Table of Contents
The examples offer a window into being able to legally collect personal data under the relevant electronics document act of your place of business.
The examples help shed light on how you collect personal information, whether you use location data, and what privacy laws you comply with. They're a great way to inform users of their rights, too.
The information displayed in each menu item is carefully organized with bullet points and short paragraphs so that you're able to understand the policy without feeling overwhelmed.
The policy is thorough and splits out into sections so people can understand things like the applicable privacy laws, data practices, targeted advertising, and information automatically collected. In the sidebar, users can also navigate to other policies that might be relevant — like the company’s terms of service.
With such an international customer base, Slack recognizes the importance of reassuring users that their data is transferred between different countries safely. This section helps demonstrate website compliance with privacy laws like the EU’s GDPR. It also provides more context about the applicable law in the European Economic Area, and how personal data is processed.
Many organizations would wrap this information up in a general statement about cookies, but Canva has gone above and beyond to instill trust. It shows exactly how it handles personal data, what personal information is collected, if the data is shared with any business partners, and how payment information is dealt with.
5. Best Buy
Twitter addresses two problems from the start:
That providing a brief data policy without compromising its quality is impossible
And that users don't have the time or capacity to read long, complicated documents about how an internet company collects personal information
As with any social media platform, Pinterest uses a lot of personally identifiable information when setting up user accounts, so it needs to be especially careful about disclosing how it deals with personal data, whether it engages in processing personal data, and how it will collect information from new signups.
8. Dune Jewelry
Coursera is one of the most popular educational platforms in the market, and it is not hard to see why. With tons of courses across different subjects and a lot of options to work towards official certifications such as bachelor's and master's degrees, it makes it easier for students to pursue different professional and personal goals all from the same place.
We included Telegram on the list since it's an app that's best known for its rigid adherence to security and privacy.
To be fair, the policy does seem to reflect Telegram's brand identity which is serious, academic, and dry. Telegram isn't trying to act cute and friendly — it's a tool used by privacy advocates, whistleblowers, journalists, and ordinary citizens alike — so if your brand has a similar purpose, it's wise to use Telegram's privacy page as a template.
It's clear that the policy is GDPR compliant, as it talks about things like data processors, data controllers, and how to opt out. It's also refreshing to see that the policy isn't overly complex or verbose, with simply, easy-to-read language and clear instructions on what to expect.
19. U.S. Department of State
- Your contact information
- User data collection and the purposes behind it
- Data processing, storage, and sharing
- Data retention and deletion
- Your users’ data rights and how they can exercise them
- How to submit a complaint
- Details of any changes to the policy document
- An affiliate disclaimer
- A legal disclaimer
- A past performance disclaimer if you manage things like banking & financial services
This isn’t an exhaustive list. If your website visitors include children, for example, you’ll also need to include a disclaimer on children’s rights and what this means for both children and parents. In areas where California’s CCPA applies, you’ll need a section that covers the sale of data and how to opt-out. Our basic disclaimer template points you in the right direction and its customizability helps you with the specific sections you need.
Osman is the content lead at Enzuzo. He has a background in data privacy management via a two-year role at ExpressVPN and extensive freelance work with cybersecurity and blockchain companies. Osman also holds an MBA from the Toronto Metropolitan University.