- 3.1. Footer
- 3.2. Account Sign-Up/Login Section
- 3.3. Email Newsletter Subscribe Form
- 3.4. Anywhere Your Site Collects Personal Information
- 4.1. App Store Listing
- 4.2. Within an App Menu
- 4.3. On Your Main Website
- 5.1. Desktop App's Download/Information Page
- 5.2. Within a Desktop App Menu
- 5.3. On Your Main Website
- 8. Conclusion
It will disclose how the business or individual does the following:
- Collects personal data
- Uses personal data
- Discloses or shares personal data
- Manages data (storage, deletion, security, etc.)
It will also disclose what rights users have in relation to the above, and any law-specific requirements.
- Adding the URL as a link in your website footer
- Adding the URL as a link within your mobile app's navigation menu and app store listing
At Step 1, select the Website option or App option or both.
Answer some questions about your website or app.
Answer some questions about your business.
The URL must be public and accessible by all users, logged-in or not. Don't restrict the URL with a password in any way.
Account Sign-Up/Login Section
For example, here's how eBay provides important URLs in this section:
Email Newsletter Subscribe Form
Anywhere Your Site Collects Personal Information
- In your app store listings
- Within the app, in a menu
- On your app or company website
Let's take a look at these in further detail.
App Store Listing
This is important because users may wish to know what personal information you'll collect from them, and when, before they choose to download your app and hand over their private data.
Within an App Menu
Here's how Fitbit uses its "Account" menu to display a "Legal" link:
Here's how Instagram uses its "Settings" menu to display an "About" sub-menu:
On Your Main Website
Instagram does the same thing:
- On your app's download/information page
- Within the app, in a menu
- On your app's main website
Desktop App's Download/Information Page
Here's how Telegram Desktop does this on the Microsoft App Store:
Within a Desktop App Menu
Here's how Telegram uses its "Settings" menu to display a "Privacy and Security" sub-menu:
Here's how Netflix does this on its desktop app:
On Your Main Website
This helps ensure that users are fully aware that by purchasing from your ecommerce store or app, they are sharing personal information with you such as a mailing address and financial account information.
Here's an example of how you can do this:
Note that this concept is pretty universal and applies well beyond Facebook and Google, so make sure to comply with specific requirements of each third party service you're working with.
You can download these instructions as PDF file.
Log in to your Facebook account and go to your Facebook Page.
Scroll down to the Edit Page Info field:
Changes are saved automatically for your Facebook Page. You can see the link on your page under the About section:
When you use the APIs from Facebook, you're requesting personal information from users through Facebook. This triggers a number of laws aimed at protecting personal information, including the General Data Protection Regulation (GDPR).
Don't forget that because you collect personal information from Facebook users, you're not only required to have this legal agreement for your Facebook app, but also have it for your website, mobile app, and so on.
- Go to the Facebook for Developers website.
- Click the My Apps option in the top navigation menu:
- Click on Settings and select Basic:
If your app is going to appear in Facebook App Store (or App Center), the URL you saved in the dashboard will appear in the profile page of your app:
Please note that Facebook is also requiring you to have a URL for a Terms of Service agreement:
Keep your Facebook app compliant by creating and providing these two important legal agreements. It will help protect the legal rights of your customers, make sure your app gets to be distributed without issue, and show that your business is trustworthy and transparent.
If you offer a login with Instagram feature, you need to comply with these terms.
- Be publicly and easily accessible
- Clearly explain what data you process, how and why, and how users can request to have their data deleted
In June 2013, Twitter released a suite of tools that allows marketers to add videos, photos and all sorts of media to tweets.
There are currently four Twitter Cards available:
This is the default card. It lets you present a small image along with a title and description, with a link to your website. It's a great way to give a little preview of what you're trying to promote, as well as an easy way to access it quickly. Businesses use this to promote a sale, a new blog article or some featured content.
- Summary Card with Large Image:
- App Card:
- Player Card:
Here's an example of this type of card from Burns Entertainment:
These cards have a larger image section that helps them stand out more. These can be great for displaying content where the image will be more important, such as an informative graph or a work of art.
Here's an example of a large image summary card from Bill M Moore:
This card is perfect for promoting your mobile app while giving users a quick, convenient way to get a direct link to download your app. When users click on the image in this card post, they'll be taken to your app's download page.
Here's an example of an app card from Round Here Radio:
These cards let you embed a video clip within your Twitter post that a user can play from the post itself, then link to the full video or more content if they wish. This is an engaging way to interact with your followers while promoting your content.
Here's an example of a player card from Tri-Force Consulting:
Taking advantage of Twitter Cards can help you with lead generation, promoting your brand and advertising your products or services.
They also help you:
- Generate more website traffic
- Get more followers on Twitter and elsewhere
- Enhance the professionalism and effectiveness of your tweets
Twitter's sign-in feature allows people to sign into or create accounts on other websites and mobile apps via the user's existing Twitter account.
This feature helps users access a website or app without needing to take the time to create an additional account for that website. This is very convenient and can help users be more inclined to sign up for your site.
We recommend two things to do to satisfy this requirement:
When a user clicks the Twitter icon, an authorization page will open where a user is prompted to enter their Twitter username or email address as well as a password to sign in:
The Google Sign-in functionality lets people who have Google accounts use their accounts to sign in to other websites that have integrated this functionality.
It's similar in concept to Facebook Connect,Twitter Sign In, and others that allow you to use one main account to sign in to multiple different websites, apps and platforms.
Rather than registering individually for all of the websites or apps that a user regularly uses, most websites now conveniently allow users to simply sign in with an account that's already created, such as a Google, Twitter or Facebook account.
For example, Wave provides a "Sign In with Google" button on its login page:
If you have a website or mobile app that is being developed to communicate with or integrate with Google services, such as a website or mobile app that supports Google logins, you must follow the requirements of Google's Platform Guidelines.
You must clearly disclose what data will be collected shared and used by your website or app when a user uses a Google button.
Khan Academy offers a variety of sign-in buttons, including one for Google. It also notes to the left of the buttons that by logging in, a user is agreeing to legal agreements, which are linked to the form and disclose further information:
Privacy is becoming a greater concern among both the public and legislative representatives. New comprehensive laws and massive lawsuits prove that privacy matters and failing to comply is costly.