Disable Comment Cookies in WordPress for Better GDPR Compliance

WordPress sets some cookies which are not strictly necessary. Here is how to disable comment cookies for better GDPR compliance.

By Tim Trott | WordPress | September 28, 2012

Earlier in 2012, the European Union introduced a directive requiring that websites obtain permission for setting all 'non-essential' cookies. In the UK, the details are provided by the ICO and basically, require that sites which set cookies that are not strictly necessary for the operation of the site ask permission from the user.

WordPress by default stores cookies on two occasions:

WordPress sets a cookie upon user login which is essential for users to allow access to the administration system and falls into the strictly necessary bucket. A simple message on the login page stating something along the lines of "by logging into this site you agree to cookies being stored on your computer" will suffice.

The other cookie is used to store the name and e-mail address of people leaving comments and is more of a convenience rather than a necessity. You could add a message similar to the one above to the comments form, or if you prefer, you can disable these cookies from being set altogether.

Since WordPress 3.4, there is a hook that you can use for setting comment cookies. This hook is called set_comment_cookies and you can disable comment cookies from being set by simply removing actions from it.

In your themes functions.php (or you can create a WordPress plugin) with this code:

php
remove_action( 'set_comment_cookies', 'wp_set_comment_cookies' );

Earlier versions of WordPress should be upgraded, but if this is not possible you have to edit one of the core files to disable cookies. Be careful when modifying core files as they can often break your site if not done correctly, and any changes you make will be overwritten when you upgrade to a newer version.

In 'comments-post.php' towards the bottom you will find a code block like this:

php
if ( !$user->ID ) {
  $comment_cookie_lifetime = apply_filters('comment_cookie_lifetime', 30000000);
  setcookie('comment_author_' . COOKIEHASH, $comment->comment_author, time() + $comment_cookie_lifetime, COOKIEPATH, COOKIE_DOMAIN);
  setcookie('comment_author_email_' . COOKIEHASH, $comment->comment_author_email, time() + $comment_cookie_lifetime, COOKIEPATH, COOKIE_DOMAIN);
  setcookie('comment_author_url_' . COOKIEHASH, esc_url($comment->comment_author_url), time() + $comment_cookie_lifetime, COOKIEPATH, COOKIE_DOMAIN);
}

Simply comment this out to disable cookies.

Was this article helpful to you?
 

Related ArticlesThese articles may also be of interest to you

How to Determine Paged Comments in WordPress
How to Use Custom Gravatars Icons in WordPress
Re-Enable a Greyed out WordPress Publish or Update Button

CommentsShare your thoughts in the comments below

If you enjoyed reading this article, or it helped you in some way, all I ask in return is you leave a comment below or share this page with your friends. Thank you.

This post has 3 comment(s). Why not join the discussion!

We respect your privacy, and will not make your email public. Learn how your comment data is processed.

  1. DF

    On Monday 7th of October 2019, David J Forer said

    Thanks for this simple solution. Have you found that comments have increased or decreased since you added the WordPress save my name box by the post comment button? Do you feel the box is enough? Gdpr is interesting for sure and we might as well get used to figuring this stuff out as other countries will follow suit. Thanks again for showing me exactly were to delete the cookie.

    1. Tim Trott

      On Thursday 10th of October 2019, Tim Trott  Post Author replied

      I did not notice any difference adding the save name box. Is the check box enough? I think so, its a positive action by the user to store the name in a cookie on their browser.

  2. MO

    On Sunday 1st of September 2019, Montana said

    thanks ALOT for this man

AZULIA DESIGNSWeb design that taps into the Harmony and Vision of your Dreams

Tim Trott is a freelance software developer and web designer based in Glasgow, Edinburgh & the Lothians, Scotland

SocialsConnect with us on socials

Latest PostsOur most recent writings

How to Implement Rate Limiting in Your C# REST API
How to Implement Rate Limiting in Your C# REST API
Tips and Tricks for Optimizing Performance in Vue.js Applications
Tips and Tricks for Optimizing Performance in Vue.js Applications
Caching Strategies for Improved Efficiency in C# REST APIs
Caching Strategies for Improved Efficiency in C# REST APIs
The Impact of Voice Search on SEO: Tips for Optimization
The Impact of Voice Search on SEO: Tips for Optimization

You May Also Like

How to Use Custom Gravatars Icons in WordPress
How to Use Custom Gravatars Icons in WordPress
How to Determine Paged Comments in WordPress
How to Determine Paged Comments in WordPress
Re-Enable a Greyed out WordPress Publish or Update Button
Re-Enable a Greyed out WordPress Publish or Update Button
How to DISABLE Automatic Reboots After Updates in Windows 10
How to DISABLE Automatic Reboots After Updates in Windows 10