How often do you actually look at the roof of your house?
Probably never, unless it was just hit by lightning or it's leaking. But if your roof suddenly weren't there anymore, you'd notice it pretty quickly. Hmm, something's missing -- oh, THAT.
It's the same with website privacy policies.
Don't Be Lazy -- or Overly Boring
Contrary to popular belief, it’s not enough to simply cut and paste someone else’s policy (something small businesses are tempted to do to save on time and/or legal fees). That's just lazy. Make a policy that is specific to your company's operations, and to be safe, include an attorney in creating this document.
Also take note that just because it's a legal document, that doesn't mean it has to be an "incomprehensible disaster," which most privacy policies are, according to a New York Times study.
We have to have a valid reason to use your personal information. It's called the ‘lawful basis for processing.’ Sometimes we might ask your permission to do things, like when you subscribe to an email. Other times, when you'd reasonably expect us to use your personal information, we don't ask your permission, but only when: the law says it's fine to use it, and it fits with the rights you have.
- We do not sell your data;
- We do not share data unless compelled by law; and
- We only ask for personal information if it is needed to provide a service.
Build Your Policy Around Data Privacy -- and Stick to it
Anyone who uses the Internet is susceptible to potential data privacy issues today. Every move we make online can be tracked -- on your site and everywhere else.
While it might seem mundane and even harmless to store someone’s name and email address in your CRM when they fill out a form on your website, sometimes that’s all the information that a bad actor needs to wreak havoc in the event of a data breach.
Leave a Comment