Earlier this year, the EU’s GDPR—the General Data Protection Regulation—went into effect, delineating how companies handle consumer data for EU citizens. Because the internet is accessible worldwide, most companies have had to update their privacy policies in case they get visits from EU citizens.
Types of Data You Collect
If your business collects personal data, you may be required by state law or federal guidance to itemize the types of personal data you collect. Let your customers know all types of data collected, including the following:
- E-mail address
- Mailing Address
- Phone Number
- Credit Card Information
Many businesses collect information from their customers for varying situations. Privacy laws require businesses to collect only personal data that is needed and indicate why they need it. For example, a mailing order would likely require the customer name, address and potentially phone number.
Don’t forget about phone data, either. Customer service and sales are often required to gather (Read more...)
*** This is a Security Bloggers Network syndicated blog from The State of Security authored by Tripwire Guest Authors. Read the original post at: https://www.tripwire.com/state-of-security/featured/key-components-privacy-policy/