DSGVO: Do not hire – change!

DSGVO what? In fact, we worked on our website amazedmag relatively early with the topic of the new General Data Protection Regulation, but needed several attempts, because we got each time on the subject of a headache. Who should understand this official language? We are here on the Internet, where everything is quick and easy.

The GDPR taught us but different. Fast and DSGVO does not exist. At least not if you want to be on the safe side as a blogger. Terms like “SSL” and “anonymizing the IP address” flew around our ears. And while we nodded and said, “Let’s do it all,” the question still remained: “Yeah, how the hell?”

Sure: In ten years of being a blogger, you can acquire a lot of technical knowledge, make minor html changes and extend plugins. With the DSGVO, however, so many possible small changes were added that we sometime grumbled our heads.

Rescue Point was our programmer at the end. He had to know what is missing or what the common blogger on the internet 2018 needs. In fact, the answer came: “I have no idea, just fox myself in – and everyone wants my help.”


OK. Reinfuchsen was the keyword. Together with our programmer, who had a few more hysterical customers by his side, we dug into the topic and slowly got closer to it. Almost two months after the entry into force of the GDPR, we can draw a first conclusion: These are the most important things you should check as a blogger.

1. The off for the Like button

Like buttons collect data. Does not allow the new Data Protection Ordinance if the user does not automatically agree. The alternative: a Sharelink. Our programmer made the like button disappear – and made us beautiful classic icons. Now our content can be shared on Facebook, Instagram, Pinterest & Co. Looks much nicer than a like button.

Screenshot 2018 07 20 At 16 49 27
(Screenshot: amazedmag.de)

2. Change the page to SSL

The website must be encrypted with SSL according to the DSGVO. For some sites, this https redirect can be done in settings – or rewritten in the site. Has also gotten our programmer.

3. Warn the user against cookies

According to the DSGVO, a blog and every website requires a cookie warning that the user can agree to. This will appear as soon as you click on the website and should include a link to the updated privacy policy.

Screenshot 2018 07 20 At 16 48 36
(Screenshot: amazedmag.de)

4. Anonymize IP addresses in comments

Since May 25, IP addresses may no longer be stored in comments. Anonymization is therefore important. WordPress and Co. offer tools for this – or you ask a good web designer for advice.

5. Refer to the Privacy Policy for comments

Quick to do: All users are notified when submitting a comment that they should have read and read the privacy policy. A link leads again to the privacy policy, a double hedge, so to speak. Again, our programmer acted promptly.

Screenshot 2018 07 20 At 16 49 15
(Screenshot: amazedmag.de)

6. Check plugins

In order to make the blog DSGVO compliant, all scripts, plugins and self-added codes should also be examined to see whether they store personal data. If necessary, these must then be removed, adapted or just replaced by a privacy-friendly alternative. These include tracking codes such as Google Analytics, social plugins, spam plugins such as Askimet or even newsletter forms such as Mailchimp or advertisements such as Google Adsense.

7. Adjust the privacy policy

Perhaps the easiest part for all bloggers: Each blog needs a current imprint and of course a DSGVO-compliant privacy policy. And we did that ourselves – with little help. Many providers on the Internet offer tools that make it relatively easy to create an accurate privacy policy for your own blog. You walk along a checklist until the appropriate privacy policy is downloadable and can be inserted into the blog. We used the practical tool from E-Recht24 Premium.

Screenshot 2018 07 20 At 16 48 58
(Screenshot: amazedmag.de)

8. Create a procedure directory

It sounds bureaucratic, it is too. As a blogger you should create a directory of procedures in which all processes are recorded, in which one uses personal data on the blog. These include the comment function on the blog, Google Analytics, affiliate programs, web hosting or the publication of images. Again, there are many suppliers offering templates.

Emojis – we do not use Amazed – and Google fonts must be DSGVO compliant. For all newbies in the area DSGVO there are ellenlange checklists on the Internet, which now as must be changed. We also worked with numerous open tabs, checklists, tips from friendly bloggers and their own knowledge of the DSGVO.

Punctually on the deadline, our website was also up to date in terms of data protection law. Our conclusion: Fortunately, the whole thing really only needs to be done once. Can you do well alone – with a lot of time, but let’s be honest: Fortunately, we have a great programmer. And please dear EU, no further bureaucratic innovations.

Leave a Reply

Your email address will not be published. Required fields are marked *