However, what many do not often realise is that many of these online privacy policies are a direct result of legislation and the various court judgements that protect “personal information” (PI). These differ from country to country and one cannot guarantee that they will comply with the data protection laws that you must comply with.
- be designed to allay consumers concerns about the manner in which their PI is being treated and make them feel comfortable about doing business with you; and
- satisfy the legal requirements of the law and the sectoral Codes of Conduct provided for in data protection law – if you are doing business on a global basis, you will also have to comply with international privacy laws.
Furthermore, many organisations assume that once their privacy policies are in place, that the job is completed. This is a mistake. Every time content or services are added, or website functionalities change, there is a risk of exposing users to privacy breaches and contravening the laws.
Don’t forget internal employee privacy policies