WHAT SHOULD BE INCLUDED?
- Company: The name of the company that owns the website collecting information from its users.
- Website: The URL address of the company’s website that the user will be browsing and accessing.
- User’s Information: A description of the type of information that the website collects and discloses.
- Collection, Use, and Disclosure: What information the company will collect , how they will collect and use the information, and when and to whom they will disclose the information.
WHEN IS IT NEEDED?
In the United States, the Federal Trade Commission (FTC) regulates laws and policies regarding the privacy practices of businesses and the protection of their customers’ personal information. The FTC also helps to enforce federal laws concerning the privacy of customers’ information, including the following:
- Fair Credit Reporting Act (FCRA), which limits how companies can obtain and use a customer’s credit and background reports.
- Gramm-Leach-Bliley Act, which requires financial institutions to clearly explain their information sharing practices and also restricts the sharing and use of specific financial information.
- Health Insurance Portability and Accountability Act (HIPAA) created a “Privacy Rule” that establishes a national set of standards of how health care service providers can use an individual’s protected health information.
The European Union has more established laws regarding privacy protection, including the Data Protection Directive (95/46/EC) and the E-Privacy Directive (2002/58/EC). These directives state that personal information of European Union residents can only be transferred to countries outside of the European Union that have policies with an adequate level of protection.
- Privacy Statement
- Privacy Notice
- Privacy Page
- Privacy Information Policy