Is Connecting My Website to WordPress.com for Jetpack Stats GDPR Compliant?

• 

  samicaio · Member · Jun 23, 2024 at 4:54 pm

  • Copy link
  • Add topic to favorites

  Hi everyone,

  I’m considering using Jetpack Stats to get better insights into my website’s traffic and performance. However, I understand that to use Jetpack Stats, I need to sign up and connect my website to WordPress.com. This connection would grant WordPress.com access to my WordPress admin dashboard, user data, media files, and other information on my website.

  Given the GDPR requirements for data protection and privacy, I’m concerned about whether this setup is compliant. Specifically, I’m wondering:

  1. Data Access: What kind of data does WordPress.com have access to once my site is connected, and how is this data handled?
  2. User Consent: Do I need to obtain explicit consent from my users before connecting to WordPress.com? If so, what is the best way to do this?
  3. Privacy Policy: How should I update my privacy policy to reflect this new data processing activity?
  4. Data Processing Agreement: Does Automattic (the company behind WordPress.com) provide a Data Processing Agreement to ensure GDPR compliance?
  5. Security Measures: What security measures does WordPress.com have in place to protect the data they access?
  6. Third-Party Integrations: Are there any additional considerations if WordPress.com integrates with other third-party services?

  I want to ensure that my website remains GDPR compliant while benefiting from the features provided by Jetpack Stats. Any insights, experiences, or advice on how to navigate this would be greatly appreciated!

  Thanks in advance!