This plugin is still in violation of the GDPR

The General Data Protection Regulation (GDPR) is a regulation on data protection and privacy for all individuals within the European Union. It came into force across the European Union on 25 May 2018.

This plugin adds customer data to CampaignMonitor without asking consent in the Checkout. This is in violation of the GDPR as you cannot collect customer data like that, regardless of whether you intend to use it or not.

Be warned that if you subsequently send a campaign to customers who did not give consent, they can file a complaint with their local Data Protection Authority and you will be hit with heavy fines.

The CampaignMonitor developers have known about this for years and have done nothing to resolve it.