How to comply with the RGPD in your Ecommerce with WordPress (free webinar)

Well, to continue helping as we can to comply with the new European data protection regulation, the RGPD this Thursday May 31, starting at 18:00 (peninsular time of Spain) we have a new free webinar in which, on this occasion, we will see in detail how to comply with the RGPD in your Ecommerce with WordPress .

We will review the tools that already include WordPress, WooCommerce and the main plugins that help us to fulfill the RGPD, and we will also see some important aspects that, in an Ecommerce, are vital, and help us both to be legal and to continue selling, that's what it is about right?

So do not think about it, we will answer all the questions that arise, in this seminar that, thanks to Yith we will have for free on this topic so interesting ante and candente

To sign up simply follow the link in the following image

Click here to join the free webinar

Once you sign up you will receive a confirmation email with the final link to the webinar ( Join webinar online ).

Note: Your name and email will not be shared with anyone or used to sell you anything, only Yith uses them to manage webinar assistance. In addition to being the mandatory way to use the webinar system.

Loading …

How to meet the RGPD in WooCommerce • WordPress Help

Last update: 05-22-2018

There are fewer webmasters left who have not yet updated their sites to comply the RGPD the new data protection regulation with entry into force on May 25, 2018, but and the owners of online stores with WooCommerce? Do we have to do something different to the adaptation of a WordPress website to the RGPD ?

Yes, there are still some nuances, so let's see a quick but detailed guide how get your shop created with WooCommerce to comply with the RGPD .

Terms and conditions

If for adapt any website, also your Ecommerce you have to create a privacy policy with the new guidelines of the RGPD, in any online store there must be a page of t terms and conditions of use and purchase should be aligned with these precepts, namely:

  • What data are requested in the purchase process
  • What are they asking for
  • Who stores them and how long

Y all in a simple language to understand for anyone.

Of course, your page of terms and conditions of your Ecommerce should include all the usual sections of a page of this type (responsible, forms of payment, system of returns, claims, contact, rights, procedures, etc.)

And, in addition, you must include a link to the privacy policy, for any information that needs to be clarified about the use of your Ecommerce data. [19659014] Resumiendo : Add link to your privacy policy / Add the first layer of information of the RGPD

Privacy policy

If you have already updated to WordPress 4.9.6 or higher Tools are included Privacy documents that will also help to comply with the RGPD in your Ecommerce.

The tool of creation of the privacy page ( Settings> Privacy ) includes, in addition to the utility for create the privacy page with default texts for WordPress, a link to a privacy guide.

Well, if you click on that link you will see a help page in your WordPress with WordPress example texts, but also from other plugins that are compatible with this new tool.

Y, Hallelujah !, WooCommerce includes its own example texts also very useful, that you should incorporate and adapt to your current privacy policy.

At the end of the text there is a button to copy the chosen text, which you can then paste in your p privacy policy.

The text suggested by WooCommerce is especially interesting, since it includes details about the information it collects at each moment of the purchase process, user registration, etc. .

There you will discover that you will have to add to your privacy policy additional information of, for example, what services of payment gateways, shipping platforms and marketing services you share information about your Customers

Choose the privacy page

From WooCommerce 3.4.0 you no longer just have to select the terms and conditions page, in WooCommerce> Settings> Advanced but in the new page of WooCommerce> Settings> Accounts and privacy you have a new option to choose the privacy page .

Select and save the changes

Resumiendo : Use the WordPress privacy guide to add to your privacy policy the information collected by WooCommerce and data on payment gateways, CRMs, etc. / Choose the privacy policy page in the settings of Accounts and privacy of WooCommerce.


WooCommerce, likewise, collects additional cookies which you must incorporate into your information management system and acceptance of cookies.

If you use a plugin like GDPR add them as essential and obligatory cookies because they are vital for the operation of the online store. And it clearly indicates that if these cookies are not accepted, Ecommerce will not work .

You can also use any other plugin that blocks cookies .

Summing up : Adds WooCommerce cookies to the information and acceptance process.

Adds the first layer of information

With the RGPD, in addition to a clear and complete explanation in the privacy policy on the use of user data. , before saving each data we must inform you briefly about it in the well-known as first layer of information .

WordPress, since version 4.9.6, has included a box in the comments, that if it is not marked, it does not save the session cookie, but that is clearly insufficient.

