Legal

Privacy policies are complex documents. The terminology found in them, their structure and sheer length make them hard to understand.

Understanding Privacy Policies

A privacy policy is a statement or a legal document (in privacy law) that discloses some or all of the ways a party gathers, uses, discloses, and manages a customer or client’s data. It fulfills a legal requirement to protect a customer or client’s privacy. Personal information can be anything that can be used to identify an individual, not limited to the person’s name, address, date of birth, marital status, contact information, ID issue and expiry date, financial records, credit information, medical history, where one travels, and intentions to acquire goods and services.[1] In the case of a business it is often a statement that declares a party’s policy on how it collects, stores, and releases personal information it collects. It informs the client what specific information is collected, and whether it is kept confidential, shared with partners, or sold to other firms or enterprises. Read More on wiki page

Main components of a Privacy Policy

Privacy Policies are contracts. As such, there are entities involved in a privacy policy. In this section we should list these entities: first party, third parties, data collected, permissions on the data etc.

Learning Resources

• EU General Data Protection Video lecture by Troy Hunt
• Primer on Privacy Policies

Head over to our Privacy Policies Wiki page or project issues in github to learn about exact issues about this part of the project.