A huge part of getting GDPR compliant involves getting your website in order and making sure that you receive consent for absolutely everything. For starters you’ll need visitors to agree to your terms and for every area where they can input data you’re going to need an extra level of verification in the form on an unchecked tickbox that they have to click, so that there is absolutely no doubt left that approval is being given. You’ll also need to ensure that all data is protected and that should your visitors request it, you can provide details of all data relating to them that has been stored on your site.
We’ve put together a selection of great, free plugins for your WordPress site that will help you to achieve compliancy. They’re going to be intrusive but sadly that’s the price we have to pay for being website owners in 2018 and beyond. I’ve added links so you can visit the information pages on the WordPress.org website (all open in a new tab) but don’t forget that it’s much easier to download and install them directly in your WordPress admin panel via the plugins tab.
WP Security Audit Log
This extremely useful plugin logs everything that occurs on your site, including installations, deletions, updates, posts and user activity across the site. It also rather terrifyingly shows you how many people or bots are trying to gain access to your site in the forms of 404 errors. Should someone request details of what information you store on them, you can export reports using the paid version which starts at US$89.
This is a great free service that scans, monitors and blocks visitors with malicious intent. On your dashboard you’ll be able to see all attempts to log in to your site and which IP addresses have been barred. You’ll be continually prompted to add an email address to complete installation. I did this and receive emails every time any of my plugins needs updating.
Disclaimer: the above is not legal advice and does not make you fully GDPR compliant, you are responsible for meeting GDPR compliancy on your own website.