Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

How to Update Your Existing Privacy Policy for GDPR Compliance


Published on

While the GDPR will likely drastically affect your Privacy Policy, it doesn't mean you'll need to ditch your policy and start all over. Simply updating your current Privacy Policy in a few key ways will help make it compliant with the GDPR.

Here's what you need to know about updating your existing Privacy Policy for the GDPR.

Read more at our related blog post here:

Published in: Law
  • Be the first to comment

  • Be the first to like this

How to Update Your Existing Privacy Policy for GDPR Compliance

  1. 1. How to Update Your Existing Privacy Policy for GDPR PRIVACY POLICY
  2. 2. PRIVACY POLICY One of the main things affected by the GDPR is your Privacy Policy. Your policy’s language and content will likely both need to be updated to be GDPR-compliant.
  3. 3. Here are some specific ways you can update your Privacy Policy. Simplify the language
  4. 4. The GDPR requires Privacy Policies be written in natural language that’s easy for an average person to understand. If your Privacy Policy is filled with legalese and complexities like this one…
  5. 5.’re going to need to simplify the language, like this one:
  6. 6. Include thorough third-party disclosure While your current Privacy Policy likely mentions third parties, you should update it to mention third parties specifically by name.
  7. 7. This helps with transparency and keeps users informed about exactly who has access to their data.
  8. 8. Data Protection Officer contact information, if applicable You may or may not need a Data Protection Officer.
  9. 9. However, if you do, you should disclose contact information for this individual in your Privacy Policy.
  10. 10. Special categories of personal data The GDPR gives extra protection to sensitive data such as political opinions, race, sexual orientation and religious beliefs.
  11. 11. If you collect or may collect any type of sensitive personal data, disclose this explicitly in your Privacy Policy. You should disclose this in a separate clause, or at minimum a separate paragraph.
  12. 12. User rights and access The GDPR gives users many new rights when it comes to protecting and managing their personal information. Let users know about their rights in your Privacy Policy.
  13. 13. Let them know how they can access and edit their information, revoke any consent granted for processing their information and how they can contact you.
  14. 14. PRIVACY POLICY Your Privacy Policy probably doesn’t need to be rewritten, but it likely does need to be updated to reflect these requirements.