Is Your Privacy Notice Putting You At Risk?
To comply with the first principle of GDPR (Lawfulness, Fairness and Transparency) as a data controller you must provide a privacy statement that details the data you process, how you collect it, when you collect it, what lawful purpose you have to collect it and so on. These privacy notices need to be detailed and explicit, whilst remaining concise, and easy to understand. The temptation to use templated privacy notices is great as they are cheap and offer a seemingly easy route to compliance. However, it’s not so, they are generic and are far from reaching the standard of transparency required by the law.
Your website is the first port of call for anyone either casually checking you out or maybe even conducting some high level due diligence on you before making an approach. Your website is the ‘tip of the iceberg’, the only place a prospective client can check you out before making an approach. A GDPR privacy notice needs to be carefully considered and appropriate for your specific business. At CaPS, we will build you a privacy notice that is appropriate to your organisation reflecting the reality of what you do, giving confidence to your existing and potential clients.