Privacy and cookies policies

⚡tl;dr as a data controller, you have an obligation to provide information on your data processing to the data subjects this is done via the privacy policy a privacy policy and a cookies policy are the basics every website should have each policy must be available in all of your websites' languages book a free call with us what is it? the purpose of the privacy and cookies policies is to inform the data subject notably about the following elements controller this is the entity responsible for the processed personal data in general, this is the company that created the privacy policy type of data processed you must list all the types of personal data that you process you can list categories such as "contact details" which includes phone number, address, etc source of the data if data is collected indirectly (e g , via google analytics), the source of the data must be disclosed processing purposes this is the reason for processing data for example, this can be "to provide our services", or "to recruit job applicants", etc data retention period this is how long you will keep the data categories of data recipients this is notably relevant in case of third party transfers the data recipients can be, for example, "hosting and cloud providers" data subject rights these are the following the right of access the right to rectification of incorrect or incomplete data the right to erasure the right to restrict processing the right to data portability the right to object to the processing the right to withdraw consent rights related to automated decision making, including profiling the right to file a complaint with a regulatory authority legal basis for processing these are the legal basis justifying the processing of data as long as no sensitive data (special categories of data) are being processed, the legal basis can be any of the following contract legitimate interest consent legal obligation vital interests public task cookies types of cookies collected (e g , ga), their purpose, and their retention period best practices information these policies are meant to inform the data subjects as such, their readability is important here are two tips if you use a small amount of cookies, you can add that directly to the privacy policy and have only one document if you have a lot of cookies, it is best to have two documents always draft the policies in clear and comprehensible language why is it important? data subjects have the right to be informed about the processing of their data (meaning that controllers have the obligation to inform) the controller must do so by publishing a privacy policy and a cookies policy usually, these policies are displayed on the controller's website this is the fundamental base of data subjects' rights as it serves as a starting point for other rights (e g , you can only request your data to be amended if you know who processed them and how) best practices privacy & cookies policies a privacy policy and a cookies policy are implemented on the website in all the website's available languages how do i get this done? check our flat fee package for websites and apps book a free call with us here read more on the lexr blog https //www lexr com/en ch/blog/fadp privacy policy/ https //www lexr com/en ch/blog/fadp privacy policy/https //www lexr com/en ch/blog/data protection and gdpr for app developers/ https //www lexr com/en ch/blog/data protection and gdpr for app developers/