If your WordPress website collects any personal data – names, emails, form submissions, or online orders, you’re responsible for keeping that data safe and handling it properly.
With both the NZ Privacy Act 2020 and international laws like the GDPR (General Data Protection Regulation) in effect, WordPress site owners need to understand their legal and ethical obligations – especially if they serve clients in the EU or handle sensitive information.
At Red Jet, we help NZ businesses stay compliant while running fast, secure, conversion-focused WordPress sites. Here’s what you need to know.
📜 What Is the NZ Privacy Act (2020)?
The Privacy Act 2020 governs how businesses in New Zealand collect, use, store, and disclose personal information.
Key Principles:
- Only collect what’s necessary
- Be transparent about how data is used
- Keep data secure
- Give users access to their data on request
- Don’t send personal data overseas without safeguards
Unlike older versions of the Act, the 2020 update introduced serious penalties for privacy breaches including fines and reputational damage.
🌍 What About GDPR?
If your site:
- Has contact forms that collect info from EU visitors
- Sends newsletters or processes payments from EU customers
- Uses third-party tools (like analytics or live chat) that track user behaviour
…then you likely need to be GDPR compliant, too.
The GDPR mandates:
- Clear opt-in consent
- Transparent data policies
- Right to access and delete personal data
- Strict rules around third-party sharing
Even NZ-based businesses can be affected if they interact with EU customers.
🍪 Do I Really Need a Cookie Banner?
Yes – if your site uses Google Analytics, Facebook Pixel, Hotjar, or any third-party tool that stores cookies, you’re required under GDPR and good NZ practice to disclose this and get explicit consent.
Recommended Plugins:
- Complianz – Fully-featured cookie compliance with NZ + GDPR templates
- CookieYes – Lightweight banner plugin with auto-scanning
- Borlabs Cookie (Premium) – Great for WooCommerce and multilingual sites
✅ At Red Jet, we help our clients install and configure compliant banners as part of our site audits and hosting plans.
🔐 Where Is Your Site Hosted and Why It Matters
If your site is hosted outside New Zealand, personal data may be stored in regions without adequate privacy protection. Under the NZ Privacy Act, you must inform users and take extra steps to safeguard their data.
Why NZ Hosting Helps:
- Keeps data on-shore and within local legal protections
- Easier to ensure compliance with New Zealand’s privacy principles
- Faster response times for local users and regulators
Red Jet’s hosting infrastructure is based in New Zealand, giving our clients peace of mind – and a performance boost.
🗂 What to Include in Your WordPress Privacy Policy
Here’s what your site should clearly outline:
- What data you collect (contact forms, orders, newsletter signups)
- Why you collect it and how it’s used
- Who has access to the data (including plugins or third-party tools)
- How users can request access or deletion
- Whether data is stored locally or offshore
- How long you retain it
💡 Use Privacy Policy Generator plugins to help or consult a privacy lawyer if your site handles sensitive or financial data.
🛠 Plugins to Help With Privacy Compliance
| Plugin | Purpose | Free Version | Recommended By Red Jet |
|---|---|---|---|
| Complianz | Cookie banners + legal policies | ✅ Yes | ✅ Yes |
| WP Legal Pages | Privacy + terms templates | ✅ Yes | ✅ Yes |
| WP Activity Log | Tracks admin activity for compliance | ✅ Yes | ✅ Yes |
| WPForms / Gravity Forms | Consent checkboxes & data collection | ✅ Yes | ✅ Yes |
✅ What Red Jet Includes in Privacy Support
When you host or consult with us, we’ll help:
- Set up cookie banners and opt-in forms
- Configure secure contact form handling
- Install privacy plugins correctly
- Advise on data storage and compliance best practices
- Keep your site secure with Wordfence and regular updates
👉 Request a WordPress Privacy Check-Up
🧭 Final Thoughts
Data privacy isn’t just a checkbox – it’s part of earning trust. Whether you’re a local tradie or an online retailer, ensuring your WordPress site meets NZ and global privacy standards shows that you take your users seriously.
Let Red Jet help you stay compliant, secure, and ahead of the curve – without slowing down your site.
