comment section about the same. A small checkbox will be asking for their permission, so you can use their data.
If they check the box right, then it is deemed there is no objection from their side. Otherwise, users can simply choose not to let you use their comment box insights.