Europe’s General Data Protection Regulation (GDPR) comes into effect on 25 May 2018 – is your shop ready?
What is GDPR and what does it have to do with you?
I attended WordCamp Manchester and WordCamp Stockholm in the last few months, and they had one thing in common: lots of questions about GDPR. I heard a number of discussions around what WooCommerce site owners needed to do, and if they were ready for GDPR.
To help our WooCommerce site owners get ready for the GDPR, we wanted to provide some information about the regulation, along with our GDPR plans at WooCommerce.
On 25th May 2018, the GDPR enacted by the EU will come into effect.
Stronger rules on data protection from May 2018 mean citizens have more control over their data.
There’s a great infographic breaking down the different components. The GDPR for WordPress site includes a summary of site owners’ obligations in regards to collecting data related to EU citizens, which we’ve listed below:
- Tell the user who you are, why you collect the data, for how long, and who receives it.
- Get a clear consent [when required] before collecting any data.
- Let users access their data, and take it with them.
- Let users delete their data.
- Let users know if data breaches occur.
Each of these bullet points is subject to many caveats, exceptions, and degrees of how much you need to do, but they do serve as a good starting point.