The easiest way to make your WordPress site GDPR-compliant
Switch branches/tags
Nothing to show
Clone or download
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Failed to load latest commit information.


=== The GDPR Framework ===
Contributors: codelight, indrek_k, data443
Donate link:
Tags: gdpr
Requires at least: 4.7
Tested up to: 4.9.5
Requires PHP: 5.6.33
Stable tag: 1.0.10
License: GPLv3
License URI:

Easy to use tools to help make your website GDPR-compliant. Fully documented, extendable and developer-friendly.

== Description ==

Easy to use tools to help make your website GDPR-compliant.

GDPR is a whopping 88 pages of legal text. Becoming compliant takes a lot more than just adding a couple of checkboxes to your forms! But worry not, we’ve got it covered. With help from [Triniti](, one of the top business and IT law firms in Europe, we’ve put together this plugin and written a thorough guide for making WordPress sites compliant with minimal effort.

You don't need to drown your customers in pointless acceptance checkboxes if you know what you're doing!

The current version of the GDPR Framework fixes a ton of minor bugs. However, it's not yet compatible with WordPress v4.9.6. This will be added in the next major release. (Everything will still work, though.)

IF you're using a caching plugin, please make sure you exclude the Privacy Tools page from your cache. Otherwise, it won't work!

## Disclaimer
Using The GDPR Framework does NOT guarantee compliance to GDPR. This plugin gives you general information and tools, but is NOT meant to serve as complete compliance package. Compliance to GDPR is risk-based ongoing process that involves your whole business. Codelight is not eligible for any claim or action based on any information or functionality provided by this plugin.

### Documentation
Full documentation: [The WordPress Site Owner's Guide to GDPR](
For developers: [Developer Docs](

### Features
☑ Allow both users and visitors without an account to automatically view, export and delete their personal data;
☑ Configure the plugin to delete or anonymize personal data automatically or send a notification and allow admins to do it manually;
☑ Track, manage and withdraw consent;
☑ Generate a GDPR-compatible Privacy Policy template for your site;
☑ Comes with a helpful installation wizard to get you started quickly;
☑ Fully documented;
☑ Developer-friendly. Everything can be extended, every feature and template can be overridden.

### Coming up next
☐ Cookie solution
☐ Integration with WP & WooCommerce core tools
☐ Overhaul & improvements on the consent tracking mechanism, re-consent, etc.

GDPR is here to stay and we are just getting started. There's lots more to come!

### Plugin support:
The GDPR Framework currently works with the following plugins
☑ Contact Form 7 & Contact Form Flamingo
☑ Gravity Forms - [Download the GDPR add-on](
☑ Formidable Forms - [Download the GDPR add-on](

Coming soon:
☐ Ninja Forms

Still free and open-source.

Other integrations coming up:
☐ WP Migrate DB
☐ WooCommerce (postponed until the launch of their own compliance toolkit)
☐ Easy Digital Downloads

We're happy to add support for other major plugins as well. If you have a request, get in touch!

== Support the development! ==

== Frequently Asked Questions ==
= Help, the identification emails are not sent! =
The GDPR Framework uses the exact same mechanism for sending emails as the rest of your WordPress site. Please test if your site sends out emails at all using the Forgot Password form, for example.
If you get the forgot password email but not the identification email, please make a post in the support forums.

= Help, the link in the identification email doesn't work! =
Are you using SendGrid or another email delivery service? This might corrupt the link in the email.
In case you're using Sendgrid, make sure to turn off "click tracking". Otherwise, please post in the support forum!

= Help, the Privacy Tools page acts weirdly or always displays the "link expired" message! =
Check if you're using any caching plugins. If yes, then make sure the Privacy Tools page is excluded.
Also check if a server side cache is enabled by your web host.

= How is this plugin different from the tools in WordPress v4.9.6? =
WordPress 4.9.6 provides tools to allow administrators to manually handle GDPR requests. However, the GDPR framework allows visitors to automatically download and export data to reduce administrative work load.
In addition to that, we provide tools to manage and track custom consent types and also a privacy policy generator.
We are also planning to add other important privacy-related features missing from WordPress core over time.

= What about cookies? =
This is a very important aspect of GDPR which we will definitely find a solution for. We are currently working on it and will hopefully have something before May 25th.

== Changelog ==

= 1.0.10 =
* Fix fatal error caused by Flamingo integration

= 1.0.9 =
* Add support for Contact Form 7 Flamingo
* Remove nested the_content filter in the consent area editor to avoid potential conflicts with various plugins (Thanks Gary McPherson!)
* Fix some missing translation strings (Thanks trueqap!)
* Additional minor tweaks
* Update Italian translation (Thanks Rienzi Comunica!)

= 1.0.8 =
* Disable Privacy Tools page if not set via admin (fixes infinite redirect issue)
* Add additional admin notification if Privacy Tools page is not set
* Additional minor tweaks

= 1.0.7 =
* Update translation pot file
* Add partial Greek translations (Thanks @webace-creative-studio)

= 1.0.6 =
* Fix administrative roles not being able to comment via admin interface
* Fix trashed or spam comments not being deleted
* Minor usability tweaks everywhere
* Fix PHP5.6 not properly saving custom consent (Thanks @paulnewson!)
* Fix CF7 always showing as enabled in wizard
* In Tools > Privacy > Data Subjects, add the display of given consents
* Add warning about Sendgrid compatibility in the installer
* Fix issue with installer wizard not properly saving export action
* Add notice in case the settings are not properly configured
* Added Bulgarian translation (thanks Zankov Group!)
* Added partial Italian translation (thanks Matteo Bruno!)

= 1.0.5 =
* Fix installing consent tables and roles properly
* Add Spanish translations (Thanks @elarequi!)
* Add partial German translations (Thanks @knodderdachs!)
* Lower required PHP version to 5.6.0
* Re-add container alias for DataSubjectManager
* Fix for installer giving the option to add links to footer for unsupported themes
* Fix PHP notice in WPML module

= 1.0.4 =
* Fix translations, for real this time
* Add French translations (Thanks @datagitateur!)
* Fix PHP warning if WPML is activated
* Add filter around $headers array for all outgoing emails sent via this plugin

= 1.0.3 =
* Change text domain to 'gdpr-framework' to avoid conflict with other plugins
* Add Portuguese translation (Thanks @kativiti!)
* Add partial Estonian translation

= 1.0.2 =
* Fix T&C and Privacy Policy URLs on registration and comments forms
* Add basic styling and separate stylesheet for Privacy Tools page
* Allow disabling styles for Privacy Tools page via admin
* Add confirmation notice on deleting data via front-end Privacy Tools
* Change strings with 'gdpr-admin' domain back to 'gdpr'. Add context to all admin strings.

= 1.0.1 =
* Fix PHP notice on Privacy Tools frontend page if logged in as admin

= 1.0.0 =
* Initial release