These Germans again, being German myself, I can safely say that Germany is possibly the only country where Lawyers specialising in sending fines regarding GDPR exist.
This is so unfair. How are we supposed to inspect every single thing under microscope and be constantly knowing every single new rule? It's a trap! Isn't there just ONE option that you can tick ON that doesn't allow user data to get out of your site?
Hi Paul, You missed something in the video: Using plugin like Perfmatters, we can also use to store Google fonts locally. Cherry on the cake is we can anonymize the user IP with a simple click option in perfmatters.
Great suggestions Paul. GDPR is a complete mess and wasn't properly thought out before it was rolled out. There are a lot of crazy rulings being pushed (particularly within the EU) and much will be rejected on appeal. It's going to take many years for true case law to be established to set the standards. That said, I would also imagine that you could have simple wording in your privacy policy regarding information sharing with 3rd parties (including, but not limited to IP addresses and Google etc.) that people can accept with the click ok on the cookie / privacy consent.
Unfortunately, in the case of this court ruling it isn't as easy as just having the information in your privacy policy. The site owner did have that, and yet got fined. The issue is that as soon as the site loads, the IP is already sent to Google, before having the consent of the visitor. So you would need to have a cookie system that really suppresses the fonts, and if the visitor declines that make sure no google fonts are loaded. Yes, GDPR is crazy and I guess always will be.
@@ChristinaMcKay Messy business for sure... One way around this I guess could be to have a GDPR splash screen using a standard local font. The user then has to agree before being forwarded to the live site 🤔 GDPR is supposedly going to get a big overhaul in the UK now we're out of the EU. Lots of talk around a slash and burn on red tape and legislation on regulations that are damaging to business. In this case, I'm not sure how they can really justify an IP as personal information. The vast majority of people operate with dynamic IP addresses, rather than static, so your IP today could have been used by someone else yesterday, or even this morning 🤔
GDPR with their rules and that german way to fine website owners for using fonts is totally bizarre. The easiest way would be to say that once you use the internet, you understand that you are losing your privacy and that's it.
Awesome Paul! Thanks for the valuable information! One question for further Google services... what is the matter with Google Analytics/ Google Maps? Any information about the topic? An incoming video maybe? Cheers and thanks a lot!
Great video and will definatly use this trick. Two more questions if you may: 1. Why not simply do a "fade in" kind of popup that says: "this website uses cookies and read and send data bla bla bla' and get you covered? (or it is too late because once website loads, details were already transmitted?). 2. Are google fonts free to use?. I seen the "open source" gpl (or something like that) license agreement and it seems free. the question is: in order to use them in a commercial website, should one contribute or pay to someone ? Thank you again.
Ultimately, a government could block access to your website using suppression techniques. Probably not likely in Germany currently, but that could be a thing.
@@WPTuts That's not strictly true, Paul, EVERY organisation that processes EU/UK personal data must comply with GDPR/DPA2018 regulations just like every organisation that conduct business in California must comply with their CCPA legislation. This would of course include the website owner, but is not limited to the website owner. This is a concerning precedent, however, and I've posted about it above.
Its actually realy simple: if you or your site uses users data, you have to get an acceptance from them to do so. Until you do not have an acceptance, you are not allowed to use their data.
@@AllesPat Explicit 'Consent' is _one of_ the mechanisms that give you a lawful basis for processing the personal data of UE/UK citizens. There are many more, such as 'Legitimate Interest' ( _e.g. you're signing up for a newsletter, therefore, you can process their personal data because the citizen has a 'Legitimate Interest' in your services_ ). Others include 'Legal Obligation' ( _e.g. where another aspect of the law requires you to process personal data e.g. HMRC requires that certain personal data is retained in order to apply for UK Gift Aid_ ), yet others include 'Public Interest' and so on. Explicit consent is NOT always required.
@@AllesPat A fair point, and you don't have to just 'pick 1'. In some circumstances you can have multiple lawful bases and, if you do, even if the data subject rescinds consent, if you still have a lawful basis, you can continue to store and process that data e.g. if you have a contractual lawful basis to retain contract signatories or similar. More is definitely better in this case.
When you were downloading OMGF another interesting plugin appeared next to it! CAOS host google analytics locally! Do you think it is also good to use a plugin like this for GDPR?
If the fonts are not stored on your servers and potentially cached on your CDN you could still be affected by the visitors browser accessing the files from Google.
Sadly it’s TH-cam removing comments for no apparent reason and not just putting them into the approval section. It’s been going on for months and is as annoying as hell.
Could a solution be to just use "Safe fonts", like Arial and Times New Roman? Boring, but no calls and no plugins. Right? Or am I missing something? (Entirely possible!)
TH-cam has probably decided it didn’t like something about it and removed it. There’s a massive problem with this across the whole of TH-cam and is incredibly annoying for creators. 🤷🏼♂️☹️
Hi Paul, is there a way or tool to check if my site is using Google fonts, and if it is NOT using it after I changed it to local fonts? Haven't found yet any tool to do that. Thank you very much for this video.
