The current COVID-19 pandemic has forced many businesses online in order to survive. In many cases, businesses had no plans to be online. Others were forced to move online more quickly than planned. In order to assist these businesses, we are preparing a series of articles discussing some of the more important legal issues to address when moving your business online. In Article 1: Website Terms, we discussed online terms and conditions to protect your business.
- What personal information the business collects from individuals online;
- How the personal information is collected;
- How the business uses the personal information;
- How and to whom the business discloses the personal information;
- How the business manages and stores the personal information that it collects; and
- How the individuals can correct the personal information.
There is no one law that governs privacy policies or that prescribes what to include. Federal laws impose specific requirements for businesses in the health care and financial services industries and for businesses that collect personal information about children. A few states also have laws requiring privacy polices if a business collects personal information from residents in those states. If a business is targeting residents of the European Union (EU), then the requirements of the EU’s General Data Protection Regulation (GDPR) also apply. Certain popular Internet tools, such as Google Analytics and Facebook Lead Ads, also require privacy policies.