The authors of Privacy Law Answer Book, edited by Jeremy Feigelson (Debevoise & Plimpton LLP), recommend, at a minimum, the following terms:
- A description of the personal information that will be collected—for example, a user’s name, email address, phone number, mailing address, or credit card number.
- When that personal information will be collected—for example, information may be collected when a user registers for an online account or places an order.
- A description of the non-personal information that will be collected—for example, a user’s browser information or IP (Internet Protocol) address.
- How the collected information will be used—for example, personal information may be used to send the user information about a company’s products or services, and non-personal information may be used to provide targeted advertising by displaying products or advertisements that may be of interest to the user.
- Whether the collection of any information is voluntary or mandatory for consumers— for example, if non-personal information is automatically collected via cookies, that is considered mandatory collection.
- The categories of third parties with whom the information is shared—for example, information may be shared with a company’s affiliates, outside vendors, or other third parties (this disclosure need not list each third party by name).
- Whether and how a user can review or change her personal information—for example, explaining how a user can update her profile or contact a company to request a change or request that information be deleted from the user’s records.
TO LEARN MORE ABOUT DATA PRIVACY LAW AND PRIVACY POLICIES, INCLUDING THE AUTHOR’S POLICY OUTLINE, PURCHASE:
Privacy Law Answer Book (2017 Edition) Edited by Jeremy Feigelson, Debevoise & Plimpton LLP
|Subscribe to Discover PLUS? Read it here ›|