The 'Network' view within Developer Tools (browser menu or tap F12) will show you how each asset is served. Remember that your browser caches most assets on first visit so to ensure a 'fresh load' either CTRL-Click refresh or append a /? to your URL. With a fresh load, the Network view will show whether the asset was served from your website or from a Google URL.
How is Germany going to make me pay their fine when I am here in the US? Personally, I think Google is evil. But, I also don't want other countries trying to tell me what to do, especially the US!
This legislation isn't really targeted at individuals, though the law must be applied equally. It was created to stop the likes of Google/Facebook harvesting your data and using it for their own [usually commercial] purposes. These corporations don't care about the fines, they do care about their reputation, however, and being found to have conducted illegal activities hurts them more than a fine ever will. Prior to this ruling, if you didn't put a cookie consent feature on your website, would 'the powers that be' prosecute you? Likely not, but this ruling sets a very uncomfortable precedent.
@@kevinschmidt2210 Well, you need the acceptance about it - than yes (as long as its in your privacy policy); but if not, you need to block google fonts.
Hi Paul! I'm the developer of OMGF. Thanks for mentioning my plugin in your video! 😎
Thank you for this great plugin
These Germans again, being German myself, I can safely say that Germany is possibly the only country where Lawyers specialising in sending fines regarding GDPR exist.
This is so unfair. How are we supposed to inspect every single thing under microscope and be constantly knowing every single new rule? It's a trap! Isn't there just ONE option that you can tick ON that doesn't allow user data to get out of your site?
Hi Paul, You missed something in the video: Using plugin like Perfmatters, we can also use to store Google fonts locally. Cherry on the cake is we can anonymize the user IP with a simple click option in perfmatters.
Nice option. 👍
Great suggestions Paul. GDPR is a complete mess and wasn't properly thought out before it was rolled out. There are a lot of crazy rulings being pushed (particularly within the EU) and much will be rejected on appeal. It's going to take many years for true case law to be established to set the standards. That said, I would also imagine that you could have simple wording in your privacy policy regarding information sharing with 3rd parties (including, but not limited to IP addresses and Google etc.) that people can accept with the click ok on the cookie / privacy consent.
Very true, but staying abreast of GDPR rulings is a total PITA for website owners.
Unfortunately, in the case of this court ruling it isn't as easy as just having the information in your privacy policy. The site owner did have that, and yet got fined. The issue is that as soon as the site loads, the IP is already sent to Google, before having the consent of the visitor. So you would need to have a cookie system that really suppresses the fonts, and if the visitor declines that make sure no google fonts are loaded. Yes, GDPR is crazy and I guess always will be.
@@ChristinaMcKay Messy business for sure...
One way around this I guess could be to have a GDPR splash screen using a standard local font. The user then has to agree before being forwarded to the live site 🤔
GDPR is supposedly going to get a big overhaul in the UK now we're out of the EU. Lots of talk around a slash and burn on red tape and legislation on regulations that are damaging to business.
In this case, I'm not sure how they can really justify an IP as personal information. The vast majority of people operate with dynamic IP addresses, rather than static, so your IP today could have been used by someone else yesterday, or even this morning 🤔
@@ChristinaMcKay it's not only Google Fonts though, right? It's also recaptcha and maybe maps?
GDPR with their rules and that german way to fine website owners for using fonts is totally bizarre. The easiest way would be to say that once you use the internet, you understand that you are losing your privacy and that's it.
I think Astra Pro theme has the local fonts option which I have turned ON. Will double check. Cool info and tips. Thank you, Paul.
Where do we turn it on, please?
Awesome Paul! Thanks for the valuable information! One question for further Google services... what is the matter with Google Analytics/ Google Maps? Any information about the topic? An incoming video maybe? Cheers and thanks a lot!
WTFrick?!? Wow Big UPS for getting our back Paul 💯
Grateful once again I’m a Blocksy Pro member
In develop edition Elementor you can use Custom Fonts, but not in normal free use
Great tutorial. Very informative. Every time I enter your channel knowing that I'll learn something very valuable from you.
Tu contenido es de una calidad superior, muy claro, muy profesional y sobre todo práctico! Gracias !
this is not only for germany. it is for the eu.
Great video and will definatly use this trick. Two more questions if you may: 1. Why not simply do a "fade in" kind of popup that says: "this website uses cookies and read and send data bla bla bla' and get you covered? (or it is too late because once website loads, details were already transmitted?). 2. Are google fonts free to use?. I seen the "open source" gpl (or something like that) license agreement and it seems free. the question is: in order to use them in a commercial website, should one contribute or pay to someone ?
Thank you again.
How are they going to enforce the fine on companies operating outside of the EU?
I think it’s less about this specific case and more about if other countries adopt a similar stance.
Ultimately, a government could block access to your website using suppression techniques. Probably not likely in Germany currently, but that could be a thing.
Hi Paul, are there any pros/cons as to using a plug-in like OMGF over the other route of uploading options through page builders?
You are amazing!!!!
Thanks Paul.
Sounds like its Google falling foul to the GDPR laws as they are the ones using the IP address for analytics..
