[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f3YUYWV2Mon0AiwYm9WH7LJ5Z9U8H8sCr0NwbsLDcIXY":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":11,"num_ratings":11,"last_updated":13,"tested_up_to":14,"requires_at_least":15,"requires_php":16,"tags":17,"homepage":13,"download_link":23,"security_score":24,"vuln_count":11,"unpatched_count":11,"last_vuln_date":25,"fetched_at":26,"vulnerabilities":27,"developer":28,"crawl_stats":25,"alternatives":35,"analysis":140,"fingerprints":241},"gdpr-ready-advice","GDPR READY ADVICE","1.0","extendyourweb","https:\u002F\u002Fprofiles.wordpress.org\u002Fextendyourweb\u002F","\u003Cp>Really simple free and responsive widget for your site. Show a tiny banner in your footer to let visitors know that your site is GDPR compliant.\u003C\u002Fp>\n\u003Cp>As simple as that. Plug & play installation. Install, activate and widget will be automatically added in your footer.\u003C\u002Fp>\n\u003Cp>¡IMPORTANT!\u003Cbr \u002F>\nActivating this plugin does not guarantee that you meet your responsibilities and obligations with the GDPR law. Organizations should follow their particular responsibilities and ensure that additional measures are taken to meet all the obligations required by law.\u003C\u002Fp>\n\u003Cp>This is just a notification message for your visitors, nothing else. Simple plugin.\u003C\u002Fp>\n","Really simple free and responsive widget for your site. Show a tiny banner in your footer to let visitors know that your site is GDPR compliant.",0,1188,"","4.9.29","2.8.0","4.0",[18,19,20,21,22],"gdpr","gdpr-compliance","gdpr-ready","gdpr-requirements","general-data-protection-regulation","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgdpr-ready-advice.1.0.zip",100,null,"2026-03-15T14:44:11.924Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":29,"total_installs":30,"avg_security_score":31,"avg_patch_time_days":32,"trust_score":33,"computed_at":34},4,130,87,30,85,"2026-04-04T05:30:51.614Z",[36,58,82,103,120],{"slug":18,"name":37,"version":38,"author":39,"author_profile":40,"description":41,"short_description":42,"active_installs":43,"downloaded":44,"rating":45,"num_ratings":46,"last_updated":47,"tested_up_to":48,"requires_at_least":49,"requires_php":50,"tags":51,"homepage":55,"download_link":56,"security_score":24,"vuln_count":11,"unpatched_count":11,"last_vuln_date":25,"fetched_at":57},"GDPR","2.1.2","Trew Knowledge","https:\u002F\u002Fprofiles.wordpress.org\u002Ftrewknowledge\u002F","\u003Cp>This plugin is meant to assist a Controller, Data Processor, and Data Protection Officer (DPO) with efforts to meet the obligations and rights enacted under the GDPR.\u003C\u002Fp>\n\u003Ch3>Documentation\u003C\u002Fh3>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftrewknowledge\u002FGDPR\u002Fwiki\" rel=\"nofollow ugc\">https:\u002F\u002Fgithub.com\u002Ftrewknowledge\u002FGDPR\u002Fwiki\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Collaboration\u003C\u002Fh3>\n\u003Cp>You can send your pull request at \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftrewknowledge\u002Fgdpr\" rel=\"nofollow ugc\">https:\u002F\u002Fgithub.com\u002Ftrewknowledge\u002Fgdpr\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Shortcodes & helper functions\u003C\u002Fh3>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftrewknowledge\u002FGDPR\u002Fwiki\u002FFunctions-&-Shortcodes\" rel=\"nofollow ugc\">https:\u002F\u002Fgithub.com\u002Ftrewknowledge\u002FGDPR\u002Fwiki\u002FFunctions-&-Shortcodes\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Consent management\u003C\u002Fli>\n\u003Cli>Privacy Preference management for Cookies with front-end preference UI & banner notifications\u003C\u002Fli>\n\u003Cli>Privacy Policy page configurations with version control and re-consent management\u003C\u002Fli>\n\u003Cli>Rights to erasure & deletion of website data with a double opt-in confirmation email\u003C\u002Fli>\n\u003Cli>Re-assignment of user data on erasure requests & pseudonymization of user website data\u003C\u002Fli>\n\u003Cli>Data Processor settings and publishing of contact information\u003C\u002Fli>\n\u003Cli>Right to access data by admin dashboard with email look up and export\u003C\u002Fli>\n\u003Cli>Right to access data by Data Subject with front-end requests button & double opt-in confirmation email\u003C\u002Fli>\n\u003Cli>Right to portability & export of data by Admin or Data Subject in XML or JSON formats\u003C\u002Fli>\n\u003Cli>Encrypted audit logs for the lifetime of Data Subject compliance activity\u003C\u002Fli>\n\u003Cli>Data Subject Secret Token for two-factor decryption and recovery of data\u003C\u002Fli>\n\u003Cli>Data breach notification logs and batch email notifications to Data Subjects\u003C\u002Fli>\n\u003Cli>Telemetry Tracker for visualizing plugins and website data\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Settings\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>General\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>From the Settings options in the dashboard, you can select the Privacy Policy page for tracking and logging consent.\u003C\u002Fp>\n\u003Cp>On login, the user must consent to the Privacy Policy outlined on the site. If the user does not consent, the user will not be registered or logged in.\u003C\u002Fp>\n\u003Cp>If the site owner updates the Privacy Policy page content, the change will be logged and flagged to the admin that they must notify users on next login to seek re-consent. Additionally, the warning message can be dismissed in the event of a minor correction or mistake.\u003C\u002Fp>\n\u003Cp>Additionally, under General Settings the Admin can set the outgoing email limitation which would set the batch notification email limit per hour in the event of a Breach Notification.