In WooCommerce we collect data in our online store in the following pages:

  • Customer registration in the page of ] My story ta .
  • When finalizing purchase, where we gather more information, with difference
  • Product reviews, which come to work as comments

To add this first layer of information we will do so …

Accounts and privacy

In this new page of adjustments from WooCommerce 3.4.0 that we have seen before, we must customize the texts of the first layer of privacy policy in the registry and at the end of the purchase.

] Here you can take advantage of and offer that first layer of information with:

  • Responsible for data processing
  • Purpose of data processing
  • Legitimization of acceptance
  • Communication of data
  • Rights of the client [19659011] That, doing a little trick so that it does not take up too much, you can put inside an HTML tag of textarea like this:

    If you put it in the fields for the record and the final purchase page you'll get something like this:

    In addition to this, for ensure that accounts are created, while not saturating requests for information to the customer in such a delicate moment as the payment, activates the following boxes in WooCommerce> Adjustments> Accounts and privacy :

    • Allow customers to create an account at the end of purchase
    • Allow customers to create an account on the My Account page
    • When creating an account, automatically create the user name from the address e-mail address
    • When creating an account, automatically create a to password for the account

    With what, without need of any plugin or additional codes, only with the adjustments of WooCommerce and a little bit of skill, you get to comply with the RGPD as far as information in the first layer is concerned.

    Resumiendo : Add the first layer of information and link to the privacy page in each registration form / Activate the default registration requesting the minimum possible data.


    Here I'm going to pull down the street in the middle, and so we kill two birds with one stone . Let me explain …

    What is a problem that in an Ecommerce can leave ratings users who are not verified buyers ?

    Clearly could use this field to leave bad reviews of your products that, if you have assets the rich fragments (the stars) will damage your SEO, because nobody clicks on a product with few stars, we are like that right?

    It is true that we could use the code to add the first layer of information to the valuations with the code we saw for meet the RGPD in the comments then it also serves.

    But what I propose is faster, cleaner and cash : allows valuations only to verified buyers that is, to registered users.

    For this you only have to consider two WooCommerce settings:

    1. In WooCommerce> Settings> Cuen tas and privacy uncheck the box " Allow customers to place orders without creating an account ". This forces the registration (informed as we have seen in the previous point) of all buyers.
    2. In WooCommerce> Adjustments> Products check the box " Reviews can only leave them verified owners ". This ensures that the customer who leaves an appraisal has already registered and accepted your privacy policies and terms of conditions and, of course, has purchased the product.

    Much better, right? Again we comply with the RGPD without installing anything or adding codes .

    Summing up: Allows product valuations only to verified buyers, to make sure that they accepted the policies when registering … and to avoid any displeasure. [19659152] SSL

    A priority of the RGPD is that we guarantee the security of the data of our visitors and customers so install an SSL certificate is required, in addition to its many other advantages .

    Once installed, active and with the relevant redirects, go to WooCommerce> Settings> Advanced and activate secure payment in Force secure payment

    Resumiendo: Force secure payment with an SSL certificate.

    Google Analytics

    If you use Google Analytics as a tool to track traffic and use your website you will have to integrate it with WooCommerce as we already saw that's the first thing.

    And, once this is done, you must adapt Google Analytics to comply with the RGPD by following the steps in this guide if you had not already done so. [19659014] Resumiendo : Adapts Google Analytics codes to the RGPD

    Email marketing

    If you use, like everyone else, some sales and loyalty strategy through email marketing make sure get express consent and previously informed .

    Come on, do not use in mode malote the plugins that allows you to add buyers and visitors to mailing lists automatically.

    All these services offer the option that the subscription box is checked or not by default. The RGPD forces us to not be marked by default and also to report where your data will go as we've seen before, so be good.

    The same for your forms, embedded or emerging, subscription, make sure your newsletter service provider allows you to incorporate the acceptance boxes and the first layer of information.

    I use MailerLite and is fully adapted to the RGPD, besides being in Spanish

    Summing up : Do not use active boxes by default in newsletter subscriptions and inform about the use of the data.


    To finish, do not forget that there are plugins that may be collecting information from your users . So make sure they are adapted to the RGPD.

