Hey! We´ve created a template text to help you build your site’s Privacy Policy page, you may use this template and adapt it with your site’s information and country regulations.
Important Note:
This Privacy Policy text is based on European laws and regulations, and it is meant as just a template. It can not be used as a Privacy Policy text without previously adapting it. Therefore, we highly recommend you adapt the below texts in order to comply with the laws and regulations of your core country or region. We will not held responsible for any misuse or misinterpretation of this reference.
Text as follows, marked in [bold] the texts you would need to adapt:
Privacy Policy – Last updated on [Date]
[Name of the company/group/site], from here on [name of the company], in application of current legislation on the protection of personal data, informs that the personal data collected through the forms on the website: [insert your website’s link], are included in the specific automated files of users of [name of the company] services.
The purpose of the collection and automated processing of personal data is the maintenance of the commercial relationship and the performance of information, training, consultancy and other activities of [name of your company].
This data will only be transferred to those entities that are necessary for the sole purpose of complying with the aforementioned purpose.
[Name of the company] adopts the necessary measures to guarantee the security, integrity and confidentiality of the data in accordance with the provisions of Regulation (EU) 2016/679 of the European Parliament and of the Council, of 27 April 2016, on the protection of natural persons with regard to the processing of personal data and the free movement of such data, [state here your local regulations if necessary].
The user may at any time exercise the rights of access, opposition, rectification, cancellation, limitation and portability recognized in the aforementioned Regulation (EU). These rights may be exercised by the user by sending an email to: [insert contact email] or to the following address: [insert company’s address]
The user declares that all the data provided by him/her are true and correct, and undertakes to keep them updated, notifying [name of the company] of any changes.
Purpose of the processing of personal data:
For what purpose will we process your personal data?
At [name of the company], we will process your personal data collected through the Website: [insert your website’s link], for the following purposes:
- Sending commercial information and newsletters about new services offered on the website and the sector.
- The process of archiving, updating systems, protection and custody of information and databases of the company.
- The transmission of data to third parties with whom contracts have been entered into for this purpose, for commercial, contractual, administrative, marketing and/or operational purposes.
- Sending promotional information electronically.
- Provide the information requested by the user through the contact form.
We remind you that you may oppose the sending of commercial communications by any means and at any time by sending an e-mail to the address indicated above.
The fields in these records must be filled in, and it will be impossible to carry out the purposes expressed if you do not provide this information.
How long will the personal data collected be kept?
The personal data provided will be kept for as long as the commercial relationship is maintained or you do not request its deletion and for the period of time for which legal responsibilities may arise from the services provided.
Legitimation:
The processing of your data is carried out on the following legal bases that legitimize the same:
- The request for information and/or the contracting of the services of [name of the company], the terms and conditions of which will be made available to you in any case, prior to any eventual contracting.
- Free, specific, informed and unequivocal consent, insofar as we inform you by making this privacy policy available to you, which after reading it, if you agree, you can accept by means of a declaration or a clear affirmative action, such as ticking a box provided for this purpose.
If you do not provide us with your details or if you do so incorrectly or incompletely, we will not be able to deal with your request, making it completely impossible to provide you with the information requested or to carry out the contracting of services.
Recipients:
The data will not be communicated to any third party outside [name of the company], unless legally obliged to do so.
Data collected by users of the services
In cases where the user includes files with personal data in the shared hosting servers, [name of the company] is not responsible for the user’s non-compliance with the GDPR.
Intellectual property rights: [insert your website’s link]
[Name of the company] is the owner of all copyrights, intellectual and industrial property rights, know-how and any other rights related to the contents of the website [insert your website’s link] and the services offered therein, as well as the programs necessary for their implementation and related information.
The reproduction, publication and/or use of the contents, in whole or in part, of the [insert your website’s link], other than for strictly private use, is not permitted without prior written consent.
Intellectual property of the hosted contents
The use contrary to the legislation on intellectual property of the services provided by [name of the company] and, in particular, of:
- Use that is contrary to [your country] law or that infringes the rights of third parties.
- The publication or transmission of any content which, in the opinion of [name of the company], is violent, obscene, abusive, illegal, racial, xenophobic or defamatory.
- Cracks, program serial numbers or any other content that infringes the intellectual property rights of third parties.
- The collection and/or use of personal data of other users without their express consent or in contravention of the provisions of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data.
- The use of the domain’s mail server and email addresses for sending unsolicited bulk email.
The user bears full responsibility for the content of his website, the transmitted and stored information, hypertext links, third party claims and legal actions with reference to intellectual property, third party rights and the protection of minors.
The user is responsible with regard to the laws and regulations in force and the rules concerning the operation of the online service, e-commerce, copyright, maintenance of public order, as well as universal principles of Internet use.
The user shall indemnify [name of the company] for the costs incurred by [name of the company] in any case for which the user may be held liable, including legal fees and expenses, even in the event of a non-final court decision.
Protection of hosted information
[Name of the company] makes backup copies of the contents hosted on its servers, however it shall not be held responsible for the accidental loss or deletion of data by users. Likewise, it does not guarantee the total replacement of data deleted by users, as the aforementioned data may have been deleted and/or modified during the period of time that has elapsed since the last backup copy.
The services offered, except for specific backup services, do not include the replacement of the contents kept in the backup copies made by [name of the company], when this loss is attributable to the user; in this case, a fee will be determined according to the complexity and volume of the recovery, always with the prior acceptance of the user.
The replacement of deleted data is only included in the price of the service when the loss of the content is due to causes attributable to [name of the company].
Commercial communications
In application of the [introduce here the applicable law in your country that addresses legal aspects on the Information Society Services], [Name of the company] will not send advertising or promotional communications by e-mail or any other equivalent means of electronic communication that have not been previously requested or expressly authorized by the recipients of the same.
In the case of users with whom there is a previous contractual relationship, [name of the company] is authorized to send commercial communications referring to products or services of [name of the company] that are similar to those initially contracted with the client.
In any case, the user, after proving his/her identity, may request that no further commercial information be sent to him/her through the Customer Service channels.