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Cookie Preference Management\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Similar to consent management, users can opt in or out of cookies that are being used on the site. There are 3 formats of cookies that can be created which include:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Always Active:\u003C\u002Fstrong> Cookies that are always active or are required for the site to function.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Toggled:\u003C\u002Fstrong> Cookies that can be activated or blocked based on the user preference\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Opt-Out Link:\u003C\u002Fstrong> Cookies that require configuration from a third-party source in order to opt-out\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Depending on the user preference setting, you can use the \u003Ccode>is_allowed_cookie( $cookie )\u003C\u002Fcode> function to save and set the cookies. The cookie with the user approved cookies can be found at another cookie named \u003Ccode>gdpr_approved_cookies\u003C\u002Fcode>. There’s also a helper function called \u003Ccode>is_allowed_cookie( $cookie )\u003C\u002Fcode> that you can use to prevent setting up a cookie.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Consent Management\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Consents can be registered on the settings page. They can be optional or not. By default, this plugin comes with a Privacy Policy consent that users need to agree with on registration.\u003C\u002Fp>\n\u003Cp>For optional consents, there’s a wrapper function \u003Ccode>have_consent( $consent_id )\u003C\u002Fcode> to help you display or hide something on the site depending if the user gave consent or not.\u003C\u002Fp>\n\u003Cp>Consents are logged to the user record for auditing or for access purposes.\u003C\u002Fp>\n\u003Ch3>Requests Table & Rights of Data Subject\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>Right to Erasure Requests\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Col>\n\u003Cli>The Data Subject is able to submit a request to be erased from the site using a shortcode.\u003C\u002Fli>\n\u003Cli>\n\u003Cp>When a request is made, the Data Subject will receive an email confirmation to confirm the deletion request.\u003C\u002Fp>\n\u003Col>\n\u003Cli>After email confirmation, the user request is added to the requests table for review by the Administrator. The Administrator can also add a user manually with an email look up and review.\u003C\u002Fli>\n\u003Cli>If the Data Subject has content published on the site for any post types or comments, they will be added to this table. If they do not have any content, they will receive a confirmation of erasure request and be provided a 6 digit Token for safekeeping after erasure in case of recover data needs.\u003C\u002Fli>\n\u003Cli>The requests table allows the Administrator to reassign any content to another user or delete it.\u003C\u002Fli>\n\u003Cli>In the event of comments, the Data Subject’s content would be made anonymous.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Admin can also manually add users to the erasure requests table with a manual email search\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>\u003Cstrong>Right to Access Data Request & User Data Portability\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Col>\n\u003Cli>The Data Subject can place a request to download their data with the shortcode.\u003C\u002Fli>\n\u003Cli>After requesting their data, the user will receive a double opt-in confirmation email then the plugin will generate an XML or JSON file, which will be emailed to them for download with an expiration time of 48 hours.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>\u003Cstrong>Right to Rectify & Complaint Requests\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Col>\n\u003Cli>The Data Subject can place a request to rectify data or file a complaint with the shortcode.\u003C\u002Fli>\n\u003Cli>After making their request, the user will receive a double opt-in confirmation email and then add them to the table for admin to handle the request.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Tools\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>Access Data\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>The Access Data tool allows the Admin to look up a user email and view the data of a particular user. The Admin can download and export the data in a JSON or XML format and provide to the Data Subject if manually requested.\u003C\u002Fp>\n\u003Cp>NOTE: This method should not be used without the Data Subject confirming their identity.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Audit Log\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Everything the Data Subject does from registration, providing consent to the privacy policy, terms of service and other requests are logged and encrypted in a database. Data breach notifications are also logged to all Data Subjects upon confirmation by Controller.\u003C\u002Fp>\n\u003Col>\n\u003Cli>Using the Data Subject’s email, you can look up and retrieve the user information and display it.\u003C\u002Fli>\n\u003Cli>If the Data Subject has been removed from the site, this encrypted log is deleted from the database and saved as an encrypted file inside the plugin folder.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>If in the future, the Data Subject makes a complaint or there is a need to recover the data, the user can provide their email address and the 6 digit token they received from the deletion confirmation email to decrypt and retrieve the file.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Data Breach & Notifications\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>In case of a data breach, the Admin can generate a Data Breach Notification to users by logging the information and confirm the breach through a double opt-in confirmation email. The following information would be recorded in the audit log:\u003C\u002Fp>\n\u003Col>\n\u003Cli>Nature of the personal data breach\u003C\u002Fli>\n\u003Cli>Name and contact details of the data protection officer\u003C\u002Fli>\n\u003Cli>Likely consequences of the personal data breach\u003C\u002Fli>\n\u003Cli>Measures were taken or proposed to be taken\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>Once the confirmation of the breach has been confirmed via email, the website will begin a batch email notification process to all users every hour until all users receive the notification.