But the website owner is ultimately responsible for the features on their website and complying with GDPR sadly.
@@WPTuts That's not strictly true, Paul, EVERY organisation that processes EU/UK personal data must comply with GDPR/DPA2018 regulations just like every organisation that conduct business in California must comply with their CCPA legislation. This would of course include the website owner, but is not limited to the website owner. This is a concerning precedent, however, and I've posted about it above.
And FontAwesome, layered throughout Elementor, similar issue?
What is the problem using a google font?
In Germany you onnly have Problems with the GDPR / DSGVO. The only country who is blocking you to grow or build a new business.
I don’t get GDPR at all …. Just Sounds like another way for extorting money from people. 😕
You and 99% of the Internet then. Lol
Its actually realy simple: if you or your site uses users data, you have to get an acceptance from them to do so. Until you do not have an acceptance, you are not allowed to use their data.
@@AllesPat Explicit 'Consent' is _one of_ the mechanisms that give you a lawful basis for processing the personal data of UE/UK citizens. There are many more, such as 'Legitimate Interest' ( _e.g. you're signing up for a newsletter, therefore, you can process their personal data because the citizen has a 'Legitimate Interest' in your services_ ). Others include 'Legal Obligation' ( _e.g. where another aspect of the law requires you to process personal data e.g. HMRC requires that certain personal data is retained in order to apply for UK Gift Aid_ ), yet others include 'Public Interest' and so on. Explicit consent is NOT always required.
@@davidadams421 Thats true - but for most people it is much more convenient to implement 6a) than to try to justify 6f)
@@AllesPat A fair point, and you don't have to just 'pick 1'. In some circumstances you can have multiple lawful bases and, if you do, even if the data subject rescinds consent, if you still have a lawful basis, you can continue to store and process that data e.g. if you have a contractual lawful basis to retain contract signatories or similar. More is definitely better in this case.
Another super useful tutorial. Thanks a lot Paul!
When you were downloading OMGF another interesting plugin appeared next to it! CAOS host google analytics locally! Do you think it is also good to use a plugin like this for GDPR?
What if you use global CDN? How does that affect everything?
If the fonts are not stored on your servers and potentially cached on your CDN you could still be affected by the visitors browser accessing the files from Google.
Paul, just made a few posts about this and they have all disappeared. Could you look into this and 'restore them from quarantine'?
Sadly it’s TH-cam removing comments for no apparent reason and not just putting them into the approval section.
It’s been going on for months and is as annoying as hell.
Could a solution be to just use "Safe fonts", like Arial and Times New Roman? Boring, but no calls and no plugins. Right? Or am I missing something? (Entirely possible!)
Sure, you could just use those system fonts and not have to worry about GDPR from a font point of view. 👍
I left a comment and a question on this video from the first 35 seconds, where did it go? 😔
TH-cam has probably decided it didn’t like something about it and removed it.
There’s a massive problem with this across the whole of TH-cam and is incredibly annoying for creators. 🤷🏼♂️☹️
@@WPTuts Why don't you reach out to other (big) creators and get together in a united effort to demand that this be solved?
Hi Paul, is there a way or tool to check if my site is using Google fonts, and if it is NOT using it after I changed it to local fonts? Haven't found yet any tool to do that. Thank you very much for this video.
The 'Network' view within Developer Tools (browser menu or tap F12) will show you how each asset is served. Remember that your browser caches most assets on first visit so to ensure a 'fresh load' either CTRL-Click refresh or append a /? to your URL. With a fresh load, the Network view will show whether the asset was served from your website or from a Google URL.
@@davidadams421 Thank you very much. That's what I'm looking for. Sometimes you just don't think of the simplest things.
Also we have new problem with Captcha and Frames of TH-cam
How is Germany going to make me pay their fine when I am here in the US?
Personally, I think Google is evil. But, I also don't want other countries trying to tell me what to do, especially the US!
It's not going to until you have a business in germany.
@@AllesPat Even if I do business in Germany, I get paid here in the US in US Dollars.
This legislation isn't really targeted at individuals, though the law must be applied equally. It was created to stop the likes of Google/Facebook harvesting your data and using it for their own [usually commercial] purposes. These corporations don't care about the fines, they do care about their reputation, however, and being found to have conducted illegal activities hurts them more than a fine ever will.
Prior to this ruling, if you didn't put a cookie consent feature on your website, would 'the powers that be' prosecute you? Likely not, but this ruling sets a very uncomfortable precedent.
@@davidadams421 Doesn't the GDPR consent notification cover Google fonts?
@@kevinschmidt2210 Well, you need the acceptance about it - than yes (as long as its in your privacy policy); but if not, you need to block google fonts.
will having the font locally load the website faster for the user?
Potentially, but I doubt it would be a massive increase.
But thanks for the information.
Tq, love u
It's only for Germany?
This is ruling made in Germany based on the GDPR, which is EU wide in scope (and UK with DPA2018), so it's a precedent.
Impossible to make a comment. Why does TH-cam play this way?
Because it’s a total PITA! It’s doing my head in with the amount of comments being removed for no apparent reason.