Free GDPR Compliance Plugins to Satisfy European Privacy Regulations

The GDPR compliance deadline was a bit like Y2K. Before May 25 there was a run-up of fear about what would happen online on May 26th, and after the deadline passed the world magically continued to turn. No calamities.

But that doesn't mean the Europeans aren't watching.

The EU General Data Protection Regulation (GDPR) was designed to harmonize data privacy laws across Europe, to protect and empower all EU citizens data privacy and to reshape the way organizations across the region approach data privacy. Failure to comply with the regulations carries heavy fines.

Read More about GDPR Compliance 

It's no surprise that a global shift in privacy policy would spawn a cottage industry of tools for WordPress websites. Here are some free plugins currently on offer.

Free GDPR Compliance Plugins

WP GDPR Compliance

By Van Ons
4.0 rating based on 68 ratings
100,000+ Active Installations

WP GDPR Compliance currently supports Contact Form 7 (4.6), Gravity Forms (1.9), WooCommerce (2.5.0) and WordPress Comments.

It will automatically add GDPR checkboxes to some of your favourite plugins, ask your visitors for permission to enable certain scripts for tracking or advertising purposes, gives an overview of the view and delete requests by your site's visitors, control the link to your privacy policy, activate the request user data page, and more.


By Trew Knowledge
4.5 rating based on 49 ratings
20,000+ Active Installations

Features: Consent management; Privacy Preference management for Cookies with front-end preference UI & banner notifications; Privacy Policy page configurations with version control and re-consent management; Rights to erasure & deletion of website data with a double opt-in confirmation email; Re-assignment of user data on erasure requests & pseudonymization of user website data; Data Processor settings and publishing of contact information; Right to access data by admin dashboard with email look up and export; Right to access data by Data Subject with front-end requests button & double opt-in confirmation email; Right to portability & export of data by Admin or Data Subject in XML or JSON formats; Encrypted audit logs for the lifetime of Data Subject compliance activity; Data Subject Secret Token for two-factor decryption and recovery of data; Data breach notification logs and batch email notifications to Data Subjects; Telemetry Tracker for visualizing plugins and website data.

GDPR Cookie Compliance

By Moove Agency
4.5 rating based on 42 ratings
30,000+ Active Installations

This plugin is designed to help you prepare your website for the GDPR regulations related to cookies but IT WILL NOT MAKE IT FULLY COMPLIANT – this plugin is just a template and needs to be setup by your developer in order to work properly.

Once installed, the plugin gives you a template that you can customize; you can modify all text and colours to suit your needs.

You can also allow users to enable and disable cookies on your site, however, this will require bespoke development work as every site is unique and uses different cookies.

GDPR Cookie Consent

By webtoffee
4.5 rating based on 182 ratings
300,000+ Active Installations

Admin can add cookie details from the backend. The list of cookies can be displayed in your cookie policy page by using a short code. This plugin adds a subtle banner to your website either in the header or footer so you can show your compliance status regarding the new EU Cookie Law.
GDPR Framework

By Codelight
4.5 rating based on 43 ratings
10,000+ Active Installations

Allows both users and visitors without an account to automatically view, export and delete their personal data; Configure the plugin to delete or anonymize personal data automatically or send a notification and allow admins to do it manually; Track, manage and withdraw consent; Generate a GDPR-compatible Privacy Policy template for your site;

Comes with a helpful installation wizard to get you started quickly.

Developer-friendly. Everything can be extended, every feature and template can be overridden.


By Cybot A/S
3.0 rating based on 29 ratings
20,000+ Active Installations

Cookiebot is a cloud-driven solution that offers: A highly customizable consent banner to handle user consents and give the users the required possibility to opt-in and -out of cookie categories.; A cookie policy and declaration, with purpose descriptions and automatic categorization of your cookies (strictly necessary, preference, statistics, marketing); Full monthly scans to detect all tracking in place on the website as well as detection of where data is being sent to and where in the source code the cookie can be found; A scanner that detects various online trackers such as Cookies, HTML5 Local Storage, Flash Local Shared Object, Silverlight Isolated Storage, IndexedDB, ultrasound beacons, pixel tags etc; An easy way to allow the users to change or withdraw their consent; Translations for 44 languages and the ability to change the text on the banner and declaration for any language; Storage of user-consents in our cloud-driven environment, which are downloadable and can be used as proof; Execution of cookie-setting scripts without a page reload, if the user gives consent.

