Privacy Policy

Privacy Policy is required by law

A “Privacy Policy” agreement is required by law if you’re collecting personal data from users, regardless of the platform used (website, mobile app, desktop app etc.)

Most laws around the world require a Privacy Policy:

  • CalOPPA: California Online Privacy Protection Act
  • GDPR: EU General Data Protection Regulation
  • California Business Code
  • And many more

Personal data is any kind of data that can identify an individual: email address, first and last name, billing and shipping address, credit card information, and so on.

Use this agreement everywhere:

  • Websites
  • WordPress blogs (or any other platforms: Joomla, Drupal)
  • E-commerce stores
  • Mobile apps: iOS, Android or Windows Phone
  • Facebook apps
  • Desktop apps
  • SaaS apps
  • Digital products or digital services

 

Privacy Policy for e-commerce stores

Including a Privacy Policy agreement for your ecommerce store is not only required by law, but it also builds trust with your customers and ensures that you stay in line with your legal obligations.

If you already have this agreement for your store, make sure to follow these tips:

  • Disclose what kind of personal information you’re collecting from your customers
  • Disclose how the collected information may be shared or disclosed with third parties your store might be using (Google Analytics, Google AdWords, Google AdSense etc.)
  • Inform how customers can review and change the information collected on them
  • Make sure to include the policy’s effective date

 

Privacy Policy FAQ

Privacy Policies are essential for all websites and apps. Besides offering transparency to users who are using your website and/or app, Privacy Policies are also a matter of a legal compliance.

There are many countries that require a conspicuous Privacy Policy before you collect users’ personal information.

 

What is a Privacy Policy?

A Privacy Policy is an agreement between you and a user regarding how you’ll handle the user’s personal data. The Privacy Policy describes the type of data you collect, how you collect it, and if you share any of that personal information with other parties.

Privacy Policy agreements also describe how you protect the collected data and the remedies if there’s a security breach, including any notification procedures.

Many Privacy Policies describe how the business stores the collect data and if they use cookies and other tracking technology. Other companies even describe what happens to the data if they go out of business or are acquired by another company.

 

What is a Personal Information?

The general definition of “personal information” includes names, email addresses, street addresses, telephone numbers, and any other data that can be used to identify or contact a user.

Credit card numbers and other payment information, if you run a subscription service, definitely fall under this definition as well.

 

Why do I need Privacy Policy?

There are three reasons you need a Privacy Policy:

  1. First, you must inform users of the risk of using your website or app.

    By outlining the type of personal information you require and describing how you use it, potential users can make an informed decision on whether the risks of sharing their information are worth the benefits of your website/app.

  2. Second, making expectations clear protects you from liability.

    When you have well-defined terms and circumstances defined in a Privacy Policy, users cannot claim you used their information without consent.

    Even if users do not actually read the Privacy Policy, using clickwrap and other forms of acceptance assures they accept the terms–even if they did not review it.

  3. Third, the international character of websites and apps require knowledge of laws outside your own jurisdiction.

    There are countries where your product may be purchased or downloaded that require a Privacy Policy before you request a name or credit card number.

    If you have a Privacy Policy already, you do not have to be concerned with running afoul of the law when you have users from these nations.