The GDPR Framework


This plugin is a service of & ClassiDocs – please stay tuned for more updates!

Easy to use tools to help make your website GDPR-compliant.

GDPR is a whopping 88 pages of legal text. Becoming compliant takes a lot more than just adding a couple of checkboxes to your forms! But worry not, we’ve got it covered. With help from Triniti, one of the top business and IT law firms in Europe, we’ve put together this plugin and written a thorough guide for making WordPress sites compliant with minimal effort.

You don’t need to drown your customers in pointless acceptance checkboxes if you know what you’re doing!


The current version of the GDPR Framework fixes a ton of minor bugs. However, it’s not yet compatible with WordPress v4.9.6. This will be added in the next major release. (Everything will still work, though.)


IF you’re using a caching plugin, please make sure you exclude the Privacy Tools page from your cache. Otherwise, it won’t work!


Using The GDPR Framework does NOT guarantee compliance to GDPR. This plugin gives you general information and tools, but is NOT meant to serve as complete compliance package. Compliance to GDPR is risk-based ongoing process that involves your whole business. Codelight is not eligible for any claim or action based on any information or functionality provided by this plugin.


Full documentation: The WordPress Site Owner’s Guide to GDPR
For developers: Developer Docs


☑ Allow both users and visitors without an account to automatically view, export and delete their personal data;
☑ Configure the plugin to delete or anonymize personal data automatically or send a notification and allow admins to do it manually;
☑ Track, manage and withdraw consent;
☑ Generate a GDPR-compatible Privacy Policy template for your site;
☑ Comes with a helpful installation wizard to get you started quickly;
☑ Fully documented;
☑ Developer-friendly. Everything can be extended, every feature and template can be overridden.

Coming up next

☐ Cookie solution
☐ Integration with WP & WooCommerce core tools
☐ Overhaul & improvements on the consent tracking mechanism, re-consent, etc.

GDPR is here to stay and we are just getting started. There’s lots more to come!

Plugin support:

The GDPR Framework currently works with the following plugins
☑ Contact Form 7 & Contact Form Flamingo
☑ Gravity Forms – Download the GDPR add-on
☑ Formidable Forms – Download the GDPR add-on

Coming soon:
☐ Ninja Forms

Still free and open-source.

Other integrations coming up:
☐ WP Migrate DB
☐ WooCommerce (postponed until the launch of their own compliance toolkit)
☐ Easy Digital Downloads

We’re happy to add support for other major plugins as well. If you have a request, get in touch!

Support the development!



Help, the identification emails are not sent!

The GDPR Framework uses the exact same mechanism for sending emails as the rest of your WordPress site. Please test if your site sends out emails at all using the Forgot Password form, for example.
If you get the forgot password email but not the identification email, please make a post in the support forums.

Help, the link in the identification email doesn’t work!

Are you using SendGrid or another email delivery service? This might corrupt the link in the email.
In case you’re using Sendgrid, make sure to turn off “click tracking”. Otherwise, please post in the support forum!

Help, the Privacy Tools page acts weirdly or always displays the “link expired” message!

Check if you’re using any caching plugins. If yes, then make sure the Privacy Tools page is excluded.
Also check if a server side cache is enabled by your web host.

How is this plugin different from the tools in WordPress v4.9.6?

WordPress 4.9.6 provides tools to allow administrators to manually handle GDPR requests. However, the GDPR framework allows visitors to automatically download and export data to reduce administrative work load.
In addition to that, we provide tools to manage and track custom consent types and also a privacy policy generator.
We are also planning to add other important privacy-related features missing from WordPress core over time.

What about cookies?

This is a very important aspect of GDPR which we will definitely find a solution for. We are currently working on it and will hopefully have something before May 25th.


So far, very good! Waiting for the cookie policy part!

Very happy with this plugin. There is attention to detail and it works well for visitors wanting to download the data we have. Very much hope they add the cookie policy part soon so we can have everything just under this one plugin.

Big thanks and appreciation to the developers 🙂

Doesn’t currently work with Jetpack

I love this plugin but cannot use it yet because it doesn’t integrate with Akismet or with Jetpack. Once these issues are fixed, I will gladly reload this plugin onto my site. It’s the most thorough one out there and yet is still easy to implement.

The two stars are strictly for the lack of integration with Jetpack and Akismet. And I will happily edit my review once this is solved.

Well that was easier!

I procrastinated thinking it would be awful complying…then I found this plugin and wow. It’s plug and play. Love wizard that walked me through everything, did my two sites in one sitting. Easy peasy. Thanks.

fix choose location

I just can’t generate GDPR info page because I’m unable to choose Outside the EU. Idea is good, UI is buggy.

Read all 44 reviews

Contributors & Developers

“The GDPR Framework” is open source software. The following people have contributed to this plugin.


“The GDPR Framework” has been translated into 2 locales. Thank you to the translators for their contributions.

Translate “The GDPR Framework” into your language.

Interested in development?

Browse the code, check out the SVN repository, or subscribe to the development log by RSS.



  • Fix fatal error caused by Flamingo integration


  • Add support for Contact Form 7 Flamingo
  • Remove nested the_content filter in the consent area editor to avoid potential conflicts with various plugins (Thanks Gary McPherson!)
  • Fix some missing translation strings (Thanks trueqap!)
  • Additional minor tweaks
  • Update Italian translation (Thanks Rienzi Comunica!)


  • Disable Privacy Tools page if not set via admin (fixes infinite redirect issue)
  • Add additional admin notification if Privacy Tools page is not set
  • Additional minor tweaks


  • Update translation pot file
  • Add partial Greek translations (Thanks @webace-creative-studio)


  • Fix administrative roles not being able to comment via admin interface
  • Fix trashed or spam comments not being deleted
  • Minor usability tweaks everywhere
  • Fix PHP5.6 not properly saving custom consent (Thanks @paulnewson!)
  • Fix CF7 always showing as enabled in wizard
  • In Tools > Privacy > Data Subjects, add the display of given consents
  • Add warning about Sendgrid compatibility in the installer
  • Fix issue with installer wizard not properly saving export action
  • Add notice in case the settings are not properly configured
  • Added Bulgarian translation (thanks Zankov Group!)
  • Added partial Italian translation (thanks Matteo Bruno!)


  • Fix installing consent tables and roles properly
  • Add Spanish translations (Thanks @elarequi!)
  • Add partial German translations (Thanks @knodderdachs!)
  • Lower required PHP version to 5.6.0
  • Re-add container alias for DataSubjectManager
  • Fix for installer giving the option to add links to footer for unsupported themes
  • Fix PHP notice in WPML module


  • Fix translations, for real this time
  • Add French translations (Thanks @datagitateur!)
  • Fix PHP warning if WPML is activated
  • Add filter around $headers array for all outgoing emails sent via this plugin


  • Change text domain to ‘gdpr-framework’ to avoid conflict with other plugins
  • Add Portuguese translation (Thanks @kativiti!)
  • Add partial Estonian translation


  • Fix T&C and Privacy Policy URLs on registration and comments forms
  • Add basic styling and separate stylesheet for Privacy Tools page
  • Allow disabling styles for Privacy Tools page via admin
  • Add confirmation notice on deleting data via front-end Privacy Tools
  • Change strings with ‘gdpr-admin’ domain back to ‘gdpr’. Add context to all admin strings.


  • Fix PHP notice on Privacy Tools frontend page if logged in as admin


  • Initial release