    Search using the GDPR tag in the plugins directory, find out the # GDPR-compliance channel of WordPress Slack and follow the GDPRWP project which seeks to standardize the compliance of the RGPD in the WordPress plugins.

    Meanwhile how do I know if the plugins I have active comply with the RGPD? [19659005] Good question. I would encourage you to do some checks:

    • Do you collect data from users of your site in any way? (use this telemetry tool )
    • Do you report what data you collect and how you do it somewhere?
    • Do you share this data with others?
    • Is it in the official directory of (on it is forbidden to send data to third parties)

    Resumiendo : Use only plugins that comply with the RGPD


    How not, make sure that your WordPress complies with the RGPD in all its aspects (comments, forms, privacy policy, data management, etc.) since is part of your Ecommerce it is the base on which it is based. [19659005] So review these articles:

    Summarizing: Make sure you also apply WordPress measures to comply with the RGPD.

    Fulfilling the RGPD with WooCommerce is simple

    As you've found, actually making WooCommerce comply with the RGPD is quite easy and does not even require specific additional plugins.

    In fact, the registration part comes much better prepared than WordPress, which does not incorporate any tool to add acceptance nor first cap

    So, come, get the batteries, the fines are aupa! And it's for a good cause, respect for our rights.

    Loading …

    That may also help you:

WooCommerce 3.4 incorporates RGPD support • WordPress Help

Although plugins are already coming to light adapt your online store to RGPD it seems that WooCommerce also the batteries have been installed and its next version, the 3.4, will incorporate new features to help our Ecommerce comply with the new European regulation [1945900].

Scheduled for May 23, only 2 days before the entry into force of the RGPD (yes, quite fair), WooCommerce 3.4 has some interesting developments despite being a minor update.

Compatibility with the RGPD

This new version has included a new tab of adjustments to help managers of online stores with WordPress to meet the RGPD .

In this tab, in addition to unify several settings that were previously divided between the options of finalizing purchase and configuration of the accounts some additional settings have been included:

  • Possibility of adding the privacy text to the pages of My account and Finalize purchase
  • Integration with [19659010] exporter of data that will come soon in WordPress also to meet the RGPD
  • Tools for clean (delete) and anonymize old orders that do not need more billing processes
  • Tools with which remove optional fields at the end of purchase in the process of payment

Taking a look at captures of the first beta, already available, we will have these adjustments …

The first and second part of the adjustments is a revision of those account creation options that we previously had spread over other adjustment tabs.

Below we can (and should) specify the page with our policy of and privacy to then write the visible text in the first layer of privacy information on both the registration page and the payment page.

Here we can use the shortcode [privacy_policy] to automatically add a link to our privacy policy page

To finish, we can also specify how often we want to send to the wastebasket or to make anonymous customer data .


As regards the integration with the WordPress data export tool which will be available in WordPress 4.9.6, WooCommerce will be compatible with it, being able to export the data related to transactions of the online store.

According to the first sketches, this tool could be something like that …

And as for the possibility of customizing which fields will be seen or not at the end of the purchase, est to functionality you will see it in the Customizer . as with the personalization of the privacy texts.

Will there be more changes in WooCommerce 3.4?

Yes. Although it is a minor revision there will be other changes, in this case not related to the RGPD.

Changes in the payment gateway settings

Now there are all the options integrated each one in the tab of each gateway, and one page where you can change your order in the payment, and access the settings of each.


WooCommerce uses the MaxMind GeoLite database for geolocation during the payment, in order to automatically determine the customer's country in the payment.

But it turns out that the GeoLite database has been abandoned by MaxMind and now it has been replaced by GeoLite2, which will be the one that incorporates compatibility WooCommerce.

Once installed, as before, you no longer have to do updates, they are automatic.

A new requirement is that GeoLite2 requires at least version 5.4 of PHP, so if you have not updated PHP it will not be possible. ás to use geolocation in WooCommerce with GeoLite2.

In these sites the REST API will be used to geolocate, which is a slower method, so I recommend that better update PHP, which is easy and has many benefits

Multisite Desktop Widget

If you have a WordPress multisite installation with several online stores with WooCommerce, from the main site you will now have a widget that will display the latest orders from the entire network.