\u003C\u002Fp>\n\u003Ch3>Telemetry Tracker\u003C\u002Fh3>\n\u003Cp>The Telemetry Tracker feature will display all data that is being sent outside of your server to another destination. It will indicate the plugin or theme responsible, file and line where the data is being sent.\u003C\u002Fp>\n\u003Cp>WordPress Core and some plugins gather data from your install and send this data to an outside server.\u003C\u002Fp>\n\u003Cp>WordPress Plugin Repository does not allow plugins to do that, but premium plugins are able to do this because they are not bound by the Plugin repository rules. If you did not explicitly opt-in for this feature you should make a complaint.\u003C\u002Fp>\n\u003Ch3>Important!\u003C\u002Fh3>\n\u003Cp>Activating this plugin does not guarantee that an organization is successfully meeting its responsibilities and obligations of GDPR. Individual organizations should assess their unique responsibilities and ensure extra measures are taken to meet any obligations required by law and based on a data protection impact assessment (DPIA).\u003C\u002Fp>\n","This plugin is meant to assist with the GDPR obligations of a Data processor and Controller.",10000,371698,86,58,"2026-02-24T15:47:00.000Z","6.9.4","4.7","5.6",[52,18,22,53,54],"compliance","law","privacy","https:\u002F\u002Ftrewknowledge.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgdpr.2.1.2.zip","2026-03-15T15:16:48.613Z",{"slug":59,"name":60,"version":61,"author":62,"author_profile":63,"description":64,"short_description":65,"active_installs":66,"downloaded":67,"rating":68,"num_ratings":69,"last_updated":70,"tested_up_to":71,"requires_at_least":72,"requires_php":13,"tags":73,"homepage":77,"download_link":78,"security_score":79,"vuln_count":80,"unpatched_count":11,"last_vuln_date":81,"fetched_at":57},"gdpr-compliance-cookie-consent","GDPR Compliance & Cookie Consent","1.6.1","gdprcompliancewp","https:\u002F\u002Fprofiles.wordpress.org\u002Fgdprcompliancewp\u002F","\u003Cp>GDPR Compliance and Cookie Consent is a free WordPress plugin designed to safeguard customer privacy and manage personal data responsibly on your website. It offers features such as transparent privacy and cookie policies, GDPR consent checkboxes, cookie blocking functionality, access to consumer data, and options for users to request data deletion. Compatible with WordPress 4.6 and higher, this essential plugin ensures compliance with GDPR standards, enhancing user trust.\u003C\u002Fp>\n\u003Ch3>What is GDPR\u003C\u002Fh3>\n\u003Cp>The General Data Protection Regulation (GDPR) is a regulation in EU law on data protection and privacy in the European Union and the European Economic Area. It also looks after the transfer of personal data outside of these areas.\u003C\u002Fp>\n\u003Ch3>GDPR Plugin Features\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>Ensure the Right to be Forgotten\u003C\u002Fstrong>\u003Cbr \u002F>\nRequest to delete all stored data (confirmed by email link);\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Control Data Access\u003C\u002Fstrong>\u003Cbr \u002F>\nDedicated form to request personal data stored on a website;\u003C\u002Fp>\n\u003Cp>\u003Cstrong>GDPR Consent checkboxes\u003C\u002Fstrong>\u003Cbr \u002F>\nAdd consent boxes for various forms on your website like WordPress Comments and customized contact forms;\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Customizable Options\u003C\u002Fstrong>\u003Cbr \u002F>\nPrivacy Policy, Terms of Services, Cookie Consent and Email marketing opt-in forms;\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Perfect Integration\u003C\u002Fstrong>\u003Cbr \u002F>\nSmooth integration with most popular WordPress plugins;\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Cookie Blocker\u003C\u002Fstrong>\u003Cbr \u002F>\nBlock all cookies including analytics and advertising networks until formal consent to collect and use your data.\u003C\u002Fp>\n\u003Ch3>Who is it for?\u003C\u002Fh3>\n\u003Cp>From May 25, 2018, all companies with EU citizens as customers who are visiting their website, regardless of the location of the company itself, need to abide by the GDPR rules when handling their personal data.\u003C\u002Fp>\n\u003Cp>Information covered by GDPR includes names, user IDs, emails, addresses, contact details, web analytics, IP address, cookies, and other special categories of data (e.g., sensitive, genetic, health, gender, biometric).\u003C\u002Fp>\n\u003Cp>This handy GDPR plugin is straightforward to use and makes an excellent addition to any business WordPress website. It allows for any site to be GDPR compliant, and it is compatible with both the regulations and industry best practices. It is a WordPress business user’s best friend.\u003C\u002Fp>\n\u003Ch3>How do I use it?\u003C\u002Fh3>\n\u003Cp>Once installed, you will be able to access the plugin from the main admin menu within WordPress – it is labeled GDPR. From here, you will see that there are four primary tabs: ‘general,’ ‘privacy policy,’ ‘integrated plugins,’ and ‘data access & to be forgotten.’\u003C\u002Fp>\n\u003Cp>Under the general tab, you can control all the privacy and cookie consent popups. Here you can opt to enable the popups, choose the cookie consent expiry time (the default being six months), write the messages included in the popups, and manage the colors of the box and the text. Finally, you can designate where the popups will appear on the page at the front end of the website.\u003C\u002Fp>\n\u003Cp>In the privacy policy section, you can select the page where your specific policy will be displayed. You can also customize the quick link that can be used to take your customers there so they can see why their data is being collected and how it will be managed.