14 September 2020
But why do you need one? What will happen if you don't have one? And does anyone even read those things?
Let's find out.
Almost all of these laws apply to foreign businesses operating within the relevant jurisdiction. So, for example, if you ship to the EU or to California, you'll need to obey EU or California privacy law even if you don't have any physical presence in those regions.
For more information, see our article: Privacy Laws By Country.
Most websites collect some sort of personal information. Bear in mind that many types of data qualify as "personal information."
Increasingly, privacy laws define "personal information" as any information that can be linked, directly or indirectly, to an identifiable individual.
Many, if not most, websites collect the following types of data, all of which may qualify as "personal information:"
For more information, see our article: What is Personal Information Under Privacy Laws?
Mobile apps typically collect a lot of data. Some of this data can be particularly sensitive, such as when using location and camera permissions.
Here's the relevant section of Apple's App Store Review Guidelines:
Pretty much every legal jurisdiction has a law specifically regulating commercial email and prohibiting "spam." Examples include:
These laws impose rules that prohibit unsolicited email marketing and require businesses to allow users to unsubscribe from mailing lists.
Here's an example from Central London Orchestra:
Civil penalties of up to:
This article is not a substitute for professional legal advice. This article does not create an attorney-client relationship, nor is it a solicitation to offer legal advice.