Are you a WordPress plugin author, and does your plugin handle user data in any way? Then this for you…

We are building the GDPR standard for WordPress

The EU General Data Protection Regulation will be in full force from 25th of May 2018. That’s about 60 days from now!

Our aim

We aim to provide plugin developers with a simple solution to GDPR validate their plugin and offer Website Administrators the overview and tools to handle the administrative tasks involved with being GDPR compliant.

For plugin developers

Our solution is being implemented into WordPress Core as a set of hook and filters, and offer a way for you to point to where personal data is handled and stored by your plugin.

Using the WordPress GDPR hooks and filters, will allow you to easily help WordPress identify and handle any Personal Identifiable Information handled within a WordPress install comprised of multiple plugins.

This way, we can offer a centralized set of tools within WordPress.

Go to > #GDPR-Compliance to follow the latest on this project

For Website Administrators

We are building the GDPR compliance tools, to help websites accomplish the Right to Access, Right to be forgotten, and Breach Notification functionality that every WordPress site must have, no matter the combination of plugins that handle user identifiable data.

So, sit tight – it’s being actively developed into an upcoming WordPress update.

GDPR summary

In (very) short. GDPR states that if a website collects, store or use any data related to an EU citizen. You must comply with the following:
– Tell the user: who you are, why you collect the data, for how long and who receives it.
– Get a clear concent, before collecting any data
– Let users access their data, and take it with them
– Let users delete their data
– Let users know if data breaches occur

See this nice infographic from the European Commission

Not following these guidelines will eventually result in a fine. Up to EUR 20 million or 4% of your annual turnover – so quite a bit of money.