\u003C\u002Fp>\n\u003Cp>The integrated plugin section enables you to integrate the GDPR plugin with a range of other popular plugins that can be used to increase the functionality of your website further. The ones that are supported at present include:\u003Cbr \u002F>\n* Contact Form 7, which allows you to manage multiple contact forms.\u003Cbr \u002F>\n* Gravity Forms which offers the tools necessary for creating powerful contact forms.\u003Cbr \u002F>\n* Woocommerce which is designed to allow for e-commerce and online payment.\u003Cbr \u002F>\n* BuddyPress which enables the website to be transformed into a social network platform.\u003Cbr \u002F>\n* MailChimp, which lets you add signup forms to your website and allow customers to sign up for services.\u003Cbr \u002F>\n* WordPress Comments which facilitates interactions by enabling visitors to post comments.\u003C\u002Fp>\n\u003Cp>Data access & to be forgotten, the final tab, is a vital section of the plugin. This page is where users are provided with a form to access their data as well as the right to be forgotten. In this case, all collected data will be deleted.\u003C\u002Fp>\n\u003Cp>Again this section is fully customizable, you can create your own description, and you can enter your own messages. To enable users to access or delete their own personal data, you can insert a short code to a page or use a special widget.\u003C\u002Fp>\n\u003Cp>With each section of the plugin, you will need to click on ‘save changes’ to validate your changes and to ensure that your customizations are applied to your website.\u003C\u002Fp>\n\u003Ch3>How do my customers use it?\u003C\u002Fh3>\n\u003Cp>The GDPR Compliance & Cookie Consent plugin has been carefully designed with the specific goal of protecting the personal data of your customers and other visitors to your website.\u003C\u002Fp>\n\u003Cp>While some businesses may need to collect personal or sensitive information due to the nature of the service being provided, ultimately, how this data is handled needs to be at the discretion of the customer. The goal of such GDPR compliance plugins is to give the consumers absolute control of their information.\u003C\u002Fp>\n\u003Cp>Such control is achieved here through the use of GDPR consent checkboxes, cookie blockers, and having the right to be forgotten, among other things. As well as providing specific consent for the collection of their data, the customer needs to be made aware of what will happen to it at every stage of proceedings – this is done through the use of a privacy policy.\u003C\u002Fp>\n\u003Ch3>Why should I get it?\u003C\u002Fh3>\n\u003Cp>As previously outlined, from May 25, 2018, every website collecting data from EU residents or citizens need to address GDPR rules. This is a legal requirement for all online businesses, and the penalties for not abiding by such regulations are extremely harsh.\u003C\u002Fp>\n\u003Cp>Fines of up to €20 million or up to 4% of the annual worldwide turnover of the preceding financial year in case of an enterprise, whichever is greater, can be applied for not following such rules.\u003C\u002Fp>\n\u003Cp>The GDPR Compliance & Cookie Consent WordPress Plugin makes your website compatible with general GDPR regulations. This ensures that both you, the business owner, and your customers who are visiting your site and possibly providing sensitive data are protected under the laws.\u003C\u002Fp>\n","This plugin adds GDPR-compliant cookie management to websites, ensuring legal compliance and enhancing user privacy.",5000,462871,54,10,"2024-07-31T13:25:00.000Z","6.5.8","4.6",[74,75,18,19,76],"cookie-banner","cookie-consent","privacy-policy","https:\u002F\u002Fwww.calculator.io\u002Fgdpr\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgdpr-compliance-cookie-consent.1.6.1.zip",92,1,"2023-04-19 00:00:00",{"slug":83,"name":84,"version":85,"author":86,"author_profile":87,"description":88,"short_description":89,"active_installs":90,"downloaded":91,"rating":24,"num_ratings":92,"last_updated":93,"tested_up_to":94,"requires_at_least":95,"requires_php":13,"tags":96,"homepage":98,"download_link":99,"security_score":100,"vuln_count":101,"unpatched_count":11,"last_vuln_date":102,"fetched_at":57},"ninja-gdpr-compliance","GDPR CCPA Compliance & Cookie Consent Banner","2.7.5","Ninja Team","https:\u002F\u002Fprofiles.wordpress.org\u002Fninjateam\u002F","\u003Cp>\u003Cstrong>WordPress GDPR CCPA DPA Cookie Compliance\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fninjateam.gitbook.io\u002Fgdpr-compliance\u002Fhow-it-works\u002Fcookie-popup\u002Fcookie-popup\" rel=\"nofollow ugc\">DOCUMENTATION\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fgdpr.ninjateam.org\u002F\" rel=\"nofollow ugc\">ADMIN DEMO\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>GDPR requires businesses to protect personal user data and privacy of EU citizens for transactions that occur within EU member states. And non-compliance could cost companies up to $20 million or 4% of global revenue.\u003C\u002Fp>\n\u003Cp>Websites that collect data on citizens in European Union (EU) countries must comply with strict new rules around protecting customer data by May 25, 2018. Being GDPR Compliant or your business will be at risk.\u003C\u002Fp>\n\u003Cp>That’s why GDPR Visual Builder—Drag and Drop to enable GDPR CCPA Compliance was created: to give your website the best solution for complying with this new law.\u003C\u002Fp>\n\u003Ch3>Why you need GDPR Compliance?\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>If you run a WordPress website that EU visitors can access, your site needs to be GDPR compliant.\u003C\u002Fli>\n\u003Cli>If you take advantage of using cookies, or other tracking integrations like Facebook pixels or Google Analytics, etc.