How to Update Your WooCommerce Site to Meet GDPR Demands
Table of Contents
Table of Contents
Whether your business runs in the EU or working with European customers, your website should adhere to the General Data Protection Regulation (GDPR). If you do not want to have any penalties or lawsuits filed by users who worked with you or tried your services, you should make your WooCommerce site GDPR compliant.
In this post, we will discuss the major steps you should take to play by the rules. The eCommerce projects should seriously consider implementing GDPR elements into their online resources because they directly work with customers, collect their personal information, and should make people feel sure that their sensitive data is protected from any risk. So, here’s how you can make your WooCommerce website compliant with the latest GDPR demands.
How to Make Your WooCommerce Site GDPR Compliant
Use WordPress 4.9.6 and higher
To get started, update your WordPress core installation to version 4.9.6 or higher. It’s set by default that this WordPress version automatically makes your web project set up for the GDPR compliance success. Here are some of the critical features dealing with the General Data Protection Regulation that are included in this WordPress update.
Comments Cookie Optin
It’s set as the default settings that WordPress stores cookie, which frees users from the need to retype their information every time they leave and come back to your website. In WordPress 4.9.6 and higher, there is an optin included in the comments form.
Data Export and Erase
In the Tools tab of your WordPress dashboard, there are two new options: to Export and Erase personal data. If your website collects user information, you can erase or export their details from the WordPress database whenever you receive their request.
As long as your website grows and you add new plugins, services, and extensions, you’ll need to include disclosure for all of the cookies and data that you collect on your website.
Every WooCommerce store should add disclosure of how they retain customer information, for how long, and what they do with it.
- Tracking services like Google Analytics;
- Ad networks like Google Adwords;
- CDN services;
- Optins or pop-ups;
- Push notifications;
- Shopping carts, and more.
Contact forms are essential elements of any web page that aim to better engage with the audience. Many contact forms plugins let you integrate the respective functionality into your website. Contact Form 7 is one of the most popular solutions. Make sure that your contact form features the acceptance checkbox. The latter can be added using the following rule before the submit button:
[acceptance accept-this-1] Check here to consent to this website, storing my information so they can respond. [/acceptance]
The developers of wpForms plugin have already integrated the contact form with the GDPR agreement module. To activate it, navigate to the setting in the wpForms and add the GDPR agreement checkbox. This way, your customers can confirm that they consent to share their personal information with your website.
Similar to the contact forms that you add to your website, the newsletter subscription form should also include a checkbox or a feature a double-optin to your email list. Most popular email services include the double-optin option, which you can enable in the settings of your pop-up message or the newsletter subscription widget.
Add a Cookie Notice to your WooCommerce Store
There are many WordPress plugins to add a cookie notice. The free Cookie Notice and premium WeePie Cookie Allow plugins are some of the most popular solutions. Use them to add cookie notices that match the design and style of your website. The plugins are mobile-friendly and perform smoothly on all types of screens and devices.
Users Should Be Able to Request to Delete Their Personal Details from your Store
It is one of the crucial factors that GDPR compliant websites should offer their customers. Among many other things, WordPress 4.9.6 update has brought the possibility for web users to request sites to remove their details from the database altogether. To let a user share the request with you, you should first add the respective contact form to your site.
These are the significant instructions and activities that you need to take on your WooCommerce site to make it GDPR compliant. Just for your notice – we are not lawyers. This guide represents a collection of the essential steps that we have implemented on our site. The tips have proven to be effective, so we can recommend you to follow our advice.