You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardexpand all lines: README.md
+17-7
Original file line number
Diff line number
Diff line change
@@ -3,22 +3,32 @@ A redaction/data-minimization plugin for WordPress/Woocommerce
3
3
4
4
## About
5
5
6
-
This project is intended to build a plugin to remove/blank fields containing sensitive and personally identifiable information (PII) from a Wordpress/Woocommerce installation, once that data is no longer needed.
6
+
This plugin provides fine-grain control over the deletion of customer data from a Wordpress/Woocommerce shop. Additionally, the plugin allows the removal of specified customer shipping and billing fields that are backed up in the user's account, without removing the user account itself.
7
7
8
-
We assume that you have already taken steps towards _data minimization_, meaning you collect as little information as you need.
8
+
By default, Woocommerce offers GDPR user account deletion. But Woocommerce can either delete a user account *or* leave it as-is with all the personal information (such as the shipping/billing address) backed up.
9
9
10
-
However, by default, once you collect information like a customer's shipping or billing address, Wordpress and Woocommerce keep it forever. There are options to automatically delete a user after a period of inactivity. But in many cases you need to keep the user account active, such as for example if they have bought a downloadable item or need access to an access-controlled resource. In those cases you need the user account but you don't need some fields within that user account. You may also need to keep order details for tax reasons or customer service reasons. Again, you need the record but not all the fields within that record.
11
-
12
-
The purpose of this plugin is to remove the fields you no longer need, while keeping the user and order records that you can't discard.
10
+
With this plugin you can remove these "backups" but keep the user account. This is especially important for shops that sell both virtual/downloadable products and physical products because the user account must be kept (to continue offering downloads) but the shipping information must be deleted.
13
11
14
12
## Why Wordpress/Woocommerce
15
13
16
14
Because I need it for that platform, but also because Wordpress and Woocommerce are very popular and widely used platforms. If we fix the PII problem there, we fix it for the largest number of people.
17
15
18
16
## License
19
17
20
-
This project is released under a GPLv3 license
18
+
This project is released under a GPLv3 license.
21
19
22
20
## Status
23
21
24
-
There's nothing here yet. Expect to see an intial specification, some milestones and then a minimally viable plugin to start.
22
+
The plugin has been tested on Wordpress 5.6 and Woocommerce 4.8.0.
23
+
24
+
## Install & Setup
25
+
26
+
It is best to do this on a sandbox/staging copy of your site first and see what it does. Some of the actions only happen daily, so you will need to wait to see the results
27
+
28
+
* Download the ZIP file from this repository (green "Code" button, "Download ZIP")
29
+
* Upload as a plugin on Wordpress (Plugins/Add New/Upload)
30
+
* Activate Plugin
31
+
* Setup in Woocommerce/Settings/Accounts & Privacy
32
+
* Enable the additional option ("Remove saved address under customers' account daily") if you want
33
+
* Fine tune Woocommerce's "Personal data retention" time delays (see the "?" help to understand what each setting does - some delete accounts!)
34
+
* Fine tune the field selection ("Precise control for Data Removal")- check the fields you want removed, un-check the ones you want kept
0 commit comments