\u003C\u002Fli>\n\u003Cli>If you use a form plugin like \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fcf7-database\u002F\" rel=\"ugc\">Contact Form 7 Database\u003C\u002Fa> to collect user data, you need GDPR compliance.\u003C\u002Fli>\n\u003Cli>If you use MailChimp or other \u003Ca href=\"https:\u002F\u002Fninjateam.org\u002Fbest-email-marketing-wordpress-plugins\u002F\" rel=\"nofollow ugc\">email marketing plugins\u003C\u002Fa> to save users’ data, you need this GDPR compliance support.\u003C\u002Fli>\n\u003Cli>If you use any communication service like live chat or support help desk for your site visitors, you need this custom-made EULA and keep your business safe.\u003C\u002Fli>\n\u003Cli>If your want your business to be secured and trusted and you just need to focus on working and being prospered.\u003C\u002Fli>\n\u003Cli>\nApart from being compliant with GDPR, website owners outside EU would also be advised to get ready before law enforcement of the upcoming California Consumer Privacy Act (CCPA), California Privacy Rights Act (CPRA), Washington Privacy Act (WPA), the Act on the Protection of Personal Information (APPI – Japan) and other regulations to be passed. Hence Ninja GDPR plugin then comes in handy. Get prepared now!\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>FEATURES\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>Cookie Consent\u003C\u002Fstrong>\u003Cbr \u002F>\nInform users about cookie use and gets their consent.\u003Cbr \u002F>\n\u003Cstrong>Term & Conditions Consent\u003C\u002Fstrong>\u003Cbr \u002F>\nTake users automatically to your Term & Conditions Page and get their consent.\u003Cbr \u002F>\n\u003Cstrong>Privacy Policy Consent\u003C\u002Fstrong>\u003Cbr \u002F>\nTake users automatically to your Privacy Policy Page and get their consent.\u003Cbr \u002F>\n\u003Cstrong>Request Data Archive\u003C\u002Fstrong>\u003Cbr \u002F>\nCollect Data access requests and automatically inform admin.\u003Cbr \u002F>\n\u003Cstrong>Forget me form\u003C\u002Fstrong>\u003Cbr \u002F>\nCreate a form for users to request that their stored data be deleted, and automatically notify the website admin. Learn more on \u003Ca href=\"https:\u002F\u002Fninjateam.gitbook.io\u002Fgdpr-compliance\u002Fhow-it-works\u002Fforget-me\" rel=\"nofollow ugc\">Forget Me form\u003C\u002Fa>\u003Cbr \u002F>\n\u003Cstrong>Data Rectification\u003C\u002Fstrong>\u003Cbr \u002F>\nAllow users to request their stored data to be rectified.\u003Cbr \u002F>\n\u003Cstrong>Data Breach Notification\u003C\u002Fstrong>\u003Cbr \u002F>\nNotify all users of data breaches as required by law.\u003Cbr \u002F>\n\u003Cstrong>Control EU Traffic\u003C\u002Fstrong>\u003Cbr \u002F>\nNow you can display Cookie Popup for EU countries users only or refuse them.\u003C\u002Fp>\n\u003Ch3>Don’t ignore this regulation If you are one of:\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>WordPress website owners\u003C\u002Fstrong>\u003Cbr \u002F>\nIt doesn’t whether you sell on your website or not, or even if you don’t collect any data. If you have cookies and other features enabled on your site you will be liable for GDPR.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Content Marketers\u003C\u002Fstrong>\u003Cbr \u002F>\nAre you tracking your users on your website? Do you have Facebook pixel or track your users in other ways? Do EU visitors come to your site and they interact with your articles, leave comments, etc.?\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Ecommerce Sellers\u003C\u002Fstrong>\u003Cbr \u002F>\nDo you store personal data? Does your site have forms that let people create accounts on your site or share their emails or contact details?\u003Cbr \u002F>\nDo you use a bulletin board or a communication center for your visitors?\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Affiliate Marketers\u003C\u002Fstrong>\u003Cbr \u002F>\nAre you tracking traffic on your site? Collecting people’s names and email addresses?\u003Cbr \u002F>\nDo you use Google Analytics or anything else to store personal data for statistics purposes?\u003C\u002Fp>\n\u003Cp>If there is a Yes, then you must enable a cookie consent banner by using this Ninja GDPR plugin.\u003C\u002Fp>\n","Get compliance with GDPR, CCPA, DPA, and other privacy regulations.",1000,46631,6,"2025-12-17T13:18:00.000Z","6.8.5","3.0",[74,75,97,18,19],"dsgvo","https:\u002F\u002Fninjateam.org\u002Fwordpress-gdpr-compliance\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fninja-gdpr-compliance.2.7.5.zip",89,5,"2026-01-19 00:00:00",{"slug":104,"name":105,"version":106,"author":107,"author_profile":108,"description":109,"short_description":110,"active_installs":111,"downloaded":112,"rating":24,"num_ratings":113,"last_updated":114,"tested_up_to":115,"requires_at_least":116,"requires_php":50,"tags":117,"homepage":118,"download_link":119,"security_score":33,"vuln_count":11,"unpatched_count":11,"last_vuln_date":25,"fetched_at":57},"gdpr-notice-original","GDPR Notice","1.3.13","orcas - Mario Gleichmann","https:\u002F\u002Fprofiles.wordpress.org\u002Forcasteam\u002F","\u003Cp>\u003Cem>GDPR Notice\u003C\u002Fem> will help you to make your site more GDPR compliant by informing the user of the use of external services when they first visit your website. You can add your own customized entries that will be displayed to the user.\u003C\u002Fp>\n\u003Cp>If you website is using external serivces like Google Fonts and especially Google Analytics, the GDPR requires that users have to give their consent before any data is transferred to the external service.\u003C\u002Fp>\n\u003Cp>With each retrieval of files from external servers (servers other than the one on which your website is running), it is technically possible to log which IP address the user of your site has, which browser on which operating system they use and many other things. This is also the case when using jQuery or Bootstrap, to name a few, from CDNs. And exactly such downloads and the resulting possibility of logging data your user must be able to disagree with.