More improvements

Other improvements and changes in WooCommerce 3.4 are as follows:

  • Restriction of coupons via e-mail jokers . Now, using wildcards, you can set up coupons to associate them with similar emails. For example, students, corporate emails, etc.
  • Users can now choose their visible name on the page of My account .
  • Improvements in the search of products in administration including support for empty words and search for multiple products in the same query.
  • HTTPS notice required in administration. So you already know, if you do not have an SSL yet and you're late installing it .
  • Now you can use product IDs and categories in shortcodes instead of just slugs.
  • Many more improvements

Obsolete functions and methods

As with every update, there are methods and functions that have become obsolete:

  • WC_Geo_IP is obsolete. Review above the change to GeoLite2
  • WC_Widget_Product_Tag_Cloud :: _ get_current_taxonomy obsolete by WC_Widget_Product_Tag_Cloud :: get_current_taxonomy .
  • WC_Widget_Product_Tag_Cloud :: _ topic_count_text is obsolete by ] WC_Widget_Product_Tag_Cloud :: topic_count_text .


It is estimated that the definitive candidate version will be on May 9, and the public version on May 23.

Loading …

Maybe you too help:

WordPress plugins that will help you meet the RGPD • WordPress Help

Last update: 05-21-2018

A few days before the obligatory nature of fulfilling the RGPD (or GDPR) is still a lot of people which has not yet implemented the changes that must be introduced in our WordPress websites to adapt to the new legislation protecting the privacy and rights of users.

But since we are lucky enough to use WordPress there are some plugins that can help us these are the most interesting ones I have tried and can help us in the technical part of compliance with the RGPD .

[19659004] Well yes, it is not a plugin, but the same WordPress core is being adapted right now and, hopefully in time, there will be an update that will incorporate tools to help us comply with the RGPD . [19659006] Display and export of user data.

  • Acceptance box in comments and access and registration pages.
  • Simple creation of privacy policy page.
  • Privacy center with main utilities.
  • Also WooCommerce launches on May 23, two days before RGPDazo an update in which it includes its own page of privacy settings in which you can customize the acceptance boxes besides the management of deletion of user data.

    Curious this plugin. Actually does not serve to fulfill any requirement of the RGPD but it is a kind of checklist like the tool Facilita of the Spanish Agency for Data Protection, which asks you questions about the use of your website and, based on your answers, it tells you what documents / communications you have to create.

    The penalty is that it is not in Spanish, nor does it offer standard documents, but as a guideline is pretty good.

    Of course, if you want a truth check of the documents you need and a tool that automatically generates them nothing better than the Lexblogger application

    One of my favorite plugins to help us meet the RGPD

    is entirely in Spanish (my time cost me) and offers tools to easily and automatically add texts and boxes acceptance of the pol Privacy Policy.

    Integrates into WooCommerce, the WordPress comment forms, the most popular contact forms and even bbPress.

    Also, the plugin goes away updating almost every day offering integration with more services.

    A great plugin for to include the first layer of information and acceptance of your privacy policies .

    With this simple name it is presented up to now the best and most complete plugin to help us meet the RGPD there is nothing.

    It helps you with a lot of things:

    • Complete management of requests and protection claims, deletion, rectification and review of data of users. Not only does it offer a shortcode to include a button from which to request them, but complete confirmation emails, administration notices and tools for the complete management of this type of requests. Deletions, for example, are automatic if the user does not have content (otherwise they require revision) but always with double confirmation and even security token.
    • Search, revision and export (in XML or JSON) of user data.
    • Audit record for unregistered users.
    • Telemetry : Automatic identification of sending data by WordPress and plugins, with auto-deletion, to know what plugins or what of your installation sends data and what data it sends to external servers (brutal).
    • Personal data breach management . If a data breach is detected the data protection officer s can from here send mass (scheduled) emails to the users, informing in the legal terms of the breach, the committed data and the measures to carry out.
    • Automatic detection of changes in the privacy policy automatically warning also the users / visitors of the changes and asking for their acceptance to be able to continue visiting the web (fantastic)
    • Generation and complete management of own and third-party cookies with blocking and / or mandatory or optional acceptance. Also the pop-up window is great, the best I've seen.
    • And above the help on each screen is great.

    Here are some screenshots of what you'll find:

    To finish off this gem of plugin, includes shortcodes and help functions with which to generate buttons, consents, include or exclude codes and cookies of consents, almost everything .

