- What personal information you collect from your users. Personal information can include any data that can be used to identify an individual, such as email addresses, mailing addresses, location data, or a user’s first and last name.
- Why you collect this personal information
- How you use this personal information and whether you allow any third parties to use the information
- IF your site markets to or is directed toward children 13 years or under, then you have a responsibility to include specific details in your privacypolicy per the Children’s Online Privacy Protection Act (COPPA).
This legal agreement is required by law in a number of countries.
- If your website is directed towards children or collects personal data from children under the age of 13, federal law requires a privacypolicy that follows strict guidelines.
- In the European Union, the The European Union’s General Data Protection Regulation (GDPR) took effect on May 25, 2018. It’s important to understand that while the GDPR is a European regulation, its requirements apply to all sites and online businesses that collect, store, and process personal data about EU residents no matter where the business is located.
You should consult with legal and other professional counsel regarding the full scope of your compliance obligations. Generally speaking, however, if you are an organization that is organized in the EU or one that is processing the personal data of EU citizens, the GDPR will apply to you. Even if all that you are doing is collecting or storing email addresses, if those email addresses belong to EU citizens, the GDPR likely applies to you.
- In the UK, the Data Protection Act of 1998 (DPA) governs laws on data privacy and data protection.
- In Canada, it’s PIPEDA.
- In Australia, it’s the Privacy Act.
Ask yourself these questions:
The first thing to do is to take time to understand the nature of the personal data and information you hold.
- What kind of data and information does your company create and collect?
- How do you use it all?
- With whom do you share it?
WordPress 4.9.6 Privacy & Maintenance Release
In light of recent policy changes in the European Union, WordPress has issued a release to assist website owners in complying with these new laws:
- Logged-out commenters will be given a choice on whether their name, email address, and website are saved in a cookie on their browser.
- Site owners can export a ZIP file containing a user’s personal data, using data gathered by WordPress and participating plugins. Site owners can also erase a user’s personal data.
Happy to help.
Although new EU policy took effect on May 25, we anticipate that there will be a grace period for businesses to post privacy policies, notify their subscribers, and become compliant with the law. If you believe you are impacted by GDPR or another U.S. regulation, please reach out to one of our team members or contact us now.
Call us at 636-946-3525 and/or email us to learn how we can help!