GDPR: how to make the plugin really GDPR safe?

Hi @csigncsign!

The only way in which our plugins connect to Google is through the reCAPTCHA. If reCAPTCHA is not enabled, we will not connect to Google in anyway. None of our plugins use Google Fonts.

The libraries that you would see in the developer console for the recaptcha look like this: https://imgur.com/a/IBots6T.

Also, I don’t think this statement is correct:

Due to the GDPR in Europe it is not allowed to connect to external servers, especially not to Google…

Connecting to external services is an essential part of every website. Any time you use a CDN you’re connecting to an external server. All WordPress websites connects to external servers (on the back end, at least) to create the Upcoming WordPress Events dashboard widget.

Are you sure it isn’t the theme that is enqueue’ing this webfont? And are you sure using Google Fonts is not allowed by GDPR?

Thank you,
Kevin.

Hi,

thanks, I will need to dive deeper in it …ReCaptcha is not enabeld at my end.

My statement concerning the GDPR (in Germany DSGVO) is right – in Germany. Here it is not allowed to have connections to Google or Facebook. It may be that other countries do not handle this so strictly.

So Google Analytics is completely banned in Germany? Google Maps?

If you send me a URL to your website I can try to track down which plugin/theme is trying to enqueue the webfont.

Cheers,
Kevin.

Yes, I use for example the ENFOLD theme and they have a solution for it:
google maps has got there a placeholder image that is displayed until the user requests the actual map (https://kriesi.at/archives/enfold-4-4-and-the-gdpr-general-data-protection-regulation).

That’s very interesting. Thank you for sharing that document.

I am curious, csigncsign. Do those shortcodes in Enfold only work for accesses to Google made via Enfold, or do they work for any means for accessing Google services?

I don’t know, what you exactly mean … this is a feature of ENFOLD, if you mean the placeholder that I mentioned above