GDPR stands for General Data Protection Regulation
They are a set of rules and regulations regarding data collection. This set of regulations have been put forth by the European Union and will be enforced by May 25th of 2018. These regulations mandate that the website needs to gain explicit consent from users before they can collect and store user data. The websites should also allow users to access to the collected data and request deleting all personal information.
You need to make sure your website is GDPR compliant according to all regulations and the best way to ensure that is to consult with an experienced legal professional in the field. They will explain all the compliance requirements and help ensure your website doesn’t face any problems. This article discusses how you can ensure your WordPress forms are compliant with GDPR.
What do you need to do?
Compliance requirements can vary from site to site, which is why it’s best to consult a legal professional to determine your specific requirements. However, here are some general compliance steps most website owners can include:
Asking for consent
As GDPR requires website owners to ask for consent before acquiring and storing user data, you need to include a request for consent in your online form. The quickest and most convenient way to do this is to add a checkbox in the form. Here are the steps you need to follow while creating one:
The first step is to edit an existing form or create a new one. This allows you to make changes, additions, and include the required options in the form. The next step is to add a Checkboxes field to the new or edited form.
This option will add multiple checkboxes to the form so the next step is to remove all but one. You need to open the Field Options menu to modify the number of checkboxes. Once you have access, click the (-) or minus button to delete all extra checkboxes.
After you have made these changes, you can add a description to the checkbox so the users understand what it is for. Add a line of text that specifies you are requesting consent to collect and store the information submitted through the form. For example, you can add “I permit (the website/company name) to collect and store my data from this form.”
The next step is to delete the field label and enable the “Required” option. This option ensures that the user can’t submit the form without clicking the consent button. This step is essential as it ensures you don’t face any legal trouble down the line.
Handling data entry requests
The GDPR grants users the right to request access to their personal data at any time. You will need to create a system that allows this with minimal trouble and delays. One of the first steps to take is to make access easy and user-friendly. The best way to do it is to add a data request form to your website, preferably in your privacy policy section. You can also add that option in the contact us form.
If the user requests deletion of their personal data, you can go to WPForms » Entries, check the form you want to remove, and click ‘Delete’. It’s easy to remove multiple data entries by selecting the Bulk Actions option from the drop-down menu, check multiple entries, and then click ‘Delete’.
Once you click delete, all information will be permanently erased from your website’s database and this action is irreversible. WordPress also provides a ‘Delete All’ option to help remove all information.
Please consult your Data protection Consultant or Officer. This is information does not indemnify readers of their GDPR obligations.