Support » Plugin: hCaptcha for WordPress » Advertise with data protection, but are not GDPR compliant

  • francisco82


    hCaptcha advertises with data protection, but is not GDPR compliant. I think that hCaptcha can be a good option for people in the US who need an alternative to reCaptcha. However, since hCaptcha loads an external JavaScript from its servers into the website and is itself a US company subject to the US CLOUD Surveillance Act, this solution is unsuitable for European companies.

Viewing 1 replies (of 1 total)
  • Plugin Author hcaptcha


    @francisco82 This is not actually correct: hCaptcha is definitely GDPR compliant.

    The service relies on Standard Contractual Clauses via its DPA. Details are available at

    Furthermore, session data is processed very close to the user, typically in their same country, and no PII (or any other non-aggregated data) is retained over any long period of time.

Viewing 1 replies (of 1 total)
  • The topic ‘Advertise with data protection, but are not GDPR compliant’ is closed to new replies.