So many companies now have a privacy notice on their website and from those I see, for the most part, they seem to fall into 2 categories:
“We have this on here because we want people to know who we are and what we do to protect their information”
“We have this on here because GDPR says we need to (and we probably haven’t read it)”
The latter often relates to only use of a website or in some cases it can be a generic template which doesn’t provide any specific details about the business itself or its management of information belonging to an individual at all.
It’s unlikely, if you fall into that second category, that your Privacy Notice is compliant with Data Protection Regulations, which require you to be transparent about your processing of personal information.
One of the Rights people have is to be informed, and one of the simplest ways to do this via a Privacy Notice. It makes sense to have that on your website if you have one as it makes it easily accessible for most people.
Along the way, in an aim to get something on our websites, we seem to have missed a lot of those points.
You may think that no-one reads these things, but you are writing it for those who will, and as people become more aware of their rights, I assure you they will.
It’s a great opportunity to let people know that you are a business they can trust with their information, so why not have a look at your own Privacy Notice and if it doesn’t really represent your business