\u003C\u002Fp>\n\u003Cp>In order to use your website, in the free version the user must agree to use all external services.\u003C\u002Fp>\n\u003Cp>With \u003Cem>\u003Ca href=\"https:\u002F\u002Fwww.orcas.de\u002Fwordpress-plugin\u002Fgdpr-notice\u002F\" rel=\"nofollow ugc\">GDPR Notice Pro\u003C\u002Fa>\u003C\u002Fem>, the user can also select which external services they want to allow and this plugin then removes any external styles, scripts and iframes that the user does not allow. This is necessary to prevent your website from being warned about the no-go policy.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>IMPORTANT:\u003C\u002Fstrong> This plugin can \u003Cstrong>not\u003C\u002Fstrong> and will \u003Cstrong>not\u003C\u002Fstrong> guarantee 100% compliance with GDPR. We can not ascertain that no other plugins run before this one and transfer data to external services without the user’s approval. \u003Cstrong>This plugin is intended to help you make your site GDPR compliant, it is \u003Cem>not\u003C\u002Fem> a cure-all!\u003C\u002Fstrong> Ultimately it is your responsibility to make sure your site complies with GDPR.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cem>First request checking\u003C\u002Fem>:\u003Cbr \u002F>\nOnly request users on the first visit, as long as the user has not yet accepted or declined.\u003C\u002Fli>\n\u003Cli>\u003Cem>Bots support\u003C\u002Fem>:\u003Cbr \u002F>\nIgnores bots from AOL, Baidu, Bing, DuckDuckGo, Google, MSN, Teoma, Yahoo! and Yandex.\u003Cbr \u002F>\nYou are also able to define a list of custom user agents to be ignored.\u003C\u002Fli>\n\u003Cli>\u003Cem>Cookie notice replacement\u003C\u002Fem>:\u003Cbr \u002F>\nWith GDPR Notice you can inform your visitors about the usage of cookies. No need for a separate cookie notice plugin.\u003C\u002Fli>\n\u003Cli>\u003Cem>Order changeable\u003C\u002Fem>:\u003Cbr \u002F>\nReorder your entries however you want.\u003C\u002Fli>\n\u003Cli>\u003Cem>Multiple entry types\u003C\u002Fem>:\u003Cbr \u002F>\nYou have several types of entries available to customize the notice to your liking.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cem>Title entry type\u003C\u002Fem>:\u003Cbr \u002F>\nYou can change the title of the notice.\u003C\u002Fli>\n\u003Cli>\u003Cem>Message entry type\u003C\u002Fem>:\u003Cbr \u002F>\nUse this to display custom text block entries in the notice. Multiple text entries are supported.\u003C\u002Fli>\n\u003Cli>\u003Cem>Informational entry type\u003C\u002Fem>:\u003Cbr \u002F>\nSimilar to the \u003Cem>message entry type\u003C\u002Fem>, but will display below the reject and accept buttons.\u003C\u002Fli>\n\u003Cli>\u003Cem>Informational link entry type\u003C\u002Fem>:\u003Cbr \u002F>\nLink that displays additional information when clicked.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\u003Cem>Custom style\u003C\u002Fem>:\u003Cbr \u002F>\nYou can edit the style of the notice page in the backend, without the hassle of FTP and whatnot.\u003C\u002Fli>\n\u003Cli>\u003Cem>Custom URL\u003C\u002Fem>:\u003Cbr \u002F>\nDefine a custom URL that should be used for the GDPR consent page, instead of serving the page under the regular content’s URL\u003C\u002Fli>\n\u003Cli>\u003Cem>Custom background image\u003C\u002Fem>:\u003Cbr \u002F>\nYou can chose an image from your media library to be used as a background image.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwww.orcas.de\u002Fwordpress-plugin\u002Fgdpr-notice\u002F\" rel=\"nofollow ugc\">GDPR Notice Pro\u003C\u002Fa> Features\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cem>Detect browser language\u003C\u002Fem>:\u003Cbr \u002F>\nSwitch display language depending on detected browser language.\u003C\u002Fli>\n\u003Cli>\u003Cem>Multiple entry languages\u003C\u002Fem>:\u003Cbr \u002F>\nCreate entry versions for multiple languages.\u003C\u002Fli>\n\u003Cli>\u003Cem>Link entry type\u003C\u002Fem>:\u003Cbr \u002F>\nDisplays links with a checkbox. Link will show additional info when opened.\u003C\u002Fli>\n\u003Cli>\u003Cem>Required options\u003C\u002Fem>:\u003Cbr \u002F>\nLink entries can be marked as required.\u003C\u002Fli>\n\u003Cli>\u003Cem>Remove tracking codes\u003C\u002Fem>:\u003Cbr \u002F>\nRemoves inline tracking codes, such as Google Analytics\u003C\u002Fli>\n\u003Cli>\u003Cem>Multiple view modes\u003C\u002Fem>:\u003Cbr \u002F>\nYou can chose to have the notice displayed as it’s own page before your actual page, as a box floating above your page in a corner or near an edge of the browser or even not display it at all.\u003C\u002Fli>\n\u003Cli>\u003Cem>Remove unwanted scripts and styles\u003C\u002Fem>:\u003Cbr \u002F>\nRemoves scripts and styles from your site, depending on the user’s selection\u003C\u002Fli>\n\u003C\u002Ful>\n","GDPR Notice allows you, in accordance to the General Data Protection Regulation, to ask the user in advance if your page may use external services.",20,3758,2,"2019-01-14T15:52:00.000Z","5.0.25","3.4",[97,18,22,53,54],"https:\u002F\u002Fwww.orcas.de\u002Fwordpress-plugin\u002Fgdpr-notice\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgdpr-notice-original.1.3.13.zip",{"slug":121,"name":122,"version":123,"author":124,"author_profile":125,"description":126,"short_description":127,"active_installs":69,"downloaded":128,"rating":24,"num_ratings":80,"last_updated":129,"tested_up_to":48,"requires_at_least":130,"requires_php":50,"tags":131,"homepage":136,"download_link":137,"security_score":138,"vuln_count":80,"unpatched_count":11,"last_vuln_date":139,"fetched_at":57},"anonform-embedded-secure-form","ANON::form embedded secure form","1.8","Anonform Ab","https:\u002F\u002Fprofiles.wordpress.org\u002Fanonform\u002F","\u003Cp>This plugin allows you to embed \u003Ca href=\"https:\u002F\u002Fanonform.com\" rel=\"nofollow ugc\">ANON::form’s\u003C\u002Fa> E2EE (End-to-End Encrypted) secure and anonymized web forms into your website with an iframe and with a shortcode.