Suggestions for how to write a privacy policy.
March 6, 2013 12:21 PM Subscribe
I need to write a privacy policy for my commercial website. There are a number of online tools for this, I am looking for specific recommendations for such a tool or links to good boilerplate. The site is primarily providing information about a product (iPhone app). It does not collect any information but does have a contact form.
I work in privacy, but not in your jurisdiction. There is boilerplate language, but also check any specific legislation for your jurisdiction and make sure it's compliant at least with where you are.
Best practice, if you expect Canadian and/or EU users of this app would be look into requirements there, because they are more stringent. The Privacy Commissioner of Canada, with the Information and Privacy Commissioners of Alberta and BC have recently published guidelines for mobile apps to comply with Canadian law. Even if they're not law where you are, I believe they're good business practice, because it's good business to respect the privacy of your customers. If you're not collecting identifiable information except on a very limited basis, you're lower risk, but review any time you may collect information (as you would when people contact you). I'm less familiar with EU requirements, but you may find out more poking around here.
(Also, I am not a lawyer and this is not legal advice, just policy advice.)
posted by Kurichina at 1:15 PM on March 6, 2013
Best practice, if you expect Canadian and/or EU users of this app would be look into requirements there, because they are more stringent. The Privacy Commissioner of Canada, with the Information and Privacy Commissioners of Alberta and BC have recently published guidelines for mobile apps to comply with Canadian law. Even if they're not law where you are, I believe they're good business practice, because it's good business to respect the privacy of your customers. If you're not collecting identifiable information except on a very limited basis, you're lower risk, but review any time you may collect information (as you would when people contact you). I'm less familiar with EU requirements, but you may find out more poking around here.
(Also, I am not a lawyer and this is not legal advice, just policy advice.)
posted by Kurichina at 1:15 PM on March 6, 2013
Automattic's privacy policy is Creative Commons licensed. Might be a good starting point.
posted by tayknight at 6:12 PM on March 6, 2013
posted by tayknight at 6:12 PM on March 6, 2013
« Older Lucid Dream + Maxalt = 12 hour Deja Vu? | Rural resort near to Washington DC for anniversary... Newer »
This thread is closed to new comments.
posted by dfriedman at 12:28 PM on March 6, 2013