This blog focuses on the requirements for websites, but many of the same considerations apply to mobile applications (apps) as well. We will be writing more about the requirements for apps in the future.
- what personal information is collected,
- why it is being collected,
- how the information will be used,
- how it will be protected, and
- who it will be shared with.
- Individuals should be aware of key privacy practices and know how to access and control their personal information. The type of information will depend on an organization’s practices but the policy should be transparent about what an organization does with information and why, how individuals can access and update their information, who to contact regarding privacy inquiries and complaints, and explain how updates to the policy will be managed.
- Privacy Policies must reflect your website functions. If your website includes analytics, cookies, e-commerce or other functions, there are often specific requirements for wording to be included for website visitors based on contractual or statutory requirements – we will be writing more about the requirements for e-commerce in the future.
This post is part of a blog series about moving your organization’s operations online. For more information regarding moving your organization’s operations online, please see our blog post series covering the legal risks that organizations should consider on an ongoing basis.
Note: This article is of a general nature only. Laws and government programs may change over time and should be interpreted only in the context of particular circumstances such that these materials are not intended to be relied upon or taken as legal advice or opinion. Readers should consult a legal professional for specific advice in any particular situation.