github.com/shohhei1126/hugo@v0.42.2-0.20180623210752-3d5928889ad7/docs/content/en/about/hugo-and-gdpr.md (about) 1 2 3 --- 4 title: Hugo and the General Data Protection Regulation (GDPR) 5 linktitle: Hugo and GDPR 6 description: About how to configure your Hugo site to meet the new regulations. 7 date: 2018-05-25 8 layout: single 9 keywords: ["GDPR", "Privacy", "Data Protection"] 10 menu: 11 docs: 12 parent: "about" 13 weight: 5 14 weight: 5 15 sections_weight: 5 16 draft: false 17 aliases: [/privacy/,/gdpr/] 18 toc: true 19 --- 20 21 22 General Data Protection Regulation ([GDPR](https://en.wikipedia.org/wiki/General_Data_Protection_Regulation)) is a regulation in EU law on data protection and privacy for all individuals within the European Union and the European Economic Area. It became enforceable on 25 May 2018. 23 24 **Hugo is a static site generator. By using Hugo you are already standing on very solid ground. Static HTML files on disk are much easier to reason about compared to server and database driven web sites.** 25 26 But even static websites can integrate with external services, so from version `0.41`, Hugo provides a **Privacy Config** that covers the relevant built-in templates. 27 28 Note that: 29 30 * These settings have their defaults setting set to _off_, i.e. how it worked before Hugo `0.41`. You must do your own evaluation of your site and apply the appropriate settings. 31 * We will continue this work and improve this further in future Hugo versions. 32 33 ## All Privacy Settings 34 35 Below are all privacy settings and their default value. These settings need to be put in your site config (e.g. `config.toml`). 36 37 {{< code-toggle file="config">}} 38 [privacy] 39 [privacy.disqus] 40 disable = false 41 [privacy.googleAnalytics] 42 disable = false 43 respectDoNotTrack = false 44 anonymizeIP = false 45 useSessionStorage = false 46 [privacy.instagram] 47 disable = false 48 simple = false 49 [privacy.twitter] 50 disable = false 51 enableDNT = false 52 [privacy.vimeo] 53 disable = false 54 [privacy.youtube] 55 disable = false 56 privacyEnhanced = false 57 {{< /code-toggle >}} 58 59 60 ## Disable All Services 61 62 An example Privacy Config that disables all the relevant services in Hugo. With this configuration, the other settings will not matter. 63 64 {{< code-toggle file="config">}} 65 [privacy] 66 [privacy.disqus] 67 disable = true 68 [privacy.googleAnalytics] 69 disable = true 70 [privacy.instagram] 71 disable = true 72 [privacy.twitter] 73 disable = true 74 [privacy.vimeo] 75 disable = true 76 [privacy.youtube] 77 disable = true 78 {{< /code-toggle >}} 79 80 ## The Privacy Settings Explained 81 82 ### GoogleAnalytics 83 84 anonymizeIP 85 : Enabling this will make it so the users' IP addresses are anonymized within Google Analytics. 86 87 respectDoNotTrack 88 : Enabling this will make the GA templates respect the "Do Not Track" HTTP header. 89 90 useSessionStorage 91 : Enabling this will disable the use of Cookies and use Session Storage to Store the GA Client ID. 92 93 ### Instagram 94 95 simple 96 : If simple mode is enabled, a static and no-JS version of the Instagram image card will be built. Note that this only supports image cards and the image itself will be fetched from Instagram's servers. 97 98 **Note:** If you use the _simple mode_ for Instagram and a site styled with Bootstrap 4, you may want to disable the inlines styles provided by Hugo: 99 100 {{< code-toggle file="config">}} 101 [services] 102 [services.instagram] 103 disableInlineCSS = true 104 {{< /code-toggle >}} 105 106 ### Twitter 107 108 enableDNT 109 : Enabling this for the twitter/tweet shortcode, the tweet and its embedded page on your site are not used for purposes that include personalized suggestions and personalized ads. 110 111 ### YouTube 112 113 privacyEnhanced 114 : When you turn on privacy-enhanced mode, YouTube won’t store information about visitors on your website unless the user plays the embedded video. 115