In recent months, there has been a great deal of turmoil about the entire GDPR that will be maintained from 25 May 2018. Websites need to be redesigned to comply with this law. There are various solutions offered by parties, but many of them are not complete. Word dressing as well. The world’s largest CMS has come up with a solution. This blog will analyse this in detail. Because do you meet the GDPR by WordPress’s own solution?
What does a website need in order to comply with the GDPR?
In order to be able to talk about your compliance with the GDPR, there are various elements that must have been applied to your website. These include the following points:
- Cookie referencing that can also be rejected
- Insight in which cookies are used and why (Cookie Policy)
- Privacy Policy
- Opt-in for contact forms
- Processor agreement with third parties who can view data of visitors
What does WordPress do with its new update?
The new update of WordPress is fully focused on Privacy. Privacy is one of the aspects that deserve attention. WordPress pays attention to this in various ways.
WordPress addition #1 – Create Privacy Policy
One of the additions to the WordPress environment is a kind of dashboard in which all the privacy issues that WordPress offers are listed. One of these is the Privacy Policy page. Within the new WordPress environment, you can generate a Privacy Policy. However, this Privacy Policy is not legally based and only contains points that apply to many companies and websites.
Within the same page, you can also choose to select a Privacy Policy page that you have already created. When you do this WordPress assumes that this is your default Privacy Policy page.
WordPress addition #2 – Opt-in collection of personal data
The second addition is an opt-in that is added to the response forms on your website. You can fill in this opt-in text yourself, as long as it meets the requirements of the GDPR.
WordPress addition #3 – Data Export
When comments are posted on your website, they will be stored in the WordPress database from now on. You can then specify all these responses by name, IP address, etc. When someone requests to see his/her profile, you can immediately export all data to an Excel document. A simple way to provide applicants with their data, so. It is also possible for a user to indicate that he or she wants all his or her data to be deleted. This can now be done with a single click on the button. WordPress therefore certainly helps to store and remove personal data.
Conclusion
WordPress has added some interesting features to the environment. For example, you can generate a Privacy Policy, store and immediately deliver or delete data, and opt-ins are automatically placed on response forms. However, these options are not complete and only provide a small part of relief to WordPress users. Take the opt-in section, for example, for response forms. These response forms are seldom used, often using different plug-ins that do exactly the same thing. Many of these plug-ins do not yet conform to GDPR. The data stored from the response form is also stored, but this is not all information about a specific user. A user may also have shared information on the forum, or via a contact form. It is therefore incomplete what WordPress delivers in this respect.
In short, the options that WordPress provides are good to have, but they are certainly not a solution for the GDPR.
Functionalities | WordPress new update | Complianz |
Privacy Policy | X | X |
Cookie Policy | – | X |
Cookie Notification | – | X |
Data processing agreement | – | X |
Disclaimer | – | X |
Always Up-To-Date | – | X |
Four Languages | – | X |
Juridical Support | – | X |
Technical Support | X | X |
Cookie Scanner | – | X |
Personal Data Import | X | Integrated |
X | Integrated | |
Opt-In Contactform | X | Integrated |