You may have heard that in May 2018 a new EU directive, General Data Protection Regulations (GDPR), comes in to force which deals with user rights regarding how businesses store and use their personal data.
These posts provide a good overview from a technical perspective:
- https://premium.wpmudev.org/blog/gdpr-compliance/
- https://www.willows-consulting.com/gdpr-for-ecommerce/
In many cases websites will most likely need to get their Privacy Policies updated to explain where user data is stored, website security and how data can be removed, and a consent box added to all forms confirming that the user agrees with these terms ahead of form submission.
Clients will need to review what needs adding to their sites to ensure they comply; whilst we can advise in a technical capacity, ultimately we recommend legal counsel to ensure compliance.