Privacy policies


A Privacy Policy agreement is the agreement where you specify if you collect personal data, what kind of personal data you collect from your users.

A Privacy Policy is required by law, if you collect personal data.

The same Privacy Policy can be used for both your website and mobile app, if it is adapted to include both platforms your business operates on. If you already have this agreement for your website and you are now launching a mobile app, you need to first consider what kind of personal data you collect via the mobile app. Then, update your agreement to include the new changes: what you collect from the website and the mobile app. Afterwards, notify users of these changes.

THIS AGREEMENT SHOULD BE ADDED REGARDLESS OF THE TYPE OF PLATFORM YOUR BUSINESS OPERATES ON OR WHAT KIND OF INDUSTRY YOU ARE IN:

- Web sites - WordPress blogs, or any other platforms: Joomla!, Drupal etc. - E-commerce shops - Mobile apps: iOS, Android or Windows phone - Facebook apps (related read: Facebook: Privacy Policy for Login Dialog and App Details) - Desktop apps - SaaS apps (related read: Terms of Use & Privacy Policy For SaaS Applications) - Digital products (related read: Legal agreements if you have digital products sales)

What to include in a Privacy Policy depends on what personal information you collect, how you collect it and what you are doing with that collected information.

Also, you’ll need to disclose if any third parties are involved collecting personal information in your name, e.g. you use MailChimp to collect email addresses to send weekly updates to your members. A few examples:

The Information Collection And Use section is the most important section of the entire agreement, where you need to inform users what kind of personal information you collect and how you are using that information.
A Log Data disclosure section should inform users that certain data are collected automatically from the web browser users are using and from the web server you’re using: IP addresses, browser types (Firefox, Chrome etc.), browser versions and various pages that users are visiting. A Cookies disclosure should inform users that you may store cookies on your their computers when they visit the pages of your website. This applies even if you use Google Analytics (which would store cookies) or any other third party that would store cookies. A Links To Other Sites is a very common disclosure added in Privacy Policies informing users that your web site may link to other web sites outside your control or ownership, e.g. linking to a news web site, and that users are advised to read the Privacy Policies of each web site they visit. Here is how the Privacy Policy of Asana, a project management tool, inform users on what kind of personal information they collect.

Information You Provide: You provide us information about yourself, such as your name and e-mail address, if you register for an account with the Service, including by connecting with the Service via a third-party service, or by “following,” “becoming a fan,” adding the Asana application, etc., on a third party website or network.

Asana.com – Privacy Policy
It also specifies that registered members (users) may receive marketing messages, but users can opt-out following unsubscribe instructions in each email sent by Asana:

We may use your email address to send you Service-related notices (including any notices required by law, in lieu of communication by postal mail). We may also use your contact information to send you marketing messages. If you don’t want to receive these messages, you can opt out by following the instructions in the message. If you correspond with us by email, we may retain the content of your email messages, your email address and our responses.It specifies the four reasons why they collect personal information:

The Guardian – Privacy Policy