This includes knowing:
- Which data is collected;
- How and why it is collected;
- How long it is stored for;
- Who it might be shared with.
But also the individual privacy rights and how to exercise these rights.
- Because you create a new data processing or significantly modify an existing one. For example, you change or add a subcontractor, you create a processing operation involving a new purpose, or because you start processing sensitive data.
- Because writing standards evolve over time. Regulators are becoming more and more interested in this topic. The trend is to remove legal jargon and words that are too technical, and to move towards clear, simple and intelligible texts.
Good idea or not?
- by mentioning the purposes of the data processing you are carrying out;
- by specifying the existence of data transfers outside the European Union, which often depend on the IT solutions you use;
It is therefore recommended to consult an expert lawyer or to use specialised tools.
- clear and easy to understand;
- adapted to all types of devices (phone, laptop, etc.);
- adapted to your brand identity and communication tone of voice.
Make your website GDPR compliant quickly and easily.
- Being able to edit it easily. You won’t change it every day, but it’s a shame to have to wait several days or weeks for an internal developer or service provider to publish a new version of the policy.
- Highlight the date of the last update.
Do you need to notify your users of the change?
Every time you make a substantial change to the way you collect, use, store, or share data, then you need to notify your users of the change.
There are simple notification methods that maximise transparency. These are:
- sending an e-mail or SMS to announce the changes;
- using a notification on your website to announce the update.
- Additional information on specific topics required by the regulatory authorities;
- Change of the writing techniques to make the information easier to read.
Therefore, to ensure you don’t miss anything that could leave your business exposed, we recommend reviewing your policy on a regular and scheduled basis.
Need website policies fast?
Not to worry, a tool such as the one proposed by Admeet will help you make your website GDPR compliant. Be as transparent as possible on how you protect your users data by integrating visual, clear and compliant legal documentation.