GDPR Compliant in WP-SMS
Do you need to check that your WP-SMS forms are compliant with the European Union’s General Data Protection Regulation? The best way to ensure GDPR compliance for your specific site is always to consult legal counsel. In this guide, we’ll discuss general considerations for GDPR compliance in your WordPress forms related to WP-SMS plugin.
A (Brief) Introduction to GDPR
GDPR is a regulation that aims to protect the privacy of EU (European Union) citizens. Among other things, it provides users with more control over the personal data that they share with websites.
Want to learn more about GDPR and, more specifically, how it affects WordPress websites? Here are some recommended readings:
Is WP-SMS plugin GDPR Compliant?
From version 4.1.0 the answer is YES, but it needs to activate it on the setting page.
You can do this by going to SMS » Settings.
On the General tab, you can check the box labeled GDPR Enhancements.
Once this box is checked, you’ll see additional options page: Privacy and also there are new fields in each WP-SMS widgets.
According to Article 17 GDPR, the user (data subject) shall have the right to obtain his/her data or have them erased and forgotten.
In WP-SMS plugin you can export the user’s data or erase his/her data in the case she/he asks.
For more information, read Article 17 GDPR. Note: On this page, you can export or delete only the user data related to WP-SMS plugin.
For doing the same for your whole WordPress, see the “Export Personal Data” or “Erase Personal Data” pages.
Ask for Consent
Before collecting or storing user data under GDPR, you would need to request their explicit consent and explain why you need this information in plain language.
When GDPR Enhancements are enabled, new fields will be available in your WP-SMS widget to assist with this. To find it, you’ll need to create a new widget or edit an existing widget.
In each WP-SMS widget, you can see the “GDPR compliance” option and “Confirmation Text” area.
Since each form might have its own targeting and marketing goals, you need to write your own “Confirmation Text” based on your usage of user data.
Note: We also recommend placing your “Privacy” page link on the form.
The final result can look like this:
Frequently Asked Questions
Where are mobile numbers stored?
Users’ mobile numbers are completely stored and handled on your own website where WP-SMS plugin is installed. WP-SMS provides 100% privacy for your users’ mobile numbers, and so we never collect your user data.
Can I access GDPR enhancements in both WP-SMS and WP-SMS Pro?
Absolutely, you have access to GDPR enhancements, no matter which version of WP-SMS is used.
The bottom line
Each website is unique in both its goals and functionality. In that way, the path to achieving GDPR compliance will vary depending on the needs of your site.
The most important thing you can do as a developer is to get to know what sort of data your website is collecting and then create a plan of action for keeping it safe. Then, ensure that processes are in place to communicate your policies and manage user data requests.
Legal Disclaimer / Disclosure
We are not lawyers. Nothing on this website should be considered legal advice. Due to the dynamic nature of websites, no single plugin or platform can offer 100% legal compliance. When in doubt, it’s best to consult a specialist internet law attorney to determine if you are in compliance with all applicable laws for your jurisdictions and your use cases.
- Date: 2018-10-09
- Author: Mostafa Soufi