    Essential! The best tool to help us meet the RGPD . It does not have everything, but what it has does it perfectly, at an impressive level of detail.

    Well yes, you need a data protection officer and as you surely have to be you, why not use a tool that records all the activity of your WordPress and, in passing, help you to detect possible data breaches?

    For this purpose nothing like this plugin, absolutely brutal and complete .

    Record all the activity of administration and navigation of your WordPress, for know at all times what happens, who does it and can take action if necessary .

    You can configure warnings and settings general alerts …

    And configure on what alerts will be generated with integration with plugins as important as WooCommerce or Yoast SEO. [19659004]

    Another effective p lugin to guarantee the monitoring and registration of our web activity. Much easier to configure than the previous one, which does not mean it does not notify you of everything.

    Its advantage over the previous one is that the automatic notices, based on rules that you define, are free.

    And yes, also you will need a good security plugin, which protects your site and your users from attacks and security breaches and data privacy .

    I personally recommend the one I use and recommend to all my clients (and friends), iThemes Security, very complete and easy to configure.

    Just do not forget to activate the most important privacy and security settings, namely:

    • Hide desktop: to change wp-login.php or wp-admin for something else.
    • Detect changes to files.
    • Change prefix of database tables
    • Protection against force gross
    • Reinforcement of password security
    • Deactivate X ML-RPC
    • Protection of system files
    • Avoid PHP execution in WordPress folders

    If you want, here you have the perfect configuration of this plugin but this is a good start for protect your site and your users.

    Great plugin for cookie control. In your settings, once you activate them, you have a magic setting: Block all cookies in body .

    And besides, you can then block one by one scripts, iframes And embeds that use cookies, adding them from a list easier impossible!

    What's more, if you look at the previous capture, you'll see a box for include custom scripts that do not enter the categories of cookies in the lists, so that you add there the scripts you want to block yes or yes .

    Also, you have a section in which to include scripts that you want to save from the burning of cookies which works the same as the previous one but the other way around

    Just do not get excited, or you can leave your website like this …

    Web with ZERO cookies

    Is it already?

    And already, as far as this is concerned. There are many more plugins but this combination at the moment is almost perfect, and covers most of the requirements of the RGPD with regard to the technical part.

    Keep in mind that there are more things, such as the management of newsletters, the double verification in everything you ask the user, and especially the accurate but understandable information of the data you ask users:

    • What do you store
    • Why do you store it
    • Where do you store it
    • How long you store it
    • What will you do with what you store

    And, of course, always offer the user full control of their data and the right to be forgotten. Also, remember that the RGPD does not annul the rest of the legislation in force. You still have to comply with the LOPD, the LSSI and the law of cookies.

    You have more information about how to apply the RGPD in WordPress in this series of articles .

    Loading …

    Maybe also help you:

    Add options and add-ons to your products on WooCommerce

    With how difficult it is to close sales at times in an online store, let alone if we offer multiple options and configurations for each product, either as alternative products or attributes.

    But there is another way to do it, much better, and it is through product complements, as additional or complementary options of a product [1945900]

    Imagine, for example, a base product such as a portfolio, that the client can customize to add customizations. Or a mobile phone to offer to add headphones, speakers or a cool case, all without leaving the product page.

    With this strategy you will get more sales and increase the amount of the cart as easily as possible and, above all, in a simple and transparent way for the client.

    Of all the plugins that I have tried, the one that best gets the balance between functionalities and simplicity of use is WooCommerce Product Add-ons .

    Others, like Product Add-Ons have the problem that each option has its own button to add to the cart, which complicates the sales funnel .

    In addition, product add-ons are global you can not apply them to just one variation. In fact do not work in the variations only globally in the product.

    This is a problem, because it does not allow all the possible personalizations, because imagine that you can only add a complement to one of the variations, for example, the personalized engraving only to the variation of the product in metal, and not to its variation in plastic, for example.

    On the contrary, WooCommerce Product Add-ons works for both products global as for its variations. It's perfect there are no exceptions.

    Important adjustments

    As always, before getting involved in adding add-ons to products or their variations it's important to configure the plugin to your liking .