\u003C\u002Fp>\n\u003Cp>The requirements for secure communication with secure forms and storage of sensitive information are steadily increasing, not least from authorities through GDPR and the protection of whistleblowers.\u003C\u002Fp>\n\u003Cp>Something that is often overlooked but directly affected by the new requirements is the web forms used on the web pages and websites to create contact or collect information, with email as transport.\u003C\u002Fp>\n\u003Cp>ANON::form is a complete, easy-to-implement and scalable solution for secure electronic web-based forms that meet all existing requirements for not only security but also anonymity and (un)traceability.\u003C\u002Fp>\n\u003Cp>\u003Ciframe loading=\"lazy\" title=\"Secure & Anonymous Web Forms – Whistleblower, Tip & Contact Forms #Whistleblower #Forms #Privacy\" width=\"563\" height=\"1000\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FIw1BmHT_aO8?feature=oembed\" frameborder=\"0\" allow=\"accelerometer; autoplay; clipboard-write; encrypted-media; gyroscope; picture-in-picture; web-share\" referrerpolicy=\"strict-origin-when-cross-origin\" allowfullscreen>\u003C\u002Fiframe>\u003C\u002Fp>\n\u003Ch4>Create a Whistleblower Channel using secure e-forms\u003C\u002Fh4>\n\u003Cp>ANON::form’s secure and anonymous e-forms meet the requirements of a secure whistleblowing channel. Simple and cost-effective (from €5\u002Fmonth), pay only for what you really need. \u003Ca href=\"https:\u002F\u002Fanonform.com\u002Fcreate-whistleblower-channel-with-wordpress-joomla-or-drupal-for-e5-per-month\u002F\" rel=\"nofollow ugc\">Read more\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>ANON::form is secure and anonymized\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>Meets safety requirements\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>ANON::form is a service that meets the requirements for security according to the respective standard for:\u003Cbr \u002F>\nEU\u002FGDPR + EU\u002FSchrems II\u003Cbr \u002F>\nCH\u002FrevFADP\u003Cbr \u002F>\nUK\u002FFCA\u003Cbr \u002F>\nUS\u002FSOX\u003Cbr \u002F>\nPCI-DSS + HIPAA + NIST\u003Cbr \u002F>\nand receives the rating A+ from Qualsys SSL Labs and ImmuniWeb.\u003C\u002Fp>\n\u003Cp>ANON::form follows the Zero Trust framework for a secure infrastructure.\u003C\u002Fp>\n\u003Cp>All certificates are encrypted with SHA256\u002FRSA 2048 bits\u002FTLS 1.2 + 1.3.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Meets the requirement for Zero Access Encryption\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>ANON::form does not store form data and meets the requirement for Zero Access Encryption, suppliers who receive form data from ANON::form comply with Zero Access Encryption in that all data stored is encrypted via endpoints (E2EE) with personal keys.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Meets the requirement for privacy\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>ANON::form fulfills the requirement for anonymity in that no traffic, error or other logs are activated (No-Log Policy), all form data is sent encrypted directly to receiving systems without intermediaries.\u003C\u002Fp>\n\u003Cp>Nothing is saved in the computer or browser by the service, but the use of incognito windows, or even better Tor Browser, is recommended to prevent sensitive data from being saved by the browser’s own functions.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Protected against malicious code\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>ANON::form is protected against malicious code by cleaning up all form data before it is processed by the server system. We do not have any online editing of forms, everything is uploaded manually by us after virus and other security checks.\u003C\u002Fp>\n\u003Cp>All services are run on own servers in secure datacenters. The encryption software we use is open source (OpenPGP) which is constantly reviewed by a large community spread all over the world.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Spam protection\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>All forms have Captcha protection against robot-generated spam. The Captcha function is locally installed and does not download anything from external sources such as Google. The forms also support \u003Ca href=\"https:\u002F\u002Fwww.hcaptcha.com\u002F\" rel=\"nofollow ugc\">hCaptcha\u003C\u002Fa>, which offers better spam protection but poorer anonymity through increased traceability.\u003C\u002Fp>\n\u003Ch4>EU\u002FEN 301549 and W3C\u002FWCAG 2.1 AA Compliance\u003C\u002Fh4>\n\u003Cp>All forms meet the accessibility requirements according to EU Directive 2016\u002F2102 and other corresponding directives in different countries according to WCAG 2.0\u002F2.1 AA and associated legislation.\u003C\u002Fp>\n\u003Ch4>Pre-built form templates\u003C\u002Fh4>\n\u003Cp>ANON::form comes with pre-built form templates, both embedded and stand-alone with or whitout attachment, to help you save time. You can add, remove, or re-arrange fields as necessary. Or create special forms for handling sensitive data such as sick leave.\u003C\u002Fp>\n\u003Cp>Pre-built form templates:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\n\u003Cp>Contact form; a standard contact form\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Whistleblower forms; approved for use as a whistleblower channel, can also be used as a tip form for journalists etc\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Tip form; anonymous option for journalists, media and others who want to receive non-whistleblowing tips\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Sick leave form; a simple and quick way to report sickness absence with the mobile phone, pad or computer\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Currently available in 42 languages\u003C\u002Fh4>\n\u003Cp>ANON::form forms support Albanian, Arabic, Bosnian, Bulgarian, Catalan, Croatian, Czech, Danish, Dutch, English, Estonian, Filipino, Finnish, Frensh, German, Greek, Hindi, Hungarian, Icelandic, Indonesian, Irish, Italian, Latvian, Lithuanian, Malay, Maltese, Norwegian, Persian, Polish, Portuguese, Romanian, Russian, Serbian, Slovak, Slovenian, Spanish, Swahili, Swedish, Tamil, Thai, Turkish, Ukrainian\u003C\u002Fp>\n\u003Ch4>Mobile Ready and Optimized for Speed\u003C\u002Fh4>\n\u003Cp>ANON::form forms are 100% responsive and mobile-friendly by default. We also optimized both the frontend and the backend to ensure maximum speed.