- **What:** What is the privacy policy? - **Why:** Why it is important for your business? - **How:** How to implement privacy policy in your business website? There are 9 Codes of conduct that are crucial for your privacy policy.  They are discussed in the next section of the video. # **1 Information received, collected, and stored by the company** Generally, you receive some user information such as phone number when he visits your official website. You may receive the following user information when he visits your website: 1. Registration data 2. Subscription data 3. Information about other individuals 4. Information automatically tracked via cookies logfile information **For example:** - You visited the Amazon website. - You simply clicked on some products but did not buy anything. - Now, when you visit Facebook and it showed you similar product advertisements as Amazon. - Now, it seems like magic but actually, Amazon used cookies for tracking your privacy. - In simple words, Amazon is tracking you. Similarly, many global websites take your acceptance in "yes" or "no" for using cookies. If you click "yes" they will use cookies on your browser and if you click "no" they will not use cookies for your browser. # **2 Information use by the company** You should explain what you will do with the user information. - Do you create value for the user? - Do you sell ahead? - Do you run advertisements? You don’t collect the user information unnecessary to fill your server space. So, you need to explain why are you collecting the user information. # **3 Disclosure of personal information & other information** - You should give clear disclosure when you receive any personal information of the user such as mobile number, address, etc. - You should communicate clearly what you will do with his personal information. - By the law, you have to disclose what you will do with the user information. # **4 Security of personal information** You have to clearly mention about following things: - The servers where your website is hosted. - Location of your servers such as India, US, etc. - Data security because it should not be there that your website is hacked and user data is also stolen. # **5 Transfer of information to other countries** You should mention how data will be transferred to another place. **For example:** Amazon is a US-based company and they are transferring user data there. - It has to clearly explain why they are transferring your data to the US and what will they do with your data. - It has to clearly explain if the user data is being transferred through a hard drive, pipes, internet, etc. # **6 Rights available to you** - You have to mention about company's rights and user's rights. - When the user transacts and shares his data with you, he can ask certain questions. - You should mention how he can take his data back or delete his account from your website. # **7 Children using our services** - Ages below 13 and 18 are very critical. - You should explain that a person is not an adult before 18 years. - So, he/she cannot watch the content or transact on your website because he might not be having a credit/debit card of his name. - You should mention the reasons why/why not this website is valid for children below 18 years. - You should mention the reasons why/why not this website is valid for children below 13 years. - If you don’t follow this, you might get stuck in a legal case and no conditions will save you. - Only this point will save you in such a situation. # **8 Questions/grievances addressal** - Even after explaining all your policies, there are chances that a user is unsatisfied with your explanation. - You can make a legal department that will handle your all user grievances. - You should mention the telephone number/email id of the legal department where the user can contact. - The user can call /mail to this department for filing his complaints/grievances. # **9 Cookies policy** - When you are searching for anything through the browser, a code is made for the browser. - Now when you visit the website again, it will be steam lined and personalised for you. - This cookie technology is a part of the privacy envision. - You cannot use cookies in a web browser without the user's permission. - All world-famous policies explain their cookie policy such as Amazon. - If you don't follow the cookie policy, you might face difficulty. - A user can question how you track him without a cookie policy. - He might sue you in a court of law that will damage your brand reputation. - Also, there are high chances that you might have to pay a fine for this. You should frame and implement these privacy policies for your website and mobile apps.  If you implement this privacy policy you are secured: - Legally - Compliance wise - Regulatory Also, the customers will trust you and you will achieve sales growth. Your employees, customers, investors will trust you due to privacy policy. **Massive action plan:** - Collect senior employees, lawyers, and make a privacy policy for your company. - Create and implement a privacy policy for your company.