Cookie Notice

By dFactory
5.0 rating based on 310 ratings
700,000+ Active Installations

Features include: 100% GDPR compliant; Customizable cookie message; Redirects users to specified page for more cookie information; Multiple cookie expiry options; Link to Privacy Policy page; WordPress Privacy Policy page synchronization; Option to accept cookies on scroll; Option to set on scroll offset; Option to refuse functional cookies; Option to revoke the user consent; Option to manually block scripts; Option to reload the page after cookies are accepted; Select the position of the cookie message box; Animate the message box after cookie is accepted; Select bottons style from None, WordPress and Bootstrap; Set the text and bar background colors; WPML and Polylang compatible; SEO friendly; .pot file for translations included; 


By AppSaloon
3.5 rating based on 22 ratings
6,000+ Active Installations

The plugin creates a page where users can request access to their personal data, stored on your website. You can find this page in the list of WordPress pages. In the backend you’ll get an overview of the requests users send and you can see which plugins collect personal data and need a ‘ask for approval’ checkbox.

Users who ask to view their personal data will get an email with a unique url on which they can view, update and download their comments and ask for a removal per comment. When they ask for a removal, the admin has the ability to delete the comment through the wp-gdpr backend. All emails will be sent automatically.


By Surbma
5.0 rating based on 7 ratings
1,000+ Active Installations

This plugin helps your website to comply with GDPR cookie regulations by asking every visitors to accept or decline cookies. If visitor choose to decline, than the tracking codes (Google Anayltics, Facebook Pixel) are not loading. If visitor accepts cookies, than the tracking codes (Google Anayltics, Facebook Pixel) are loading. So visitors can choose to be tracked or not, before they visit any page of the website. They even can change their minds and set again the cookies.


By Jean-Baptiste Audras, Directeur technique chez Whodunit
5.0 rating based on 7 ratings
2,000+ Active Installations

How this plugin works: The user/visitor use your Personal Data Request Form to ask for Personal Data Export or Erasure; A request is created in WordPress Tools > Export/Erase personal data; An email is sent to the user/visitor to confirm this request; The user request is set to Confirmed in Tools > Export/Erase personal data; An email is sent to the website administrator to validate the request; The personal data are sent by email to the user/visitor (as a 3-day available download link), or erased, depending on the user request type.


By Vladimir Radnaev
4.5 rating based on 4 ratings
1,000+ Active Installations

Main features: create and configure cookie notice; allow user to enable/disable services that can track or store user’s data; allow user to remove all personal data from WordPress site, including Woocommerce and other plugins; allow user to remove email from Mailchimp service; allow admin to delete particular user’s data.

iubenda Cookie Solution

By iubenda

4.0 rating based on 15 ratings
20,000+ Active Installations

This plugin works with the iubenda Cookie Law Solution and allows to block the most common widgets and third party cookies to comply with Cookie Laws, particularly with the Italian cookie law implementation in mind.

The plugin automatically inserts the iubenda code in the head of every page of the site; It allows to manually block all the remaining resources, without the need of direct intervention on the code; It handles the display of cookie banners and cookie policy, saving user preferences about the use of cookies; It displays a clean page (without banner) to users who have already provided their consent; It detects bots/spiders and serves them a clean page.

Compliance Caveats

It's important to note that the Europeans are not out to get you. If you fail to implement a privacy policy, they will warn you - probably many times - before smacking you with a fine. And if you make an attempt to comply, they will likely alert you if you're doing it wrong before taking action.

Also, don't think of these plugins as an attorney substitute. They are just tools and were not developed to give legal advice.

Good luck with your GDPR Compliance!

Subscribe to Blogsite Studio and get my new ebook!

Secure Your WordPress Website:

How to Protect Yourself from Hackers, Spammers, Scrappers, and Imbeciles

A field guide to stopping evildoers from breaking into your website, stealing data, and injecting malware.

Plus, what to do after a hack!


secure_wordpress up 400

2 thoughts on “Free GDPR Compliance Plugins to Satisfy European Privacy Regulations”

  1. I think Complianz GDPR ( should be in this list. I think it tops every one of these plugins, as it was made in cooperation with a huge law firm. The free version enables you to make a GDPR proof cookie banner with the option to customize it as you like. The Premium version adds even more aspects, like a privacy policy, data processing agreements, cookie banner based on geo location, statistics (a/b testing with cookie banners etc).

    The website is 🙂

Leave a Comment

This site uses Akismet to reduce spam. Learn how your comment data is processed.