Every credible website has a Privacy Policy. Some are short and even perhaps lacking important points. Others are incredibly long and in-depth. Not all visitors realize that a Privacy Policy should be on every site they visit, with even fewer visitors taking the time to read them. So, what are they for? Is it truly important to have one on your site? What common mistakes can you avoid? How does one create a high-quality Privacy Policy without being a privacy specialist or lawyer?
A Privacy Policy is a document that shows transparency in what Personally Identifiable Information (PII) you collect on your website, what you do with that information, and who you share it with, amongst other disclosures. It boosts customers' trust in your website and keeps you compliant with privacy laws around the world.
Personally Identifiable Information (PII), sometimes referred to as “personal information” or “personal data”, is any information that could identify an individual.
Some examples of common PII include:
The answer is yes if you use any of the following on your website:
GDPR, UK DPA 2018, PIPEDA, Australia Privacy Acy of 1988, CalOPPA, CCPA, DOPPA and so many more (don't mind as we catch our breath). These are more than just alphabet soup. Each one is a state, country, or region privacy law in the USA and beyond.
Each privacy law is intended to protect the PII of its citizens, with many being enforceable regardless of where the business is located. And many have unique requirements and penalties for not complying. Some propose that businesses be fined over $5,000 per infringement (per website visitor). While others propose private right of action which means citizens of that state can sue businesses anywhere in the US. This means that fines can add up very quickly, even if a website only has a few hundred visitors per month.
And new privacy laws are emerging regularly, increasing the number of laws to be compliant with.
In addition, privacy laws can start applying as soon as you collect PII, meaning you do not need to share, sell, or even use the PII for their requirements to apply to you.
More and more consumers are becoming increasingly concerned about sharing their PII with businesses. Some even choose to stop being a customer of a business if they have privacy concerns over their PII.
Give yourself a competitive advantage and demonstrate that your business cares about your consumers' privacy by having a Privacy Policy.
Privacy Policy requirements are only going to increase in the future. By having a Privacy Policy now, you comply with the privacy laws of today, and gives you an advantage for keeping up to date with the privacy laws of tomorrow.
Copy a Privacy Policy from another website. Every business is conducted differently, even within the same industries. What PII you collect could differ from the website you are copying. So could the method you collect PII, how you store it, what 3rd parties you share it with, etc. Even small differences can mean great policy violations and fines.
Ask yourself: Do I want to spend valuable time trying to adjust it to your business' needs? Are you sure that they are compliant with all necessary privacy laws? Are they updated to the newest privacy laws?
Use a static Privacy Policy generator. As stated above, new privacy laws are emerging regularly. As more and more states adopt their own laws, the number of laws to keep up to date with is constantly changing. By using a static Privacy Policy generator, you may pay a one-time fee and think you can “set it and forget it” but will find it can quickly become non-compliant. This means you either need to regenerate the Policy or face the risk of fines and/or lawsuits.
Ask yourself: Do you want to keep up to date with all new emerging privacy laws? Who will interpret how they pertain to your business and adjust your Privacy Policy? What about when an existing law is modified?
Use a Privacy Policy template.These are tempting to use as all you need to do is fill in the blanks with your business details. But they are standardized policies. They don't differentiate between all the privacy laws out there and tell you which ones apply to you. Nor do all templates comply with all privacy laws. And, like static policy generators, templates don't auto update to accommodate new or modified laws.
Ask yourself: Can a cookie-cutter template cover all your business' specific needs when it comes to the ever evolving and complicated privacy law world? Do you have the time to find the template that fits all your needs? Are you sure that the template is up to date on the latest privacy laws and modifications? Do your privacy practices line up with what's outlined in the template?
We are partnered with and use Termageddon for our own Privacy Policy creation and maintenance.
Termageddon is an auto-updating website policies generator. With Termageddon, you can generate a comprehensive set of policies, including Privacy Policy and Terms of Service, for your website. They will then automatically update your policies when new laws come out or existing laws change. You can really set it up once and leave it in their hands.
If you want to set up your policies yourself, use the button below to setup your own account and get 10% off your first payment. We suggest you pay for the annual subscription for the greatest savings.
Set up TermageddonWatch this video while you set it up for a step-by-step walkthrough →
If just the idea of setting up a Privacy Policy gives you a headache, don't worry. We are here to help.
Starting at $200, our Privacy Policy setup service provides you with:
With this service, we sit down with you and gather the details of your business needed for the creation and installation of your Privacy Policy.
Contact UsDisclaimer: This article is not legal advice to use in complying with any data privacy laws. Rather, it provides information and pointers to help you better understand the importance of having a Privacy Policy for your website. This is not the same as legal advice, where an attorney applies the law to your specific circumstances. We strongly recommend that you consult an attorney if you need advice on any privacy law and how it affects you.