The exact definition of personal information will vary depending on the piece of legislation but, generally, the following are included:
- Dates of birth
- Addresses (postal and email)
- Payment details (credit card numbers)
- Location (IP address, geolocalization)
- Social Insurance Numbers
In addition to outlining how the company will use the information, it also includes how it will meet its legal obligations, and how those sharing their data can seek recourse should the company fail to meet those responsibilities.
it’s Required by Law
The European Union is known for having some of the strictest privacy laws in the world. The cornerstone of privacy legislation, the General Data Protection Regulation (GDPR) provides detailed information in articles 12, 13, and 14 in regards to privacy policies and the importance of facilitating the exercise of the rights that your users have over their data.
United States (California)
While there is, to date, no privacy legislation at the federal level in the United States, the state of California has enacted its own in order to protect its constituents’ privacy.
In addition, the California Consumer Privacy Act (CCPA) came into force in 2020 to supplement the CalOPPA. While its scope of application is more limited – as it is notably targeted to businesses that either has an annual gross revenue of more than $25 million, make at least half of their revenue selling personal data of its users, or that sell, buy, share or receive personal information from at least 50,000 households, consumers or devices annually – it should still be taken into consideration.
Australia regulates how businesses should handle personal information through its Privacy Act of 1988.
These examples are solely used to show you what some countries across the globe require when it comes to collecting personal information from their residents but many other privacy laws and regulations exist and they each have their own particularities – it is crucial that you make sure that you are complying with the sets of laws and regulations applicable to your website before you start collecting and processing any kind of personal information.
It’s Required by Third-Party Services
It Helps You be Transparent
A website that does not inform its users that it collects data or that hides its policy may look untrustworthy – don’t let this be the reason why you lose business to your competitor.