Legal Nodes Team
Why you need it
What must be in
- Third-party providers, partners and other recipients of the collected data, as well as the implied transfers of the data to third countries;
- Retention periods - how long and why are you going to store the data?
- Data rights reference - what rights do individuals have under the applicable privacy laws? The most notable examples under the GDPR are the rights to access, amend, and delete the data. The list also includes the right to complain to the competent government body;
- Contact details of the company and its privacy representative.
The exact list of details for the Policy is in the applicable data protection laws, such as the GDPR or national data protection acts.
The ideal Privacy Notice is a mix of abstract and case-specific information. While explaining general rules of data collection, elaborate on it in the examples. You can split the details into several use-cases, such as public profile creation, ordering the goods online, and payments.
How it must look
Besides the content, Privacy Notice is about how you communicate the details to the "end-user" of the document. The most important part is to remember that you address the layperson. Try to deliver even the subtlest legal details in plain and concise language. Considering phrases and language used by the users can help a lot. Basically, avoid legal jargon.
Instead of the conclusion
Disclaimer: the information in this article is provided for informational purposes only. You should not construe any such information as legal, tax, investment, trading, financial, or other advice.
Legal Nodes Team