In (very) short. GDPR states that if a website collects, store or use any data related to an EU citizen. You must comply with the following:
- Tell the user: who you are, why you collect the data, for how long and who receives it.
- Get clear concent from users, before collecting any data
- Let users access their data, and take it with them
- Let users delete their data
- Let users know if data breaches occur
See this nice infographic from the European Commission
Not following these guidelines will eventually result in a fine. Up to EUR 20 million or 4% of your annual turnover – so quite a bit of money.
GDPR compliance for WordPress websites
For information on how we can help you on your path to WordPress GDPR compliance please get in touch.
GDPR compliance for WooCommerce
For information on how we can help you on your path to WordPress + WooCommerce GDPR compliance please get in touch.
GDPR compliance for Drupal 7 websites
For information on how we can help you on your path to Drupal 7 GDPR compliance please get in touch.