Support » Plugin: hCaptcha for WordPress » Advertise with data protection, but are not GDPR compliant

  • francisco82

    (@francisco82)


    hCaptcha advertises with data protection, but is not GDPR compliant. I think that hCaptcha can be a good option for people in the US who need an alternative to reCaptcha. However, since hCaptcha loads an external JavaScript from its servers into the website and is itself a US company subject to the US CLOUD Surveillance Act, this solution is unsuitable for European companies.

Viewing 1 replies (of 1 total)
  • Plugin Author hcaptcha

    (@hcaptcha)

    @francisco82 This is not actually correct: hCaptcha is definitely GDPR compliant.

    The service relies on Standard Contractual Clauses via its DPA. Details are available at https://www.hcaptcha.com/terms

    Furthermore, session data is processed very close to the user, typically in their same country, and no PII (or any other non-aggregated data) is retained over any long period of time.

Viewing 1 replies (of 1 total)
  • You must be logged in to reply to this review.