Skip to main content

Do I Need a Privacy Policy?

Sites all over the web are starting to show cookie notices to their visitors.  This is primarily driven by privacy laws being implemented across the globe.  Do these privacy laws apply to you and your website?  To know for sure, you may want to consult an attorney.

You, as the website owner, are responsible for ensuring you are meeting any applicable regulations applicable to the operation of your website.  The major regulations regarding online privacy are GDPR and CCPA. This article does a great job explaining CCPA and touches on GDPR as well.

Even if you are not subject to GDPR or CCPA, it's considered a best practice to have a privacy policy on your website that explains what you track and store - and how you use it.  You are welcome to use ours as an example to get you started - we make no claims as to its suitability or thoroughness for you - use at your own peril. :)

If you work in the medical field, you need to understand HIPAA.

CAN-SPAM regulates email marketing.

If you are collecting credit card payments via your website, you may also be subject to PCI Security Standards.

Another growing concern for website owners are accessibility requirements.  The ADA pre-dates the modern web and how it applies to websites is a question that is still working its way through the courts.  If you want to cover your bases you can check out the WCAG 2.1 guidelines - widely considered to cover the best practices for website accessibility.  Ensuring a website is accessible is a rigorous, and potentially expensive, process that most websites never go through.  This is a good article that explains the basics.  If you need help determining how accessible your website is or to make your website more accessible, please contact us!

Back to top