To keep things organized, there are 3 main areas of focus we’re going to address. Data Control, Right to Erasure and Right to Data Portability.
Data Control
Since every business is different, we can’t delve into specifics on what may need to be changed for your business, but for our part, we as a company don’t collect any of your customer’s personal data.
We do not process any of your customer’s personal data through our servers and none of your website’s content is stored on our servers.
Your customer’s personal data stays on your website and in your CRM (either Infusionsoft or ActiveCampaign).
The Memberium plugin syncs your customer’s data from your CRM directly to your WordPress website using your CRM’s API and this operation occurs on your web server.
Both Infusionsoft and ActiveCampaign have taken steps to be compliant with GDPR so you’ll need to verify the the compliance of other part of that equation (which is your website).
You’ll want to review your webhost’s GDPR compliance as well as the compliance of any other WordPress add-ons you’re using.
Right to Erasure
GDPR states: The data subject shall have the right to obtain from the controller the erasure of personal data concerning him or her without undue delay and the controller shall have the obligation to erase personal data without undue delay.
We have added a feature within the Memberium plugin to more easily erase the data of a user that the Memberium plugin has processed on your website.
(available as of Version 2.55 if you’re using the Infusionsoft version of Memberium or as of version 1.5 if you’re using the ActiveCampaign version of Memberium)
Right to Data Portability
GDPR states: The data subject shall have the right to receive the personal data concerning him or her, which he or she has provided to a controller, in a structured, commonly used and machine-readable format and have the right to transmit those data to another controller without hindrance from the controller to which the personal data have been provided.
We have added a feature within the Memberium plugin to generate a copy of the data of a user that the Memberium plugin has processed on your website.
(available as of Version 2.55 if you’re using the Infusionsoft version of Memberium or as of version 1.5 if you’re using the ActiveCampaign version of Memberium)
Bottom Line
You don’t need to do anything specific to become compliant as far as Memberium goes but you’ll want to check your other systems and tools to be sure they are also compliant with GDPR. If you get a request from one of your users for erasure or data portability, you can use the new features in the Memberium plugin to help facilitate these requests.
To learn more about how you can make your WordPress site GDPR compliant you can read this article.
Please contact our support team with any questions.