[WordPress] 外掛分享： DPDP Compliance

內容簡介

總結：
SG2 DPDP Compliance Toolkit 是一款全面的 WordPress 外掛，旨在協助印度網站遵守 2023 年數位個人資料保護法案。它提供了管理使用者同意、處理資料主體權利要求、生成動態隱私政策，以及審核合規活動的工具。

問題與答案：
1. SG2 DPDP Compliance Toolkit 的主要功能有哪些特點？
- 同意管理橫幅: 可自訂的 Cookie 同意彈出視窗，讓使用者管理資料處理目的的偏好。
- 投訴申訴表單: 提供安全的表單，讓使用者提交資料主體權利要求。
- 隱私政策產生器: 根據您的網站設定自動生成基本隱私政策。
- 管理員儀表板: 具有美觀、響應式的儀表板，詳細顯示統計數據。

2. SG2 DPDP Compliance Toolkit 如何幫助使用者？
- 簡化合規流程，遵守 DPDP 法案對於資料處理同意、資料主體權利和投訴機制的要求。
- SG2 Technologies 或 WordPress.org 支援論壇提供支援。

3. 這個外掛如何使用外部服務？
- 有選擇性地使用第三方服務以增強安全性和分析功能。
- 例如，Google reCAPTCHA 用於防止滑稽留言。當使用者提交表單時，只會傳送使用者的 IP 位址和 reCAPTCHA 回應標記。
- Google Tag Manager (GTM) 用於基於使用者同意加載 Google Analytics 腳本。僅在獲得同意的情況下傳送 GA 追蹤 ID。

希望這個回答對您有幫助！如有其他問題，歡迎再提出。

外掛標籤

開發者團隊

原文外掛簡介

SG2 DPDP Compliance Toolkit is a comprehensive WordPress plugin designed to help Indian websites comply with the Digital Personal Data Protection (DPDP) Act, 2023. It provides tools for managing user consent, handling data subject rights (DSR) requests, generating dynamic privacy policies, and auditing compliance activities.
Key Features:

Consent Management Banner: A customizable cookie consent popup that allows users to manage preferences for data processing purposes (e.g., communication, analytics, marketing, strictly necessary). Supports multi-language (English, Hindi) and test mode for development.
Grievance Redressal Form: A secure form for users to submit DSR requests (access, correction, deletion of personal data). Includes email confirmation, rate limiting, and admin workflow for approval/rejection.
Privacy Policy Generator: Automatically generates a basic privacy policy based on your site settings, using templates for blogs or e-commerce sites. Easily customizable via shortcodes.
Admin Dashboard: Beautiful, responsive dashboard with metrics (total consents, pending requests), sub-pages for settings, logs, requests, audit trails, script manager, and exports (CSV/JSON).
Consent Logging & Audit: Logs all consents and actions to the database with IP/user agent hashing for privacy. View/export logs easily.
Shortcodes: Embed components easily:

[dpdp_grievance_form]: DSR request form.
[dpdp_consent_status]: User’s current consent status.
[dpdp_privacy_policy]: Dynamic privacy policy.

Script Manager: Block or manage third-party scripts based on consent (e.g., GA4, Facebook Pixel integrations via SDK).
Security & Performance: Rate limiting, nonces, sanitization, and GDPR-inspired best practices. No external dependencies beyond WordPress core.
SDK for Integrations: JavaScript SDK for advanced consent checks (e.g., window.DPDP.getConsent()).

The plugin auto-creates necessary database tables on activation and sets up default pages (Privacy Policy, Consent Status, Grievance Form). It’s lightweight, mobile-responsive, and follows WordPress coding standards.
Why SG2 DPDP Compliance Toolkit?
The DPDP Act mandates consent for personal data processing, data subject rights, and grievance mechanisms. This plugin simplifies compliance without needing custom development.
For support, visit SG2 Technologies or the WordPress.org support forum.
External services
This plugin optionally uses third-party services for enhanced security and analytics. These are configurable and disabled by default. All integrations respect user consent where applicable.
Google reCAPTCHA (Optional, for Grievance Form)
Used for spam protection on the DSR request form.
Data sent: User’s IP address and reCAPTCHA response token only when the form is submitted (if enabled in settings). No personal data is sent without form interaction.
Why/When: To verify human submissions and prevent abuse; called via Google’s API on form POST.
Provider: Google LLC. Terms: https://policies.google.com/terms. Privacy Policy: https://policies.google.com/privacy.
Google Tag Manager (GTM) (Optional, Consent-Based)
Used to load Google Analytics scripts based on user consent.
Data sent: The GA tracking ID when the page loads (only if consent is given for analytics purposes). No personal data transmitted without consent.
Why/When: For analytics tracking; loads dynamically after user consent via the Script Manager.
Provider: Google LLC. Terms: https://marketingplatform.google.com/about/analytics/terms/us/. Privacy Policy: https://policies.google.com/privacy.
All services comply with DPDP consent requirements. Disable in settings if not needed.

延伸相關外掛

Complianz – GDPR/CCPA Cookie ConsentComplianz 是一款 GDPR/CCPA Cookie 同意外掛，支援多種隱私...Cookie Notice & Compliance for GDPR / CCPACookie Notice & Compliance for GDPR / CCPA 是一款協助...WP Consent APIWP Consent API 是一款標準化外掛，旨在促進外掛之間對於同意...Burst Statistics – Privacy-Friendly WordPress Analytics (Google Analytics Alternative)Burst Statistics 是一款隱私友好的 WordPress 分析外掛，提...StatifyStatify 提供了一個簡單明瞭且節省空間的網站瀏覽次數查詢功...Gravatar Enhanced – Avatars, Profiles, and PrivacyGravatar Enhanced 是一款提升 WordPress 網站的外掛，簡化數...Cookiebot by Usercentrics – Automatic Cookie Banner for GDPR/CCPA & Google Consent ModeCookiebot by Usercentrics 是經 Google 認證的同意管理平台...Termly – GDPR/CCPA Cookie Consent BannerTermly 的 GDPR Cookie Consent Banner 是 WordPress 中最簡...Koko Analytics – Privacy Friendly Statistics for WordPressKoko Analytics 是一款隱私友好的網站分析外掛，能直接在 Wor...Force Login這款 WordPress 外掛能夠輕鬆地透過設定需要登入來隱藏您的網...My Private Site本外掛可讓管理員將 WordPress 網站限制僅供已註冊且已登入的...Statify – Extended Evaluation這個外掛程式評估了使用隱私友好的Statify外掛所收集的數據。...WP Hide Post這個外掛強在幫助你完全控制文章的顯示方式。在 WordPress 網...Simple Like Page Plugin – Fast & Privacy-Friendly Page EmbedsSimple Like Page Plugin 是一款快速且注重隱私的外掛，幫助...WP DSGVO Tools (GDPR)WP DSGVO Tools (GDPR) 是一款專為符合歐盟GDPR規範而設計的...