Cookies. Beacons. Scripts.
Tracking technologies are ever-evolving and – unless you live off the grid or use an FBI-level alias – data collection points are a near-constant in our technology-laden lives.
Online business owners need to understand what kind of data they’re collecting, how they’re collecting it, and what they’re doing with it.
You’re doing better than 66% of all website owners. (According to a study by the Pennsylvania State University.)
But just because your policy exists doesn’t mean you’re finished yet.
**Real quick before we jump in:
Everything I share is legal education and information. It’s not business, financial, or legal advice, and it doesn’t create an attorney-client relationship between us.*
–Social Security numbers
It’s all personal information.
And legislation in Virginia, Connecticut, Utah, and Colorado is also following suit. As it is in more and more states in the US.
But if you aren’t in any of those locations, you don’t need to worry about it, right?
Unfortunately, that’s not even close to the truth.
The cool thing about the internet is that it’s global. But the scary thing about the internet is that it’s global.
Which also means your audience has the potential to be global. Even if you don’t want it to be.
–What type of personal and sensitive information you collect (and have collected in the past 12 months)
–The sources you collect that sort of information from
–What you do with the information you collect
–Which third parties you share the information with
–How a website visitor can make changes or update the collected information
–How long the information will be stored
*Note: this is not an exhaustive list.
And that includes making sure you give it a thorough review and update it at least once a year.
(Another SOP you can add to your process file.)
- Have you added or changed the ways you collect personal or sensitive information?
- Are there any new third parties who may have access to the information you’ve collected?
- Have you notified your users and given them an opportunity to provide consent to your updates?
Time to put on my lawyer hat:
Don’t do it.
Besides getting into trouble with copyright laws and the FTC, you can also seriously damage your reputation that way.
Grab a template.
Bonus: whenever legislation changes?
You’ll get notified.