Privacy protection rights of your visitors
Visitors also want to know which "third parties" you share their data with. For example, with service providers, advertisers or government agencies.
All this information is needed to make visitors or potential customers aware of their privacy rights and how their data is processed.
If you want to take it a step further, you can also explain yourself what rights your users have. There are quite a few! Like the right to access, correct, delete ...
The Data Protection Authority, a Belgian independent authority that ensures that basic principles of personal data protection are properly observed, has its own website where, among other things, you can read what privacy rights you have.
You want visitors to trust you
At this point, we don't have to tell you how important customer trust is. The more data leaks there are, the more internet users - not entirely unjustifiably - begin to worry. So your audience will start looking into their own privacy data. They will consider you responsible for handling their data safely. Think about birthdays, phone numbers, e-mail addresses ...
More than half of companies suffered a recent data breach in the year 2023. Unplanned disruptions caused by cyberattacks are also increasing, and becoming more and more expensive.
Another important point: more and more third-party apps are asking for transparency (Third-Party Requirements) regarding the handling of private data from business partners.
Both Google and Apple currently require privacy policies from everyone they partner with, for all their products and apps. Since analytics software relies heavily on personal data, a policy is almost always required when using it.
Prevent hefty fines!
The bottom line is always the same: fines were issued to companies that did not comply with GDPR privacy guidelines. GDPR, by the way, stands for General Data Protection Regulation. That's the international term when talking about AVG.
Rules and laws you must comply with
What rules and laws related to privacy do you need to consider? They mainly have to do with General Data Protection Regulation (AVG), cookie policies, and data protection.
Webshop or website? You always need to put this info online:
Strictly speaking, you must also include those details on your various accounts on social media. The department of economics of the Belgian government explains it all:
How do cookies work?
When you visit a website, the site places small text files, called cookies, on your device (laptop, mobile phone ...). Those cookies contain information that the website can read when you return to the same website. For example, a shopping cart on a webshop. When you add items to your shopping cart, this information is stored in a cookie on your device. The next time you visit the website, the website can read the cookie and restore your shopping cart so you don't have to add the selected items again.
Do you send newsletters to your customers or use their data for other marketing campaigns? Indeed, there are rules for that too. To use that data, you have to ask your contacts for a separate permission. You must also state the processing, and privacy terms of this.
Test your website's privacy settings
Are your website's privacy settings in compliance with the law? If not, you risk hefty fines in case of an audit. Complete the iubenda compliance scan and find out immediately whether your website meets all the conditions.
Like it or not, it will occasionally contain "dusty" legal language. But that should not be a reason not to put it on your website. The more openness to your visitors, the better.
- Who owns the website or app?
- What data do you collect?
- How do you collect that data?
- Why (on what legal basis) are you collecting that data?
- What will you do with the collected personal data? (analytics, email marketing ...).
- Through what sources do you collect personal information from your visitors (contact form, e-mail, cookies ...).
- With which third parties do you share the data? (plugins, widgets, social media ...).
- What rights do users have (view, delete, block data ...)?
- Does the processing result in any automated decision-making?
If applicable, you must provide specific information about the transfer of data across national borders (for example, with an international organization) and the measures you take to ensure that this transfer takes place in a secure and compliant manner. This is another consequence of the General Data Protection Regulation (GDPR).
- Research legislation yourself. Map out the privacy laws and regulations that apply to you, learn about the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA) in the United States, and/or the privacy law in Australia.
- Make an inventory of the types of personal data you collect from your visitors and customers.
- Clearly describe why you collect data and its legal basis.
- Explain how you process, store, protect and with whom you share the data collected.
- Inform visitors about their rights. This includes access, consent and possible deletion of their data.
- Write out the security measures you have taken to protect collected data from loss, misuse or disclosure, among other things.
- Share contact information. Include contact information where surfers can go for questions, requests or complaints regarding data protection and privacy.
Also useful (and often cheaper): use online compliance software. A compliance manager has several tools that you can use to create (or have created) a policy. That's how you generate the documents you need.
Discover the easiest way to comply with privacy legislation
With iubenda, you can generate all the necessary documents and tools and automatically keep them in line with changes in the law.
It is perhaps the easiest way for your website or webshop to comply with the GDPR legislation and other privacy laws. We agree that it is a mess of rules and regulations!
Iubenda is highly recommended because:
Included with an iubenda package:
Contact us to determine which package suits your website! You can start small and expand later to useful extras. Thanks to the handy plugins you can install iubenda on your website in minutes. We have plugins for WordPress, Joomla and Magento. You can also easily add it to SiteBuilder, by easily embedding a simple code (found in the tool) into the website.
Creating website privacy policies: 6 handy tips!
- Clearly state how long you will keep data.
- Note whether the person concerned is obliged to provide certain data.
- Explain what organizational measures you will take if your company were to discontinue or merge.
- Provide clear instructions on how customers can withdraw their consent to the collection or certain processing of their personal data.
- Explain how users can file complaints in case of any violation of their (online) privacy.