The GDPR Privacy Policy is a document - usually a web page or a downloadable PDF file - that is expected to contain the following info regarding your website:
- The Data Controller info and e-mail contact.
- A list of the Types of Data collected by the website.
- Mode and place of processing activities, including the retention period.
- A list of the various processing activities currently in place.
- A list of the various User rights and info regarding how to exercise them.
The two regulations to consider to review such document are the following:
- General Data Protection Regulation (EU 2016/679), better known as GDPR.
- EU Cookie Law (2009/136/CE), adopted in Italy with the decree n. 126 03/06/2014.
If you need an actual sample, you can take a look at our own GDPR Privacy Policy and Cookie Usage Info (updated on December 2018). A sample document based upon that is also available in PDF and DOCX formats for your convenience: you can download the DOCX version by clicking to the button below.