    In your settings you can control all the display settings of the product add-ons as I explain in the following captures …

    Do not forget the display settings of the description emergent e of the add-ons, which always helps the client to know what it adds …

    And if you add the possibility of uploading files as a complement, for customizable items with photos, logos, etc., configure these settings to your liking and need:

    And, returning to the theme of the product variations, you can customize its appearance and visualization ] …

    Adding product complements

    The possibilities as you can imagine are endless from offering customizations to products, to directly selling only customizable products such as t-shirts or backpacks.

    You can create global supplements which apply to all products in the store, or only applicable to specific products or variations depending on you. [19659003] In all the cases the process happens, first, to create a group of complements, and you can do it directly in the page of a product or from the new menu Products> Complementos of WooCommerce.

    For the global complements I recommend you do it on this page, and those of each product or variation when creating or editing the product, in the new tab called Product add-ons .

    [ 1 9459029]

    Global or specific product add-ons

    The first thing you must decide is, if you have created global product add-ons, it is whether to apply them to the products. For this you will have the box of Disable global which you must check yes or yes if you do not want it, but they will appear in your product in addition to the specific ones.

    Customizing groups of complements

    Decided The above can manage any new or existing group. To add a group of add-ons (options) to your product, give it a name and then press the button of Manage .

    On the next screen you must decide whether to apply to one or more products to all (blank), or if it applies to all but the products or categories you exclude.

    It is also important to specify whether it will be a hidden group, private or only visible by the administrators (HERE GOES SOMETHING EXPLANING IT)

    Once you save the changes (do not forget) you can switch to manage the add-ins .

    The first thing is to create your first add-on:

    And here the magic begins. First choose the type of display of the complement, to choose between:

    • Multiple selection box
    • Color – Great to offer a color selector of your products or variations
    • Tags
    • Multiple labels
    • Number (quantities)
    • List of selectable elements
    • Single selection button
    • Text
    • Text area
    • File – For the client to upload his file

    From there, it is necessary to fill in the fields of each option you offer, add more, whatever you want.

    And the best thing is that in each option you can change the type of complement and visualization , in addition to …

    • The image of the complement
    • Title and description of the complement
    • To which variation does it apply (if you do not choose any at all)
    • Apply a conditional (OR or AND) so that it also complies with another option (brutal!) [19659034] If you want to set an add-on limit or you can only choose one
    • If you want the image of the add-on to replace the product when you choose it
    • If it is mandatory to choose any option of the add-in
    • Option label , Description, price or percentage or multiplier that will be added to the price of the product (or not)
    • Pop-up description

    And to save time you can copy options of complements, complements or even groups of complements with just click on an icon

    The product with add-ons

    As you can see, the result of the product will depend a lot on the options and complements that you have, this would be just an example in which the default option is engraving, without cost, giving as an option in the variation Hardcover the gold engraving.

    It's just an idea, the possibilities are really almost endless. And all in one click, without additional buttons. When the product is added to the cart it goes with all its customizations, with its complements.

    And, of course, it will appear, with total transparency, in the cart, the payment and the order:

    The perfect plugin

    As I have mentioned before there are other plugins that offer to add add-ons, but the easiest to use, professional, but especially perfect, with everything you should have, is WooCommerce Product Add-ons .

    It offers an essential functionality for any professional online store that offers options or accessories to its products (almost all) and if you want here you have discounts so you can save a little money if you need it.

    Loading …

    That may also help you:

    How to disable payment gateways according to the shipping method

    There are many and diverse reasons why a manager of an Ecommmerce may want to deactivate specific payment gateways according to the shipping method .

    In this article we will see how, by means of a few lines of code, you can deactivate payment gateways based on the shipping method chosen by the customer in the time of payment.

    In this example we will deactivate the payment gateway ' bacs ' (bank transfer) for the shipping method ' local_pickup ' (collection local).

    To begin we need to have the ID of both the payment gateway and the shipping method.

    To know the IDs of the payment gateways you can see them in the corresponding settings section to the available payment gateways and the met shipping period. Just go to WooCommerce> Settings> Finish purchase below all, next to the gateways you will see their IDs

    Get the IDs of the shipping methods is something more complicated . To do this you must open the Navigator Inspector and identify the attribute value of each radio button available.

    So, for example, you will see that the ] value of the local Pickup button is local_pickup which is the ID of that shipping method .

    Now we just have to add the following code ] to our utilities plugin or to the file functions.php of the active theme.