WP GDPR Compliance

Description

This plugin assists website and webshop owners to comply with European privacy regulations known as GDPR. Activating this plugin does not guarantee your site fully complies with GDPR.

  • Add Consents and give your visitors full control.
  • Keeping a consent log for supported plugins.
  • Adding checkboxes to supported plugins for explicit visitor consent.
  • ‘Right to access’ through encrypted audit logs and double opt-in mail.
  • ‘Right to be forgotten’ by anonymising user data.

WP GDPR Compliance supports Contact Form 7 (>= 4.6), Gravity Forms (>= 1.9), WooCommerce (>= 2.5.0) and WordPress Comments.

Documentation
https://www.wpgdprc.com/documentation/

Screenshots

  • Automatically add GDPR checkboxes to some of your favourite plugins.
  • Ask your visitors for permission to enable certain scripts for tracking or advertising purposes.
  • Overview of the view and delete requests by your site's visitors.
  • Control the link to your privacy policy, activate the request user data page and more.

Installation

  1. Upload the plugin files to the /wp-content/plugins/wp-gdpr-compliance directory, or install the plugin through the WordPress plugins screen directly.
  2. Activate the plugin through the ‘Plugins’ screen in WordPress
  3. Go to Tools -> WP GDPR Compliance

FAQ

You’ll find answers to many of your questions on https://www.wpgdprc.com/faq/

Reviews

Newest update broke the sites

Can’t tell if they’ve been hacked or what. But avoid this plugin like the plague right now. If you have this plugin, delete it now because it will break your site.

Great plugin

This plugin does what it should. Thanks for making it.
And yes one of my sites got hacked too (just an automatic added admin-account, futher no actions), but everything with WordPress falls and stands with good backups and monitoring.

Irresponsible dev people

I was using this plugin on almost all my sited – business site. All of them have been hacked due to critical plugin error that allowed to change page URL in the database.

I do not recommend it. They even didn’t say “SORRY”. Scam.

[links redacted]

Hacked site. Beware!

So after realising the site was hacked because of this plugin, I upgraded to latest version. And amended the site URL which was changed – was OK at first but then it wasn’t working again and the site URL had been changed again!

So I just completely deleted the plugin, changed my site URL. And also there was a random new admin user! I deleted that. I changed the database password and password for my own WordPress login. But today I got an email about a password change for another new admin user (which was not me!).

So looks like something dodgy still on the site. Going to have to properly look into it – scan site etc.

What a pain! May have to do a clean install of WordPress!

Read all 103 reviews

Contributors & Developers

“WP GDPR Compliance” is open source software. The following people have contributed to this plugin.

Contributors

“WP GDPR Compliance” has been translated into 11 locales. Thank you to the translators for their contributions.

Translate “WP GDPR Compliance” into your language.

Interested in development?

Browse the code, check out the SVN repository, or subscribe to the development log by RSS.

Changelog

1.4.7

Release date: December 17th, 2018
* Bugfix older PHP versions.

1.4.6

Release date: December 17th, 2018
* Added anonymised usernames.
* Added log table.
* Added integration for WordPress registration.
* Added warning in case the privacy policy page has not been selected yet.
* Fixed bug in the settings page.
* Fixed bug with session ID’s.

1.4.5

Release date: November 30th, 2018
* Hotfix: Fixed SQL syntax error.
* Added possibility to reset the consent bar.
* Consent bar will always be reset when consent is added/updated.

1.4.4

Release date: November 28th, 2018
* Anonymise requests after 30 days. This also removes the ability to process delete requests.
* Small bugfix to correctly strip slashes from ‘Consent’ titles.
* Added possibility to use external URL’s for the privacy policy.
* Added auto opt-in for admin’s when adding a comment.
* Fixed bug that added attachment to the consent bar when viewing an attachment.
* Fixed bug with token.

1.4.3

Release date: November 7th, 2018
* Security fix: Removed base64_decode() function.
* Security fix: Correctly escape input in $wpdb->prepare() function.
* Security fix: Only allow modifying WordPress options used by the plugin and by the user capabilities.

1.4.2

Release date: July 6th, 2018
* Added the ability to add required ‘Consents’. These Consents will always be triggered on page load.
* Added ‘Privacy’ column to the WooCommerce order overview.
* Added the ability to change the message of the required asterisk elements.
* Remove or re-add the GDPR fields from forms on plugin deactivation and activation.

1.4.1

Release date: June 12th, 2018
* Also show the WordPress Comments checkbox for administrators.
* Small bugfix in certain PHP versions.

1.4.0

Release date: June 8th, 2018
* Small front-end fixes.
* Added missing translatable strings.
* Fixed the text domain for some translatable strings.
* Show enabled consents of user.
* Small bugfix for admin redirects.
* Added the ability to remove ‘Consents’ via the admin panel.
* Added the option to wrap ‘Consents’ with tags.

