Below, we consider how Privacy Policies work and seven key reasons why you should (and even must) have one on your website.
- Add information about your business: your website and/or app.
- Select the country:
- Answer the questions from our wizard relating to what type of information you collect from your users.
- 2.1. 1. You'll Comply With Legal Obligations
- 2.2. 2. Your Customers Will Stay Informed
- 2.3. 3. Privacy Disputes Will More Easily Be Resolved
- 2.4. 4. You'll Comply With Third-Party App Requirements
- 2.5. 5. Your Marketing Efforts Will be Improved
- 2.6. 6. You'll Help Boost Your SEO Score
- 2.7. 7. Your Business Risks Will be Reduced
- 4. Summary
1. You'll Comply With Legal Obligations
From the EU's General Data Protection Regulation (GDPR) to the California Consumer Privacy Act (CCPA), there are multiple privacy laws around the world and they all have one thing in common: They give individuals more control over their personal data and how it's used.
What's more, these laws typically require businesses to:
- Tell people what data they collect and how they process this information, and
- Get a person's clear and informed consent before processing data in a certain way
- General Data Protection Regulation (GDPR): Businesses must only collect the minimum amount of personal data necessary to complete an action e.g. a contract of sale. They must tell users what information they process and give people clear opportunities to opt-out of data processing.
- California Consumer Privacy Act (CCPA): Gives Californians the right to know what information is collected about them so they may object to businesses collecting or selling certain types of data.
There are, of course, various other privacy laws which may require you to produce a written document setting out your data processing practices. If you're unsure which laws apply, it's best to seek legal advice.
2. Your Customers Will Stay Informed
- What personal information is and why you need it
- The different rights people have over their personal information
- How you can help them exercise those rights
And Gymshark emphasizes its commitment to helping people exercise their privacy rights:
- Remind people that they're in control of the data they share with you and they can update their preferences at any time.
- Make your business accessible. Highlight your commitment to protecting privacy rights by explaining how people can contact you to exercise these rights.
3. Privacy Disputes Will More Easily Be Resolved
Privacy Policies help you avoid disputes in two key ways.
Secondly, Privacy Policies are, fundamentally, written agreements between your business and the other party. If there's ever a dispute e.g. someone claims you processed their data in a wrongful way, you can point to specific provisions within the Policy to settle the matter.
4. You'll Comply With Third-Party App Requirements
This requirement is also set out in Apple's article about protecting user privacy:
- It's your responsibility to ensure you comply with any Terms of Service. If in doubt, always get legal advice.
5. Your Marketing Efforts Will be Improved
6. You'll Help Boost Your SEO Score
Check our guide to nofollow tags for more information.
7. Your Business Risks Will be Reduced
- What rights users have over personal data (and what "personal data" means)
- Whether you collect personal data (if you don't, then you should confirm this)
- What type of data you collect e.g. names, addresses, financial information
- Why you need this information e.g. to perform a contract
- Who you share the data with e.g. third party providers
- What technologies you use to collect the data e.g. cookies
- How people can access their privacy rights
- How they contact you to exercise these rights or to ask further questions (e.g. provide a company email address)
- Privacy Policies tell your customers what rights they have and how to exercise these rights.
And remember, even if you don't process any personal data from your customers, it's worth including a short Privacy Notice confirming this. You can always amend the Privacy Notice in the future if you start processing personal information.