MainWP Blog - Privacy

Privacy requirements can be overwhelming, especially for small businesses. Sometimes, it’s hard to know where to even start evaluating whether your small business website is compliant with the requirements that privacy laws can impose. However, evaluating your website for privacy pitfalls is important as privacy laws can and do apply to small businesses and non-compliance fines can be high (starting at $2,500 per website visitor). In this article, we will discuss how to check your website for the most common Continue reading the post...

If I had a dollar for every time I heard someone say “my business is too small for privacy laws to apply to me”, I’d be rich. In fact, many small businesses assume that privacy laws do not apply to them because their business is too small, they collect too little personal information, they don’t have many (or any) employees, they make too little revenue, or because people input their personal information into website forms voluntarily. However, all of these Continue reading the post...

The fact is that most companies know by now that they need to have a Privacy Policy. Most modern websites collect personal information such as names, emails, phone numbers and IP addresses through features such as contact forms, email newsletter subscription forms, account creation forms, eCommerce, analytics or advertising, thereby subjecting the business to privacy laws, which require them to have a Privacy Policy. When it comes to Privacy Policies, there are a few basic standards that need to be Continue reading the post...

Your management dashboard is infrastructure. Treat it that way. It sits between you and every client site. It touches your updates, your backups, your monitoring, your reports. If you don’t control it, you’re exposed to someone else’s pricing changes, acquisition exits, and roadmap pivots. Agencies are finally asking the question they should have asked years ago: do we own this, or are we renting it? This Is the Operating Reality for Agencies  According to SparkToro’s 2025 State of Digital Agencies Continue reading the post...

Early Release Coolness & Cybersecurity Audits This week we’re really excited to bring you a bunch of news on the MainWP Early Release Program and we can’t wait to tell you about it. We’ve also got a great article contributed by legal expert Donata Stroink-Skillrud about California and its Cybersecurity audit requirements. Let’s get into it before we burst! A Whole Bunch of Early Release News Over the past few weeks, we’ve been talking about the MainWP Early Release Program, Continue reading the post...

As many of you know, California leads the nation when it comes to data protection, whether it be the California Online Privacy and Protection Act (CalOPPA), the California Invasion of Privacy Act (CIPA), or the California Privacy Rights Act (CPRA), the State has always been at the forefront of providing privacy protections to consumers. The California Privacy Protection Agency (CPPA) recently enhanced protections for individuals and requirements for businesses by releasing Regulations requiring certain companies to undertake cybersecurity audits. In Continue reading the post...

Giving Thanks & Some Updates As we head into Thanksgiving here in the States, I want to take a moment to say how grateful the Team and I are for this community. It is because of you that we wake up every morning energized and motivated to make a better product. MainWP has always grown because of the people who use it, improve it, question it, and push us to keep making it better. This week, we are sharing a Continue reading the post...

You have your privacy obligations down pat – you know which privacy laws apply to you, your Privacy Policy is up to date with the latest laws, you don’t track website visitors without consent, and you have a process for replying to privacy rights requests. But have you ensured that your vendors are in compliance too? When you share your customer data with a vendor, you are also responsible for making sure that the vendor processes that data in accordance Continue reading the post...

On September 30, 2025, the California Privacy Protection Agency (CPPA) announced a $1.35 million settlement with the Tractor Supply Company for allegedly violating the privacy rights of residents of California. The CPPA claimed that Tractor Supply violated California privacy requirements by failing to provide an effective mechanism to opt out of the selling or sharing of personal information, failing to have the required disclosures in its Privacy Policy, and failing to have the appropriate contractual protections when disclosing personal information Continue reading the post...

On September 14, 2025, the major provisions of the EU Data Act went into effect, affecting companies producing connected products, offering related services, and third parties that may receive data from a connected device (even if the company is not located in the EU). The Act provides new rights to access data, implements new product design requirements, makes it easier for consumers to switch between providers, imposes new contract requirements, and more. In this article, we will discuss the major Continue reading the post...