Does My Website Need a Privacy Policy Page?

Does my website need a Privacy Policy page?

You are required to have a Privacy Policy page on your website if you are gathering user’s personal data in any way. This is the case for almost every website. The two most common ways that a website gathers personal data are; forms that allow visitors to enter information and analytic tools to track visitors.

What content should a Privacy Policy page consist of?

The content required on a Privacy Policy page will vary from one business to another. If you were hoping that you could just copy someone else’s Privacy Policy and change the Company Name to your own…You’re out of luck I’m afraid.

You’re also out of luck if you’re hoping to just pay someone else to write your Privacy Policy and make the problem go away. Creating the Privacy Policy is one thing, but the real time-consuming part is what goes on behind the scenes.

You need to think about all of the information that your company collects. You then need to put processes in place to handle the information correctly. These processes need to be inline with the General Data Protection Regulation (GDPR) enforceable by 25th May 2018.

If you’re still hoping that you can avoid dealing with any of this, you’ll need to consider hiring a Data Protection Officer or appointing a current employee as your Data Protection Officer.

How we went about creating our Privacy Policy

WordPress now provides a Privacy Policy Guide. This can be viewed via the WordPress administration area. Go to Settings/Privacy and then click “Check out our guide”. We’ve saved this guide as a downloadable PDF for the purposes of this article.

There are many guides available online, but due to our website having been built using WordPress, it made sense to base our Policy on their guide. However, the ICO are the regulators for the General Data Protection Regulation (GDPR) in the UK, so it was important to cross-reference any of the advice in the WordPress Privacy Policy Guide with the information on the ICO website.

There is a lot of information regarding the General Data Protection Regulation (GDPR) on the ICO website, but we found a couple of areas particularly useful. The first was their Privacy Notice Checklist and the second was their examples of good and bad privacy notices.

Finally, WooCommerce has provided six very good articles that cover the latest changes to the General Data Protection Regulation (GDPR). If you’re still confused by it all, we’d recommend reading “The Ultimate Guide to WordPress and GDPR Compliance“.

How can KWD IT help further?

First of all, we need to be clear that we are not lawyers. We can provide assistance with creating a Privacy Policy for your website. However, we cannot accept responsibility for the information in the Privacy Policy that we create. We would advise you have a legal team review the information. Secondly, we can only assist with the Privacy Policy for your website. You should also have an internal Privacy Policy document. This document should cover additional information, including data you handle outside of your website.

There are various ways that we can assist you with creating a Privacy Policy for your website. However, we’ve broken them down into different sections, so that you only need to pay for the assistance that you require.

Website Review

For a one-off fee of £150 we can carry out a review of your website to check: What personal data do you collect? (Including data collected by third-party plugins) What information in the Privacy Policy Guide can you exclude from your Policy Policy?

Consultancy

For a one-off fee of £150, we can discuss with you the information that is relevant to your business, whilst also offering recommendations. This includes: The personal information about you and your business, which is required in the Privacy Policy. The reasons that you are collecting personal data, including the data collected by third-party plugins. Who you might be sharing your data with, knowingly or unknowingly. How long you retain your data, including recommendations. How you should go about handling requests from visitors, to receive a log of all the data you hold on them or to erase this data. Where you send your data, knowingly or unknowingly. Any additional information that might be applicable to your business, which needs to go into your Privacy Policy. How you protect your data, including recommendations. How you will react to a possible breach of your data, including recommendations.

Website Implementation

For a one-off fee of £100, we can create a page on your website that reflects the information we’ve obtained via the processes discussed above and link to it at the bottom of each page on your website.

Website Modifications for GDPR Compliancy

It’s likely your website will require modifications to make it GDPR compliant. We estimate the cost for these modifications to range between £30 and £150. This depends on the number of areas that you are collecting personal data.

Share this: