Privacy Policy for Websites – Free Template

Few entrepreneurs consider online privacy policy issues when they build their websites. Yet, as many security experts will tell you, these policies provide needed safeguards for the company and its users. So in this post, we’ll detail the elements of a successful privacy policy and provide free-to-use template language at the bottom of this page so you can begin constructing your own agreement.

Online Privacy Policy Basics

First, let’s take a look at some basic information about a website’s online privacy policy.

What type of site needs a privacy policy?

Any website or service that collects data from users,tracking users with analytics, or displays ads needs one.

Why are these policies necessary?

Your online privacy policy explains to users:

  • What information you gather
  • How you collect the information
  • How you store and protect the information

Is there a difference in the types of information collected?

Yes. Most policies separate personally identifiable information from non-private data.

The National Institute of Standards and Technology (NIST) defines personally identifiable information as:

“Any information about an individual maintained by an agency, including (1) any information that can be used to distinguish or trace an individual’s identity, such as name, social security number, date and place of birth, mother’s maiden name, or biometric records; and (2) any other information that is linked or linkable to an individual, such as medical, educational, financial, and employment information.”

Non-private data is defined as:

“Information that may correspond to a particular person, account or profile, but is not sufficient to identify, contact, or locate the person to whom such information pertains.”

Examples include:

  • Browser type
  • Browser plug-in details
  • Local time zone
  • Date and time of each visitor request (i.e. arrival, exit on each web page)
  • Language preference
  • Referring site
  • Device type (i.e. desktop, laptop, or smartphone)
  • Screen size, screen color depth, and system fonts

Many users concerned with sharing this non-private data employ browser extensions to mask its availability.  Also, VPNs help avoid sharing certain types of non-private data. For instance, a VPN can mask the time of the site visit as well as the user’s local time zone.

Are there legal consequences if I do not post a privacy policy?

Yes. Collecting data without detailing the activity to users is punishable by law. You are also at risk if you violate the terms of your policy by collecting more than what you state or otherwise change the data collection/use without updating the policy.

Online Privacy Policy – Free-to-Use Templates

Thanks to their length and complexity, most online privacy policies go unread. In fact, one study found they are so cumbersome that it would take the average person about 30 full working days to actually read the privacy policies of the websites they visit in a year.

Complex as they can be, they also address many users’ greatest internet-related concerns: data security, fraud protection, and personal privacy. And since online consumers are becoming more aware of privacy issues, it behooves a website owner to make the online privacy policy as clear and concise as possible. In the analysis below, we detail the most important sections of these agreements and offer free-to-use template language that cuts through legalese.

Point #1: Information Collection

Every policy should explicitly describe what information the site collects and its’ collection methods.

Point #2: Information Use

After detailing the information collection, the policies then describe how the website owners use it. Facebook had trouble with this message when it sought to update its privacy policy in 2013. The company wanted to add language to its policy so it could use personal data about its members, including children under 18, for advertising purposes.

Facebook eventually abandoned this language when watchdog groups called it to the attention of the Federal Trade Commission. In 2014, Facebook rolled out a plain English version of their privacy policy, which cut the legalese by two-thirds.

Companies – and their websites – who take your data security seriously:

  • Never sell personally identifiable information to 3rd parties
  • Anonymize and/or encrypt the data to protect against breaches
  • Only store the data for a short period of time

Point #3: E-Commerce Considerations

For e-commerce sites, the policy should detail the safeguards for a user’s private financial information collected to process transactions. This includes credit card numbers, social security numbers, or bank account information.

Point #4: 3rd Party Information Disclosures

There should be clear language about the website’s relationship(s) with 3rd parties. Ideally, your site will not sell or share personally identifiable information unless there is a legally compelling reason. It should also detail what your company does with non-private data.

Point #5: Information Security and Tracking

Today’s best privacy policies highlight their information security and detail cookie use.

Google endured privacy policy issues last year thanks to its cookie disclosures. The UK’s Information Commissioner’s Office forced the internet giant to include information about who may collect “anonymous identifiers” – which are similar to cookies – and the purposes to which the the company put that data.

Point #6: Unsubscribe Methods

Every online privacy policy should state how a customer can unsubscribe from unwanted communications.

Point #7: Consent

The standard online privacy policy states that users agree to the policy simply by using the website.


Below you can find a full template for you to use

1.Information Collection

We collect information from you when you register on our site, sign in to your account, make a purchase, enter a contest, and/or when you sign out. The collected information includes your name, email address, phone number, and/or credit card.

In addition, we automatically receive and record information from your computer and browser, including your IP address, software and hardware attributes, and the page you request.

2. Information Use

Any of the information we collect from you may be used to:

  • Personalize your experience and respond to your individual needs
  • Provide customized advertising content
  • Improve our website
  • Improve customer service and your support needs
  • Contact you via email
  • Administer a contest, promotion, or survey


3. E-Commerce Privacy

We are the sole owners of the information collected on this site. Your personally identifiable information will not be sold, exchanged, transferred, or given to any other company for any reason whatsoever, without your consent, other than as necessary to fulfill a request and/or transaction, e.g. to ship an order.

4. Third Party Disclosure

We do not sell, trade, or otherwise transfer to outside parties your personally identifiable information. This does not include trusted 3rd parties who assist us in operating our website or conducting our business, so long as the parties agree to keep this information confidential.

We believe it is necessary to share information in order to investigate, prevent, or take action regarding illegal activities, suspected fraud, situations involving potential threats to the physical safety of any person, violations of our terms of use, or as otherwise required by law.

Non-private information, however, may be provided to other parties for marketing, advertising, or other uses.

5. Information Protection

We implement a variety of security measures to maintain the safety of your personal information. We use state-of-the-art encryption to protect sensitive information transmitted online. VpnMentor also protects your information offline. Only employees who need to perform a specific job (for example, billing or customer service) are granted access to personally identifiable information. The computers/servers used to store personally identifiable information are kept in a secure environment.

Do we use cookies?

Yes. Our cookies improve access to our site and identify repeat visitors. Furthermore, our cookies enhance a user’s experience by tracking and targeting his/her interests. This cookie use, however, is in no way linked to any personally identifiable information on our site.


6. Unsubscribe

We use the email address you provide to send you information and updates pertaining to your order, occasional company news, related product information, etc. If at any time you would like to unsubscribe from receiving future emails, we include detailed unsubscribe instructions at the bottom of each email.

7. Consent
By using our site, you consent to our privacy policy.

Summary: Your Online Privacy Policy Enhances User Trust

Your privacy policy offers valuable protections for your company and your users. Most of all, it creates a heightened level of trust. By presenting plain English, straightforward policies that describe concrete protections, your site will have an advantage over competitors with complex, confusing policies.

The template language provided in this post should be a starting point only. Every website has different methods and intentions and the best privacy policies reflect a high level of customization. To ensure the effectiveness of your policy, consult with privacy lawyers and research other policies from companies similar to yours. Most of all, keep checking for more information on policy language and privacy issues.

Was this helpful? Share it!
Share on Facebook
Tweet this
Share if you think Google does not know enough about you