In recent months, there has been a great deal of turmoil about the GDPR that will be maintained from May 25th 2018. Websites need to be redesigned to comply with this EU legislation. The world’s largest CMS has come up with a solution. This blog will analyse WordPress’s privacy functions in detail. Does one meet the requirements of the GDPR just by using WordPress’ own solution, or are there extra preparations to be made?
What does a website need to comply with the GDPR?
Blocking all tracking-, advertising- and statisticscookies and scripts, before consent
A consentbanner to ask for consent, or let visitors reject cookies
The posibility to revoke consent
Processor agreements with all third parties that have acces to or process personal data of websitevisitors
What does WordPress do with its new update?
The new update of WordPress is fully focused on Privacy, adding some new privacy functions:
WordPress addition #2 – Opt-in collection of personal data
The second addition is an opt-in that is added to the response forms on your website. You can fill in this opt-in text yourself, as long as it meets the requirements of the GDPR.
WordPress addition #3 – Data Export
When comments are posted on your website, they will be stored in the WordPress database from now on. You can then specify all these responses by name, IP address, etc. When someone requests to see his/her profile, you can immediately export all data to an Excel document. A simple way to provide applicants with their data, so. It is also possible for a user to indicate that he or she wants all his or her data to be deleted. This can now be done with a single click on the button. WordPress therefore certainly helps to store and remove personal data.
In short, the options that WordPress provides are good to have, but they are certainly not a solution for the GDPR.