What is Personally Identifiable Information?
Personally Identifiable Information (PII) is any data that could be used to identify a specific person. Such as a name, email or physical address and phone number.
- General Data Protection Regulation (GDPR) – a privacy law that protects the PII of European Union residents and applies to businesses outside of the European Union as well;
- United Kingdom Data Protection Act 2018 (UK DPA) – a privacy law that protects the PII of United Kingdom residents and applies to businesses outside of the United Kingdom as well;
- California Online Privacy Protection Act of 2003 (CalOPPA) – a privacy law that applies to any website that collects the PII of California residents;
- California Consumer Privacy Act (CCPA) – a new privacy law that protects the PII of California residents;
- Delaware Online Privacy and Protection act (DOPPA): a privacy law that applies to any website that collects the PII of Delaware residents;
- Nevada Revised Statutes Chapter 603(A) – a recently amended privacy law that protects the PII of Nevada residents;
- Personal Information Protection and Electronic Documents Act (PIPEDA) – a privacy law that protects the PII of residents of Canada;
- And more. New privacy laws affecting websites are being proposed and passed regularly.
Why you need Policies
Over a dozen states have proposed or already are implementing privacy laws to protect the Personally Identifiable Information (PII) of its citizens. Each of these laws has unique requirements as well as unique penalties for not complying. Some states are proposing businesses be fined over $5,000 per infringement (per website visitor). Some states are proposing private right of action (meaning citizens of that state can sue businesses anywhere in the US).
These laws do not care where the business is located. The laws are only out to protect its citizens.
- Avoid massive fines and lawsuits
- Limit your liability
- Keep control of your website
- Protect your intellectual-property
- Ensure legitimacy to your website visitors
Which policy is the right policy?
2. If a website offers links to third party websites, it should have a Terms & Conditions
Terms & Conditions limit a company’s liability. If a user clicks a link to a 3rd party site that is hacked, and then that user gets hacked, a Terms & Conditions helps prevent that business from being sued.
3. If a website offers affiliate links, it should have a Disclaimer
… as well as websites providing information that could be considered health advice or legal advice (law firms!), are also good reasons to have a Disclaimer. A lot of affiliate programs will require you to have a disclaimer, and consumers want to know when you’re getting paid for links you put on your website.
We personally use Termageddon which is run by actual lawyers, not robots, who write and update policies as and when the laws change. Termageddon is a generator of policies for websites and applications. When the law changes, so do the policies, keeping your company protected and allowing you to focus on more important things.