Another of the elements that almost all of us have in a WordPress website are the forms and banners of subscription to newsletters, where we ask for data from the user and, consequently, we have to properly request permission to comply with the RGPD.
So let's see how we can meet the RGPD also in our newsletters and the banners we use to feed them to subscribers.
If you have these clear concepts you will not go wrong, because in reality it is very simple:
- There must be express consent of the subscription. The user must have checked a box or confirmed by mail that he / she really wants to receive your newsletters.
- You have to have that express consent registered, in case it is requested by the inspection.
- In your banners of subscription you must inform (first layer) of:
- Who requests the data
- For what
- For how long
- Rights of the user about his data
- In your subscription banners you must obtain the acceptance of your privacy policies
- You must obtain confirmation by mail of the subscription ( double opt-in )
Adapt your lists to the RGPD
If you already had a list of subscribers you must guarantee that you can show that they clearly subscribed respecting their rights, something that does not it's new For the RGPD, this was also the case with the LOPD.
But as " things happen ", you must review your lists and make sure that there is a brand that has the record of the confirmation (double opt-in) of the user, but that subscription is not legal and you must ask permission again
Each newsletter service is different, so let's see how it is done in MailerLite ]the system that I use, but they are all quite similar despite their differences.
Whatever it is, creates a new group or segment from your current list whose condition is q that have not confirmed the subscription .
Next creates a new campaign (email) …
Once decided the Subject, chooses the template, and in the case of MailerLite there is a prepared for the RGPD, called GDPR Template.
Choose this template and put it to your liking.
Just by yourself you have choose the list to whom it will be sent, that will be to your segment / group of unconfirmed users.
And when send it …
The operation of this MailerLite template is perfect for these uses because, once the list has been chosen to whom it will be sent, it does the following:
- If a user agrees to continue in the list, he creates a new segment / group called GDPR Compliance, which will be your new legal white list.
- If a user does not accept it is deleted from the original segment / group.
From this moment you will have to send your newsletters only to the GDPR Compliance list, that you can rename to your liking, because it is your safe, legal list, in which you can demonstrate the consent in case of ins peiler or request of a user.
In addition, MailerLite has a system of deletion and forgetting of subscribers very simple, which will facilitate the daily management of it.
If you use MailChimp or MailRelay I recommend this article by Antonio Cambronero, very detailed.
The following thing is that in your forms and banners of subscription to your newsletter add the two obligatory elements:
- First layer informative text on rights and privacy, as we have seen at the beginning of this guide.
Again, each newsletter system is different, but I'll use MailerLite as an example.
Go where you create your forms, embedded or popup, and create a new one.
- Activate the double opt-in, so that he user has to confirm the subscription
- Includes the privacy information.
- Includes the acceptance box (s)
In MailerLite you have to activate the 2 boxes that include the above:
- Confirmation checkbox
- Marketing permissions field (GDPR-compliant)
And, already in the form, report appropriately, as in the following example:
Some details to take into account:
- Be very specific about why you ask for the data you ask for and, above all, the destination of them.
- Be very clear about whether you will share with others the data of the users, in Do not ask for confirmation with a box for everything, if you are going to perform several actions ask for permission for each one (as in the example)
- No box must be active by default.
- Do not forget to edit the confirmation message (double opt-in) to clarify anything that is not clear on the form.
When you edit your new form, choose the list to which it will be added.
In the previous steps we have seen how to adapt the forms created in the newsletter service, and the truth is that they differ little between each other, now, every WordPress is a world.  And in this world there are many who use the Extra themes, Divi and even the wonderful subscription banner plugin Bloom and here the thing changes, because by default they are not adapted to the RGPD, we have no field that we can customize to include neither the first information layer nor the acceptance box.
What the plugin does is add a semitransparent layer on your forms and Divi, Extra and Bloom subscription banners where these texts and box will go, which you can customize to your liking and need.
Acquire the plugin with Your order will receive the link to the zip of the plugin. Download it
Go to the administration of your WordPress> Plugins> Add new and press the button Upload plugin
Choose the downloaded zip file and Click on Install now
Once installed, activate it.
Now go to Divi> Theme options (yes, you have to have Divi) and go to the tab Bloom / Divi GDPR to configure it and put your texts.
An important detail about the colors of layer superimposed, and is that the plugin detects the colors of your forms so you do not need to define any color, unless you prefer to have them in other colors the text, background and light link.
The operation of the plugin is simple, once configured the user will see your subscription form or banner as you have configured it in Bloom or Divi, and just clicking to subscribe will show the overlay with the legal acceptance layer, so you do not lose the impact of the display of your banners and subscription forms.
And that's it, easy and effective, so you can comply with the RGPD also with Divi, Extra and Bloom .