On May 25, 2018, the European Union is enacting the General Data Protection Regulation (GDPR). All website owners are obliged to follow this regulation to protect the privacy of their visitors. The following document explains what YOOtheme Pro, WordPress, Joomla and 3rd party services mean for your visitors' privacy, what data is collected and what necessary steps you should take to make your websites GDPR compliant.
Disclaimer: This information is not a legal advice and is for informational purposes only. Learn more about the GDPR from the European Commission’s Data Protection page.
Widgetkit itself does not store any personal information. There are no tracking-cookies created or saved.
In Widgetkit you can make use of 3rd party services, for instance, Google Maps, Twitter, YouTube, etc. These services as well as WordPress or Joomla are all working on making their products and services GDPR compliant. This document only focuses on their officially recommended solutions. Here is a short overview:
| 3rd Party Service | Possibly used in |
|---|---|
| Google Maps | Maps widget and any widget with a location field |
| YouTube | Media field in any widget |
| Vimeo | Media field in any widget |
Widgetkit is available as plugin for WordPress which itself offers a number of privacy features. There is a cookie opt-in for the comments, a dedicated privacy policy page, and data handling tools to export and erase data from your WordPress website.
Widgetkit is available as extension for Joomla which will offer a number of privacy features with their next releases. There will be a new privacy extension with an API for 3rd party developers, a tool to handle the consent of registered users, and data handling tools to export and erase data from your Joomla website.
When using any Google Service, you agree to the Google Privacy Policy. It explains in detail what data is collected, why it is collected, and what happens to it.
Using Google Maps on your website will create a NID cookie on the client device. The cookie is used to remember your preferences and for advertising. More information about the different types of cookies used by Google is available in the Google Policies - Types of cookies.
Google Maps has not announced any solution on how to comply with GDPR. For that reason, it is your responsibility to inform your visitors in the privacy policy about the use of Google Maps and their tracking methods. Mind that Google Maps have updated their Terms of Service that will take effect on June 11, 2018.
YouTube offers a privacy-enhanced mode for embedding YouTube videos. Enabled, YouTube won't store information (cookies) about visitors on your website unless they play the video.
When you Enable privacy-enhanced mode in the YouTube embed settings, the video URL changes to https://www.youtube-nocookie.com. Use this URL in the video element or whenever you add YouTube videos in YOOtheme Pro to embed the video with the privacy-enhanced mode.
Once a YouTube video is played, a NID cookie is created. For that reason, it is your responsibility to inform your visitors in the privacy policy about the use of YouTube and its tracking methods.
Vimeo does not offer any privacy settings yet. Their Privacy Policy and Cookie Policy explain what data is collected, why it is collected and how it is used. Please inform your visitors that you use Vimeo services in your privacy policy.
