OK. Now let's see the requirements ...

As I already said, the goal of GDPR is to protect user’s personally identifying information.

Which includes: name, emails, physical address, IP address, health information, income, cultural profile, online identifier, etc.

And here are the most important ideas ...

Explicit consent

When you are collecting some sort of personal data from an EU resident, you must obtain an explicit, specific and unambiguous consent.

For it to be considered explicit consent, you must require a positive opt-in (pre-ticked checkboxes are NOT allowed!), contain clear wording (no legalese), and be separate from other terms & conditions.

Rights to data

You must inform your visitors where, why, and how their data is processed and stored.

An individual has the right to download their personal data. More than that, an individual has the right to be forgotten meaning they can ask for their data to be deleted. This will make sure that when you hit the "Unsubscribe" link, or ask companies to delete your profile, then they actually do that. Or at least that's the goal ...

Breach notification

Also, organizations must report certain types of data breaches to relevant authorities within 72 hours, unless the breach is considered harmless and poses no risk to individual data. However if a breach is high-risk, then the company MUST also inform individuals who’re impacted right away.

To put it simple, GDPR makes sure that:

  • businesses can’t go around spamming people by sending emails they didn’t ask for
  • businesses can’t sell people’s data without their explicit consent
  • businesses have to delete user’s account and unsubscribe them from email lists if the user ask you to do that
  • businesses have to report data breaches and overall be better about data protection.

Nice theory isn't it?

Like This 35
Previous Page
Next Page


Join the Discussion
Write something…
Recent messages
JerryMcCoy Premium Plus
Thanks for the training.
Jerry
Reply
smartketeer Premium
@JerryMcCoy
Thanks for the time Jerry!
Reply
NeptuneSiver Premium
I think I saw a GDPR app in Wordpress plugs in
Reply
smartketeer Premium
@NeptuneSiver
Most likely :)
Reply
terrycarroll Premium
This is great Zed and many thanks for sharing.
There are a few "guides" to GDPR Compliance doing the rounds but this one, I believe, covers all aspects of the requirements.
Thanks again and have a great Christmas.

Terry
Reply
smartketeer Premium
@terrycarroll
Thanks Terry!

Merry Christmas!
Reply
YanFellow Premium
Thanks, Zed.

My site, theme and WP are fully updated (not to Gut, tho) and the comment privacy checkbox does not appear.

I tried the WP GDPR Compliance plugin but it seems overly complex and demands that the user agree to storing theirdetails before it accepts their comment. At least if I've understood it correctly.

Can you recommend a plugin to do the ticky box thing?

Ian
Reply
smartketeer Premium
@YanFellow
If you are talking about the comment ticky box thing, most likely your theme overrides those settings and most likely will do it even with a dedicated plugin.

I don't know any free comment GDPR plugin because I'm using a paid third-party commenting solution.

But you could make a search in the WP plugin repository. And if you have a site-wide GDPR consent solution (for example a popup, a footer bar, etc) on your homepage, I'sd say that you are covered.
Reply
YanFellow Premium
@smartketeer
Ok, thanks, Zed.

The theme didn't override the WP GDPR Compliance. Now I come to think oif it, I'm sure some other training somewhere said we didn't need it a ticky box for some reason 😱

Argh!

Ian
Reply
smartketeer Premium
@YanFellow
The theme handles each Wordpress function separatly. The commenting feature (function) is just one template file ... It will override a specific plugin depending on the targeted function

There are lot of training materials and a lot of experts out there ...

I've made all my research using official sources, so I'm pretty sure that my info is correct Ian.
Reply
YanFellow Premium
@smartketeer
I'm sure it is, Zed :-) It's a complex issue and you have laid out what needs to be done.

Thank you

Ian
Reply
smartketeer Premium
@YanFellow
Thanks for your time and your feedback!
Reply
rubanzema Premium Plus
What must we do concretely? Are these GDPR not integrated into our Wordpress Websites?
Reply
smartketeer Premium
@rubanzema
Have you read the tutorial? All 5 pages?

The answers are there ...
Reply
rubanzema Premium Plus
@smartketeer
Good, thank you.
Reply
smartketeer Premium
@rubanzema
You're welcome!
Reply
Top