As of May 25, 2018, the so-called General Data Protection Regulation (GDPR) or General Data Protection Regulation (AVG) has definitively come into effect, a far-reaching regulation that has an impact on virtually every (WordPress) website.

The GDPR has been in existence since May 24, 2016, but from next year every organization active in Europe that processes personal data can also be held accountable for it. Where necessary, the Dutch Data Protection Authority will issue fines of up to €20 million or 4% of a company's global turnover, whichever is higher.

As the owner of a website or shop, you are actually always a processor of personal data. Just think about:

  • an e-mail address for a contact form, order form or to post a comment
  • login by members, customers, employees, even if it is only in the back-end (i.e. in WordPress!)
  • database of orders
  • registrations for events

The rules also apply to all partners and suppliers you deal with. The risks can be covered through a Processing Agreement, but because 100% watertight, clear-cut information about what is and is not considered 'good' is lacking, it is quite a job to get everything in order. Van Ons will therefore actively inform and assist customers in the coming months so that they are 'GDPR proof' by May 2018.

November 2017: Van Ons has created the WP GDPR Compliance plugin to assist directly in WordPress itself. Download it here!

Want to know more now? Please feel free to contact us at

Also read the 'Preparing for the GDPR' (in 10 steps) of the Dutch Data Protection Authority.