1.3.9

Release date: June 3rd, 2018
* Small front-end fixes.
* Added translatable strings.
* Added shortcode [wpgdprc_consents_settings_link]. This will create a link to the consent settings.

1.3.8

Release date: June 1st, 2018
* Front-end bugfix.

1.3.7

Release date: June 1st, 2018
* Bugfix for admin columns at the comments panel.
* Fixed a bug when creating the database tables used by the consents functionality.

1.3.6

Release date: June 1st, 2018
* Added ‘Consents’ tab. Ask your visitors for permission to enable certain scripts for tracking or advertising purposes.
* Corrected the implementation of the multisite environment.
* Fixed an issue with the Gravity Forms integration and Pronamic.
* Larger input fields for checkbox texts.
* Hide WordPress Comments checkbox for administrators.
* Also anonymise WooCommerce data in user profiles.

1.3.5

Release date: May 24th, 2018
* Small bugfix for older WooCommerce versions.
* Small bugfix for some translatable strings.
* Bugfix to make sure the correct Gravity Forms field ID is determined.
* Added checkbox to the WooCommerce register forms.
* Hide WooCommerce orders section when plugin is inactive.

1.3.4

Release date: May 16th, 2018
* Fixed a bug when creating the database tables used by the request user data functionality.
* Fixed a bug when creating the request user data page.
* Expired access requests are shown more clearly.
* Improved error messages.
* Added a link to the support forum. We’re happy to help!

1.3.3

Release date: May 14th, 2018
* Fixed a bug that caused anonymise request mails to fail.
* Added missing translatable strings.

1.3.2

Release date: May 11th, 2018
* Added translatable ‘Yes’ and ‘No’ strings.
* Added confirmation mails sent after processing a anonymise request.
* Added mail sent to the admin when a new request is created.
* Added ‘noopener noreferrer’ to the Privacy Policy link.

1.3.1

Release date: May 8th, 2018
* Added a button to retry creating database tables required by the request user data functionality.

1.3

Release date: May 7th, 2018
* Added the request user data page. You can enable it in the Settings tab.
* The newly created page contains a shortcode which allows visitors to request their data. WordPress Users, WordPress Comments and WooCommerce orders linked to their email address are then send to that email address.
* The request user data page becomes the delete user page when visited through this email. The link in the email is available for 24 hours (cronjob) and linked to the visitors’ IP and current session.
* Delete requests end up in the new Requests tab. Click on ‘Manage’ to view a request and tick the checkbox to anonymise. Make sure to take care of these requests as quickly as possible!
* For WordPress Users ‘anonymise’ means first and last name, display name, nickname and email address are substituted by the corresponding field name in the database.
* For WordPress Comments ‘anonymise’ means author name, email address and IP address are substituted by the corresponding field name in the database.
* For WooCommerce orders ‘anonymise’ means billing and shipping details are substituted by the corresponding field name in the database.

1.2.4

Release date: April 3rd, 2018
* Show a notice when Jetpack is installed.
* Fixed a bug with WordPress Comments.

1.2.3

Release date: March 29th, 2018
* Storage of explicit consent timestamp.
* Return of the settings tab.
* Added ability to include your privacy policy page.
* Added a couple of apply_filters().
* Small styling changes.
* Added .POT file to translate this plugin. (Thanks for translating!)

1.2.2

Release date: March 2nd, 2018
* Fixed a bug with WordPress Comments.
* Added countdown to GDPR deadline. (May 25, 2018)
* Added ability to add custom error messages to Contact Form 7 and Gravity Forms.
* Added ability to add HTML tags to the texts and error messages.

1.2.1

Release date: February 26th, 2018
* Fixed a bug with WordPress comments.
* Fixed a bug with default checkbox texts.

1.2

Release date: February 23rd, 2018
* Limit data shared with WordPress when updating the core.
* Added minimum supported version for Contact Form 7. (version 4.6)
* Added minimum supported version for Gravity Forms. (version 1.9)
* Added minimum supported version for WooCommerce. (version 2.5.0)
* Delete all data created by the plugin after deactivating integrations or uninstalling the plugin.
* Moved the position of the GDPR checkbox in the WordPress Comments form. (directly above the submit button)
* Moved the position of the GDPR checkbox in WooCommerce. (directly above the submit button)
* Removed the global “Error message” field.
* Fixed an issue with an older version of Contact Form 7.
* Small styling changes.

1.1.2

Release date: January 19th, 2018
* Added default error message.
* Small bugfixes.

1.1.1

Release date: January 16th, 2018
* Added screenshots.
* Added textual changes.

1.1

Release date: January 16th, 2018
* Added ‘Contact Form 7’ integration.
* Added ‘WooCommerce’ integration.
* Added ‘WordPress Comments’ integration.
* Small bugfixes.

1.0

Release date: November 4th, 2017
* Initial release.