What GDPR Means For Your Site

What GDPR Means For Your Site


Since the GDPR law was announced, many businesses have found themselves confused about what it means for their business. When you run a WordPress site, you might find that you are unsure if you are actually dealing with personal data or not. To help you out with your confusion, we are going to explain what GDPR means for your site. Make sure to keep reading if you’d like to find out more.

When Does GDPR Become An Issue?

GDPR only really becomes an issue for WordPress site owners when someone within the EU access the site. This depends on where the user is based and not where their server is. It is important that you know when people from the EU access your site in order to be compliant with the law.

What Information Matters?

The actual information that needs to be protected is called personally identifiable information and it is important that you know what this means for your site. No one should be able to take the data that you have and find the original user by putting the information together. This is important to know if you want to be in compliance with GDPR.

WordPress GDPR Requirements

Now that you know what GDPR means for your site, it is important that you know how to check if your site is complying with the law. To begin, you’ll need to update your privacy policy by logging into your WordPress admin area. From there, you should choose ‘settings’ and then ‘privacy’. You should then choose an existing page for your privacy policy or choose to create a new one.

What Does A Data Retention Policy Address?

It is important that you understand what data retention is and the importance of having a system in place that avoids this. With a data retention policy, inactive users are deleted after a set amount of time, backups are deleted after three months and financial records are deleted after a set period of time.

Having An Incident Plan

When something does go wrong, you’ll need to have a plan in place to deal with the problem. In order to monitor your policy and deal with incidents, you’ll need to keep an updated email list in order to keep track of personal data. You should also know that you need to detail any breaches by email within 72 hours of it happening. In your plan, you should also have something in place which lets you contact the governmental agencies that you need to comply with the law.

Final Thoughts

It is really important that you understand what GDPR means for your site. Make sure to monitor your data carefully and have a plan in place for any sort of breach that might take place. Follow our tips and you should be able to stay in compliance with this data protection law.


Author Gyles Seward

Gyles is our Managing Director and knowledgeable in all things WordPress.

More posts by Gyles Seward