But it should also offer information for users to request removal of their private data, as well as options for updating their this information.
- How the data will be processed and for how long the information will be stored.
- Type of information collected (name, emails, phone numbers, IP, etc.).
- How the information will be used (statistical, improving the user experience, email marketing, etc.).
- If the data will be transferred to third parties and how it will be used in such case.
- It should state that it can be updated in the future.
- It should include a real and agile form of contact, so that users can make modifications, updates or cancellations of the data collected.
- It should indicate the responsibilities and limitations of the users during the visit to the Website.
- It has to include information regarding the cookies policy.
- Any relevant information on how the data will be protected.
This policy varies depending on the country. In the case of Spain, for instance, after creating the document, you must register it with the Spanish Data Protection Agency (AEPD), where you declare the files involved in the collection of data.
At the same time, it is a very good idea for a company to publish its social responsibility, generally large companies do it and this can help us to differentiate ourselves.