Getting Your WordPress and WooCommerce Ready for GDPR Compliance

Getting Your WordPress and WooCommerce Ready for GDPR Compliance

With the New General Data Protection Regulation (GDPR) coming into effect on 25th May 2018, is your WordPress and WooCommerce Store ready?  Here, we’ll be taking a look at what you need to know about this new EU law that is set to come into effect in 2018.  We’ll cover everything from what you need to know, to the different resources available to you.

What is GDPR Compliance?

Here’s a quick summary of site owners’ obligations relating to the collection of user data from EU citizens:

  • Tell the user what your site is and why you are collecting their personal data
  • Tell the user how long you will have their data and who will receive this information
  • Get consent from users before collecting any user data
  • Let users access their own data and take it with them
  • Enable users to delete their own personal data
  • Let users known if any data breaches affect their data

GDPR Compliance with WordPress

If you’re a WordPress plugin author that has a plugin that handles user data, you need to be aware of the new EU GDPR compliance that will come into effect from May 2018.  You’ll be happy to hear that WordPress is developing a GDPR plugin standard.  This means that there will be a unified descriptive methodology of the type of data being stored, where it is stored and how long it is there for.  This plugin standard will also offer key information on how to safely handle the deletion of any user data.

This new plugin standard from WordPress aims to give developers a simple solution to GDPR compliance when it comes to validating your plugin.  It also ensures that Website Administrators will have the overview and tools they need to handle any tasks associated with GDPR compliance. This solution from WordPress is free and offers a simple guide to creating a file.  This file will describe all of the different user data that the plugin is likely to handle.  This file will be available for anyone to read.

What You Need to Be Aware of As a WooCommerce Shop Owner

Firstly, it’s super important that you do your research on GDPR compliance as each WooCommerce site will use a different set of plugins.  With this new EU law, there isn’t a one-size-fits-all approach.  You will need to be aware of why you need to do for your specific site.

If you sell products to customers within the EU or have EU shoppers visiting your WooCommerce site, you’ll need to ensure your site complies with GDPR.  It’s your responsibility to communicate how you are using your customers’ information.  Also, this means you may need to update the privacy policy for your site to make clear how your WooCommerce site will comply with GDPR.

What Resources Are Available to Help with GDPR Compliance?

We need to make clear that GDPR will impact how every site in the EU operates.  There’s a lot of help and resources out there to assist you.  Make sure to check out the Complete WordPress GDPR Guide from Code in WordPress.  This provides a detailed overview of how they will help plugin developers ensure they are GDPR compliant.

Author Gyles Seward

More posts by Gyles Seward