Project: Customer Data Update System (Custom WordPress Plugin)
Client: APBP
Role: WordPress Developer & UI/UX Designer
Technologies: WordPress, PHP, MySQL, HTML5, CSS3, JavaScript
Project overview
This project involved the end-to-end development of a custom WordPress plugin for APBP (Association of Mouth and Foot Painting Artists), designed to allow customers to securely update their personal data based on information previously sent via direct mail.
More than a technical implementation, the project addressed a critical operational challenge: enabling end users to manage and update their own data through a simple and intuitive experience — without requiring account creation or login — while fully complying with LGPD data protection regulations.
The system was built entirely from scratch, avoiding reliance on generic third-party plugins and ensuring full control over data flow, access permissions, and user experience. This approach resulted in a more secure, reliable, and scalable solution.
Key Challenges
- Ensuring strict compliance with LGPD when handling sensitive customer data
- Restricting access so each user could only view and edit their own information
- Designing a secure validation flow without traditional authentication (login/password)
- Enabling administrators to upload and manage customer data via CSV files
- Creating an intuitive interface for users with varying levels of digital literacy
- Maintaining a scalable, secure, and maintainable codebase
Implemented solutions
- Custom WordPress plugin fully developed in PHP
- Modular architecture separating admin, business logic, and frontend layers
- Customer data import via CSV files stored in a dedicated database table
- Secure access validation using unique ID and verification code sent via direct mail
- Strict data isolation: users can only access their own records
- Clean, responsive, and user-friendly frontend interface
- Clear validation and error handling throughout the user journey
- No exposure of sensitive data or unsecured public endpoints
Project differentiators
- LGPD treated as a core requirement from the earliest stages
- Secure user flow without the need for login or account creation
- Fully controlled codebase with no dependency on heavy third-party plugins
- UX designed for non-technical audiences
- Robust architecture ready for scalability and security audits
Results & Impact
- Simplified and intuitive data update process for end users
- Reduced risk of unauthorized access and data exposure
- Centralized and standardized customer data management
- Reliable system ready for real-world production environments
- Improved operational efficiency for the organization
What this project demonstrates
This project demonstrates my ability to:
- Build custom WordPress solutions beyond standard themes and templates
- Integrate security, data protection, and user experience into a single product
- Develop scalable and well-structured plugins following best practices
- Translate legal and operational requirements into effective technical solutions
- Deliver production-ready systems designed for real institutional use
