It’s been three months since the General Data Protection Regulation (GDPR) went into effect, and some businesses are still working to get their compliance plans in place. While there’s a lot of GDPR-fatigue (Forbes’ breaks down several unexpected consequences of GDPR, like roadblocks for blockchain data storage, poor customer service, photography under GDPR compliance, and more), businesses still have to make the new adjustments associates with the regulation.
Several business are building “hubs" for their privacy policies. This is a dedicated area where data subjects (visitors to your website, customers, etc.) can go to view:
- How their data is being used;
- Where it’s being used;
- How your data is being collected and what type;
- Terms of the policy;
- And one of the most important pieces of GPDR—where subjects can revoke consent.
Below are five examples of well-presented privacy policies companies should mirror as they create their own GDPR-compliant practices. Visit our GDPR Hub for more resources on how specifically you can do this for your business.
In addition to the above, Disney also is clear about how the company and its advertisers track your web behavior for advertising purposes:
As well as how they protect their largest audience, children.
Below is a screenshot depicting this, showing the different types of personas:
- Site Visitors: Visitors to Outbrain.com that are anonymous to Outbrain;
- Users: The end user of Outbrain’s customer on websites like CNN.com, Sky.co.uk, and thousands of other publishing websites.
- Business Partners: Users that register with Outbrain on behalf of the company they work for to use the Outbrain Amplify or Outbrain Engage Services.