Jetpack 6.0 Takes Steps Towards GDPR Compliance

Jetpack 6.0 is available for upgrade. It comes with improvements to the social media icons widget, enhanced brute force protection, and better compatibility between WooCommerce and Jetpack.

Its headlining features though are privacy related as the General Data Protection Regulation (GDPR) is set to go into effect May 25th. In 6.0, Jetpack has a dedicated privacy settings page that links to privacy documents and includes a way to opt-out of activity tracking.

These settings can be accessed by clicking the Privacy link at the bottom of the Jetpack Dashboard page.

Jetpack 6.0 Privacy Settings

The 'What Data Does Jetpack Sync' page outlines what data is used, how it's used, the relationship it has with the WordPress mobile apps, and provides an inside look at how Jetpack works.

These are the first steps towards GDPR compliance with more updates planned before the regulation goes into effect next month.

11 Comments


  1. I find it interesting that this comes on the heels of Facebook announcing that they have no intention of fully complying with the GDPR.

    I’ll bet at the end of the day that the US government will cave and shield ALL US businesses from obligation to comply.

    We have no intention to spend one dime to comply with this ever.

    Report


      1. Laws like this decided by the European Parliament (EP).

        Privacy and data protection is not a joke. Nothing to do with standardization of qualities in the trade of goods, like bananas.

        EU going for this, seriously, is a win for all common people and users of digital systems. At least for Europeans.

        Report


    1. I do worry about folks in the WordPress community being dismissive of GDPR, they are either ignorant of what it actually is about or don’t care about privacy and web security.

      “Won’t spend one dime” If you already operate in a way that protects your customers privacy and security why would you need to? If you don’t, why on earth would you announce that publicly?

      Report


  2. Nice, if Jetpack would become GDPR compliant.

    But the links to some documents are not enough, and I didn’d find the mentioned way to opt-out of activity tracking.

    Report


  3. “that links to privacy documents and includes a way to opt-out of activity tracking”

    That’s curious, because GDPR requires explicit, informed opt-in. Opt-out is not permitted. Can anyone clarify what JetPack really does here?

    Report


    1. There is an automatic opt in when you connect your site with WordPress.com and you agree to the terms and conditions.

      I don’t believe this is fully GDPR compatible but this would require changes on WordPress.com. I have created an issue on GitHub for this: https://github.com/Automattic/jetpack/issues/9233

      There will be more improvements in future updates.

      Report


  4. WordPress itself is also well on its way to provide some much needed privacy tools in admin.

    They will help site owners comply with the GDPR, but can be used to facilitate easy and correct management of personal data in general, no matter the laws..

    Report


  5. What about the Jetpack comments/discussion module? At minimum, that’s going to need an opt-in checkbox to allow explicit consent for the information collected by the comment form, isn’t it? Aside from the information entered voluntarily in the fields, there’s at least IP address also collected.

    Report


  6. Do you know when is wordpress.org going to provide tools for GDPR for comments and account deletion ?

    Report

Comments are closed.