As awareness and concerns about the protection of personal information is increasing worldwide, it is very important that businesses, both small and large, implement and provide users of their websites with comprehensive privacy policies.
Countries around the world have their own laws with different requirements per jurisdiction regarding the use of privacy policies. You should make sure you are following the legislation applicable to your activities and location.
1. What type of information do you collect?
Clarify which type of personal information you collect from your users/visitors, for example: email, name, IP addresses, billing details, social security number, etc. Collected information may be provided by the visitors and users of your website or collected automatically through monitory tools.
Sample: “We receive collect and store any information you enter on our website or provide us in any other way. In addition, we collect the Internet protocol (IP) address used to connect your computer to the Internet; login; e-mail address; password; computer and connection information and purchase history. We may use software tools to measure and collect session information, including page response times, length of visits to certain pages, page interaction information, and methods used to browse away from the page. We also collect personally identifiable information (including name, email, password, communications); payment details (including credit card information), comments, feedbacks, product reviews, recommendations, and personal profile”.
2. How you collect the information
In this section you will have to explain what your process is to collect personal information. For example: when your client sends you a message through a contact form; when they purchase a product in your store; or when they subscribe to your newsletter, etc.
Sample: “When you conduct a transaction on our website, as part of the process, we collect personal information you give us such as your name, address and email address. We assume that you agree to the collection of your personal information and that it will be used for the specific reasons stated above only.”
3. How you store, use, share and disclose your visitor’s personal information
Sample: “Our company is hosted on the Wix.com platform. They provide us with the online platform that allows us to sell our products and services to you. Your data may be stored through Wix.com’s data storage, databases and the general Wix applications. They store your data on secure servers behind a firewall.
All direct payment gateways offered by Wix and used by our company adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, MasterCard, American Express and Discover. PCI-DSS requirements help ensure the secure handling of credit card information by our store and its service providers”.
If applicable, explain to your users/visitors which means are used (e.g. email, text message, mailing, etc) and for what purposes (example: campaigns, promotions, updates, etc). Explain how you will contact them by using personal information collected on your website and how they will be able to opt out of receiving such messages.
Sample: “We may contact you to notify you regarding your account, to troubleshoot problems with your account, to resolve a dispute, to collect fees or monies owed, to poll your opinions through surveys or questionnaires, to send updates about our company, or as otherwise necessary to contact you to enforce our User Agreement, applicable national laws, and any agreement we may have with you. For these purposes we may contact you via email, telephone, text messages, and postal mail.”
When using the Wix platform, the following cookies will be stored on your visitors computer. View cookies.
6. How your users will be able to withdraw their consent
Explain how your visitor will be able to withdraw their consent for collection of personal information and their ability to delete or change the collected information.
Sample: “If you don’t want us to process your data anymore, please contact us at XXXXXX@youremail.com or send us mail at: [YOUR ADDRESS]”
8. Questions and Contact Information
Provide valid addresses/channels in order for your users/visitors to be able to contact you.
Sample: “If you would like to: access, correct, amend or delete any personal information we have about you, you are invited to contact us at XXXXXXX@youremail.com or by mail at XX”
needs a link