DPO Radio

Free Website Privacy Check: Ensure Your Site's Compliant Now!

GDPR Compliance for WooCommerce Subscriptions in WordPress

GDPR Compliance for WooCommerce Subscriptions in WordPress

How to Configure WooCommerce Subscriptions for GDPR Compliance with AesirX CMP

WooCommerce Subscriptions allows businesses to manage recurring payments, but it also processes personal user data, including names, email addresses, and payment details. To comply with GDPR and the ePrivacy Directive (ePD), website owners must manage user consent before collecting this data.

This guide explains how to configure WooCommerce Subscriptions for GDPR and ePD compliance using AesirX Consent Management Platform (CMP). You'll learn how to set up consent settings, block tracking scripts until users provide consent, and maintain full compliance - all while providing a seamless subscription experience.

Prerequisite: Ensure that WordPress and WooCommerce Subscriptions are installed and activated before proceeding.

Configure_WooCommerce_Subscriptions.png

Step 1: Install AesirX CMP and Activate Your Trial

1. Download and Install AesirX CMP

  • Download the plugin: Get the latest release from AesirX CMP Plugin on GitHub.
  • Install the plugin:
    • Log in to your WordPress admin panel.
    • Go to Plugins > Add New.
    • Click Upload Plugin, select the downloaded file, and click Install Now.
    • Click Activate Plugin after installation.

2. Register Your Shield of Privacy (SoP)

  • After activation, you'll be prompted to register your Shield of Privacy (SoP) to start your 14-day free trial with full features. (Your SoP serves as your AesirX Account ID, granting access to all AesirX solutions and licenses.)
  • Steps:
    • Enter your details:
      • Email
      • Shield of Privacy ID
      • Domain
    • Accept Terms & Verify:
      • Check Accept Terms & Privacy Policy.
      • Click “Click to start verification" → Activate My Trial.
    • Your free license details will appear - copy your Client ID, Client Secret, and License Key.
    • Paste them into WordPress > Settings > AesirX Consent Management.

Screenshot_2025-02-06_at_09.31.42.png

3. Update Your License for Continued Access

Before your trial ends, upgrade your license to maintain full access:

  • Visit the AesirX Licenses page and click Manage License under AesirX CMP.
  • Under Action, select Upgrade License and choose your preferred plan.
  • Complete the upgrade process, and your license will be updated automatically.

Step 2: Use AesirX Privacy Scanner to Identify WooCommerce Subscriptions Tracking Domains 

With AesirX CMP installed, the next step is to identify and block third-party domains used by WooCommerce Subscriptions that track user data. AesirX Privacy Scanner simplifies this process.

1. Scan Your Site for Third-Party Domains:

  • Open AesirX Privacy Scanner.
  • Enter your website’s URL and click Scan.
  • The scanner will analyze your site and list all third-party domains collecting user data.

Screenshot_2025-02-06_at_09.32.07.png

2. Identify WooCommerce Subscriptions Tracking Domains

Look for domains associated with WooCommerce Subscriptions, such as:

  • stripe.com (if using Stripe for payments)
  • ipaypal.com (if using PayPal)
  • braintreegateway.com (if using Braintree)
  • Any other third-party payment or tracking services linked to your subscriptions.

3. Copy Identified Domains:

Copy the detected domains for use in AesirX Consent Shield to block them until users provide consent.

Configure_WooCommerce_Subscriptions_Graphic_3.png

Step 3: Prevent Tracking Until Users Give Consent with AesirX Consent Shield

Stop Woocommerce Subscriptions from tracking users before they consent by configuring AesirX Consent Shield.

1. Block Third-Party Domains:

  • Go to WordPress > Settings > AesirX Consent Management.
  • Find AesirX Consent Shield for Domain/Path-Based Blocking.
  • Enter the copied domains (e.g., stripe.com, paypal.com, braintreegateway.com) to prevent them from loading before consent.

2. Block the WooCommerce Subscriptions Plugin

  • AesirX Consent Shield automatically detects and lists third-party plugins that collect user data.
  • Go to AesirX Consent Shield for Third-Party Plugins.
  • Find WooCommerce Subscriptions in the list and check the box to block it until users consent.

3. Adjust Script Blocking Settings:

  • Select "Only Third-Party Hosts" (default).
  • This blocks third-party scripts while keeping first-party scripts running normally.

4. Save your changes.

Click Save Settings to apply changes. WooCommerce Subscriptions and its tracking domains will now remain blocked until users provide explicit consent.

Screenshot_2025-02-03_at_16.36.19.png

Step 4: Set Up Explicit and Fully Informed Consent

AesirX enhances Google Consent Mode V2 with two improved compliance-focused consent modes:

  • Simple Consent Mode – Works like Google’s Basic Consent Mode but with stricter compliance. No data is collected or shared with third parties until users explicitly consent. Includes Reject and Consent options.
  • Default Template – Tags start with denied parameters, ensuring no data is collected, stored, or sent until consent is given. Unlike Google Consent Mode 2.0, AesirX prevents any tags from loading before consent, reducing compliance risks. Includes Reject, Consent, and Decentralized Consent, giving users full control over their personal data.

How to Update Consent Settings

  1. Go to Settings > AesirX Consent Management > Select Consent Mode.
  2. Choose a template and customize the consent text.
    • Update your privacy policy to explicitly state:
      • Who collects the data (your site or third-party services).
      • Why the data is collected (e.g., analytics, personalization).
      • What data is collected (cookies, form data).
    • Keep the consent message simple, clear, and informative so users understand what they’re agreeing to and why it matters.
  3. (Optional) Enter your Google Tag ID and Google Tag Manager ID.
  4. Click “Save Settings” to apply changes.

Screenshot_2025-02-04_at_09.08.43.png

You've successfully configured WooCommerce Subscriptions for GDPR, the ePrivacy Directive, and other data protection laws using AesirX CMP. Now, WooCommerce Subscriptions’ tracking scripts and third-party domains remain blocked until users explicitly consent, maintaining full compliance.

Activate your 14-day free trial today and access powerful features like seamless consent management, customizable consent modes, and the unique Consent Shield for enhanced privacy protection. Take control of your site’s privacy and achieve compliance immediately!

Not sure if your site meets compliance standards? Test it now with AesirX Privacy Scanner to verify your data protection measures!

 

Enjoyed this read? Share the blog!