General DataProtection Regulation and wordpress blogs

  • Unknown's avatar
    imagespoetry · Member ·

    In May 2018, with the entry into application of the General Data Protection Regulation, there is one set of data protection rules for all companies operating in the EU, wherever they are based. I am the webmaster of a few wordpress leisure blogs, one of which with contributions from international authors. What shall I have to do ? Thanks Lidia

    The blog I need help with is: (visible only to logged in users)

  • kokkieh · Staff ·

    Hi there,

    We cannot give specific legal advice about your particular site, as we are not your attorneys.

    In general, though, if you handle the information you collect from your visitors responsibly and are not sharing or selling it to other companies without permission, then the GDPR is unlikely to cause a radical change in how you do things. WordPress.com is not a tool which gives you a lot of personally or legally sensitive details on your visitors.

    For most bloggers and site owners using WordPress.com, comments and feedback are the main way they collect information from visitors. In addition to what is public, there are also a few extra details visible to you in your dashboard, such as the IP address of commenters. When the GDPR goes into effect, people will be able to request a copy of this “personal data” or ask to have it deleted. We are working on ways to help you comply with such requests, which may be in the form of point-and-click tools or written guides.

    We will also be enhancing the functionality of our existing EU cookie banner, so that it works in conjunction with our WordAds advertising program to only provide EU visitors with clear choices about personalized ads.

    If you want to write a Privacy Policy that discloses to your site’s visitors the information that’s collected when they follow or comment on your site, you can find a detailed description of what gets collected about them at https://jetpack.com/support/comments/#privacy

    And we will have written guidance for people with more complicated sites on what they should think about when it comes to protecting privacy and the new law.

    Both our privacy.blog and the GDPR support page will have updates by the end of the month and going forward.

    If any of your sites are built using the open source WordPress software, please note that’s something completely different from WordPress.com and our policies and tools don’t apply there. The recent 4.9.6 update to that software includes some tools to help you comply with the GDPR, but the WordPress.org community will also not be able to tell you exactly what you need to do to comply with the law:

    WordPress 4.9.6 Privacy and Maintenance Release

    If you have any follow-up questions, let me know.

  • The topic ‘General DataProtection Regulation and wordpress blogs’ is closed to new replies.