\u003C\u002Fp>\n\u003Ch4>How to use it\u003C\u002Fh4>\n\u003Cp>ANON::form E2EE forms are web forms where the form data is encrypted in the browser and then sent as email via an encrypted and anonymized channel established by ANON::form’s servers.\u003C\u002Fp>\n\u003Cp>The recipient can be any email client that can decrypt PGP, we recommend a free account with \u003Ca href=\"https:\u002F\u002Fproton.me\u002F\" rel=\"nofollow ugc\">Proton\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fanonform.com\u002Fsecure-forms-for-websites\u002F\" rel=\"nofollow ugc\">Read more\u003C\u002Fa>\u003C\u002Fp>\n","Embed ANON::form's End-to-End Encrypted secure and anonymized web forms into your website with an iframe and a shortcode.",2305,"2025-11-28T08:47:00.000Z","5.0",[132,133,19,134,135],"captcha","end-to-end-encryption","secure-form","whistleblower-form","https:\u002F\u002Fanonform.com\u002Fen\u002Fdocs\u002Feasily-embed-with-our-wordpress-plugin\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fanonform-embedded-secure-form.1.8.zip",99,"2025-06-19 00:00:00",{"attackSurface":141,"codeSignals":166,"taintFlows":197,"riskAssessment":225,"analyzedAt":240},{"hooks":142,"ajaxHandlers":162,"restRoutes":163,"shortcodes":164,"cronEvents":165,"entryPointCount":11,"unprotectedCount":11},[143,149,153,157],{"type":144,"name":145,"callback":146,"priority":80,"file":147,"line":148},"action","wp_enqueue_scripts","gdprra_style_pricing","init.php",22,{"type":144,"name":150,"callback":151,"file":147,"line":152},"wp_footer","gdprra_print_message",53,{"type":144,"name":154,"callback":155,"file":147,"line":156},"admin_menu","gdprra_menu",60,{"type":158,"name":159,"callback":160,"priority":69,"file":147,"line":161},"filter","plugin_action_links","gdprra_action_plugin",174,[],[],[],[],{"dangerousFunctions":167,"sqlUsage":168,"outputEscaping":180,"fileOperations":11,"externalRequests":11,"nonceChecks":11,"capabilityChecks":11,"bundledLibraries":196},[],{"prepared":169,"raw":29,"locations":170},3,[171,174,176,178],{"file":147,"line":172,"context":173},67,"$wpdb->query() with variable interpolation",{"file":147,"line":175,"context":173},82,{"file":147,"line":100,"context":177},"$wpdb->get_results() with variable interpolation",{"file":147,"line":179,"context":177},114,{"escaped":11,"rawEcho":181,"locations":182},7,[183,186,188,190,191,193,194],{"file":147,"line":184,"context":185},38,"raw output",{"file":147,"line":187,"context":185},44,{"file":147,"line":189,"context":185},128,{"file":147,"line":189,"context":185},{"file":147,"line":192,"context":185},132,{"file":147,"line":192,"context":185},{"file":147,"line":195,"context":185},184,[],[198,217],{"entryPoint":199,"graph":200,"unsanitizedCount":80,"severity":216},"gdprra_settings (init.php:97)",{"nodes":201,"edges":213},[202,207],{"id":203,"type":204,"label":205,"file":147,"line":206},"n0","source","$_POST",148,{"id":208,"type":209,"label":210,"file":147,"line":211,"wp_function":212},"n1","sink","query() [SQLi]",149,"query",[214],{"from":203,"to":208,"sanitized":215},false,"high",{"entryPoint":218,"graph":219,"unsanitizedCount":80,"severity":216},"\u003Cinit> (init.php:0)",{"nodes":220,"edges":223},[221,222],{"id":203,"type":204,"label":205,"file":147,"line":206},{"id":208,"type":209,"label":210,"file":147,"line":211,"wp_function":212},[224],{"from":203,"to":208,"sanitized":215},{"summary":226,"deductions":227},"The \"gdpr-ready-advice\" v1.0 plugin exhibits several concerning security practices despite a clean vulnerability history.  While the attack surface appears minimal with no exposed AJAX, REST API, shortcodes, or cron events, the code analysis reveals significant weaknesses in output handling and data sanitization.  The fact that 100% of observed outputs are not properly escaped is a major red flag, potentially leading to cross-site scripting (XSS) vulnerabilities.  Furthermore, the taint analysis indicates two flows with unsanitized paths, even if they are not classified as critical, these represent pathways where malicious input could be processed without adequate checks. The plugin also lacks any nonce or capability checks, which are fundamental security mechanisms for WordPress plugins.  The absence of any recorded vulnerabilities in its history might suggest it hasn't been a target or has been used in limited environments, but this should not be relied upon as a sign of inherent security. The plugin's strengths lie in its limited attack surface and lack of file operations or external HTTP requests. However, the unescaped outputs and unsanitized taint flows are significant weaknesses that require immediate attention.",[228,231,234,236,238],{"reason":229,"points":230},"0% output escaping",8,{"reason":232,"points":233},"High severity unsanitized taint flows (2)",15,{"reason":235,"points":101},"No nonce checks",{"reason":237,"points":101},"No capability checks",{"reason":239,"points":29},"SQL queries without prepared statements (57% not prepared)","2026-03-17T06:07:06.581Z",{"wat":242,"direct":248},{"assetPaths":243,"generatorPatterns":245,"scriptPaths":246,"versionParams":247},[244],"\u002Fwp-content\u002Fplugins\u002Fgdpr-ready-advice\u002Fcss\u002Fstyle.css",[],[],[],{"cssClasses":249,"htmlComments":256,"htmlAttributes":257,"restEndpoints":260,"jsGlobals":261,"shortcodeOutput":262},[250,251,252,253,254,255],"gdpr-ready-bar","gdpr-ready-bar__link","gdpr-ready-bar__logo","gdpr-ready-bar__ready","gdpr-ready-bar__ready-title","gdpr-ready-bar__ready-subtitle",[],[258,259],"name=\"policy_page_id\"","id=\"policy_page_id\"",[],[],[]]