First of all: Due to the wide range of configuration options and available plug-ins, the following guide can only give a rough overview of the possible GDPR-relevant changes.
Problematic: Plug-ins that "call home"
Many plugins send data to third parties, partly to ensure the functionality of the plugin, partly for no apparent reason. No matter which data is sent, the blog operator has to inform his visitors about this circumstance. Possibly it concerns personal data (IP addresses), these flow off uncontrolled and uncommunicated, then here an offence against the GDPR is present.
Unfortunately, very few plugins document the way in which they handle data and which data is transmitted. Therefore, you should not use any plugins that are known to transmit data.
A very detailed list of WordPress plugins and their data hunger, the blog "blogmojo" has published under the address: https://www.blogmojo.de/wordpress-plugins-GDPR/ .
Blogmojo classifies the following plugins as problematic. There is currently no solution known for these plugins that would allow them to be used GDPR-compliant:
Of course, there are now also numerous plugins that make it easier to comply with the GDPR guidelines. IP addresses in comments are removed by the plugin "Remove Comment IPs". If you include Google Fonts, then the plugin "Remove Google Fonts References" can help. This plugin saves the fonts locally on the server and thus prevents them from being called by Google. Since the GDPR has also made SSL important for many websites, the plugin "Really Simple SSL" is available for WordPress. This plugin helps with the conversion to the HTTPS protocol.
Further privacy plugins can be found here: https://www.blogmojo.de/wordpress-datenschutz-plugins/
Send an email