- Make certain that you thoroughly understand how the customer data that you collect is processed.
- Check to see if the processing of that data is controlled by any city, state or federal law. For example:
- The state of California requires that a policy statement be posted by all websites collecting personal data about California Residents.
- Policy Statements are legally required for those businesses processing medical data.
- Check merchant or advertising companies requirements.
- Credit processing or advertising companies may require you to include certain language in your private policy statement.
Depending on the type of data that you process, your private policy statement should at least include:
- A statement that tells the customer what you intend to do with the data that you collect.
- That the data is kept confidential, shared or sold.
- If cookies are used and why.
- Explain that the data will not be used for any purpose other than stated in the private policy statement.
- A statement that you guarantee that the customer’s data is protected and safe.
It’s all About Trust
Before you publish your private policy statement, make certain that it includes all of the language required by your merchants, vendors , city, state or federal laws. Include any information that will make your customer feel comfortable enough to trust you with their personal data. Let them know where and how they can contact you.
Remember, your private policy statement is a method of talking to your customer. The contents of your statement should give your customer the confidence to engage in business with you