I have a few remarks about GDPR compliance of this theme.
In the code, different thirdparty libraries or services are used, like:
Disqus
Gravatar
Fonts loaded from other sources
cloudflare.com delivering css or js files (e.g. bootstrap.min.css)
Mailchimp
and possibly others.
As IP addresses are considered personal data, this has potential issues for users of the theme that serve people in the EU, even if they are using the theme only outside the EU (GDPR is extra-territorial in this regard).
Some issues can be solved by providing the documents locally instead of downloading them.
I have a few remarks about GDPR compliance of this theme.
In the code, different thirdparty libraries or services are used, like:
As IP addresses are considered personal data, this has potential issues for users of the theme that serve people in the EU, even if they are using the theme only outside the EU (GDPR is extra-territorial in this regard).
Some issues can be solved by providing the documents locally instead of downloading them.
What is your view on this subject?