- 1. Required by Law
- 2. Required by Third Party Services
- 3. Transparency
- 4. Recommended Clauses for Privacy Policies
- 4.1. Type of Information You Collect
- 4.2. How the Collected Information is Processed and Shared
- 5. Examples of Websites with Privacy Policies
- 5.1. Reddit
- 5.2. Canva
- 5.3. The New York Times
- 6. Summary
Privacy Policies are legally binding agreements you are required to post on your website if you're collecting any sort of personal information from your site's visitors or customers.
Required by Law
- Answer a few questions about your business:
- Enter the country and click on the "Next Step" button:
Required by Third Party Services
According to their requirements, you should include clauses that disclose how you use these third party services, APIs, SDKs, plugins, etc.
- Google Analytics
- Google AdSense
- Google AdWords
- Amazon Affiliates
- Twitter Lead Generation
- Facebook Apps
- Google Play Store
- Apple's App Store
Analytics services work by placing cookies on your visitors' devices and then collecting information about them when they visit your website, such as which device(s) they use, browsing activities, etc.
Websites and web applications that use analytics services to improve the user experience they deliver must therefore abide by these rules.
It's a good practice to follow even if you're not collecting any sort of personal information from your website's visitors. This is because Privacy Policies are increasingly prevalent. If a visitor sees that you don't have one published, she may be led to believe that you do, in fact, collect information from your visitors but aren't disclosing it. It's better to have one posted that states that you do not collect any information from your site's visitors. This is especially true for blogs.
Recommended Clauses for Privacy Policies
Type of Information You Collect
Most Privacy Policies start out by disclosing the type of information the business collects from its visitors or customers. It lets the end user know which type of personal information they can expect to provide, whether required or optional.
MailChimp has an incredibly detailed Your Information section which explains what information it collects from users. It's been divided into several sections - Information you provide to us, Information we collect automatically, Information we collect from other sources, Information from the use of our mobile apps.
It identifies the personal information you provide when you sign up with them and/or purchase their services such as name, address, email address, IP address, and credit card information.
Some web applications, like GitHub, collect information from their site's visitors in addition to their end users.
GitHub explains that it collects personally-identifying information from website's visitors and why it's collected. The type of information collected from users who have accounts on GitHub is also disclosed.
How the Collected Information is Processed and Shared
You're required to disclose how you process and share the personal information you collect from your site's visitors. It should explain what you do with the information after you've collected it.
Examples of Websites with Privacy Policies
It includes the following clauses:
- What We Collect
- How We Use Information About You
- How Information About You is Shared
- Ads and Analytics Partners
- Your Choices
- Other Information
- Contact Us
The New York Times
You need to be aware of:
- The Terms of Service requirements of any third party services your website or app uses.