Register
Forgotten password?

Policy

Free cookies policy

FREE

2.0
UK and EU law requires that, where a website uses cookies or equivalent technologies, the website operator must make certain disclosures in relation to the use of the cookies. This policy template has been designed to help website operators comply with this disclosure obligation. Website operators may be required, in addition, to seek users' consent to the use of cookies. UK law on this subject ...

Free anti-spam policy

FREE

1.0
In this document, a website or service operator may set out its policies in relation to unwanted commercial communications, commonly known as spam. Whilst spam filters, whitelists / blacklists and other technical measures are the most important anti-spam tools, a formal anti-spam policy can also help, demonstrating that the operator takes spam issues seriously. This policy document opens with a defamation of spam, and ...

Free linking policy

FREE

1.0
This is a free version of our regular linking policy. It has been created for website operators who want to set out, in detail, their policies relating to hyperlinking. The default provisions state a website's policies in relation to both links form the website and incoming links. This type of legal notice is relatively unusual, but may nonetheless be useful in respect of some ...

Free delivery policy

FREE

1.0
This free delivery policy has been designed for use in conjunction with our T&Cs of sale via website documents. The purpose of this document is to set out the detailed policies which a supplier of goods will follow when delivering goods that have been ordered from a website. The document covers methods of supply, times for dispatch / delivery, and so on. It may be ...

Free returns policy

FREE

1.0
If you are selling goods online, and want to offer rights of return that go beyond those mandated by (English) law, then you can do so using this returns policy document. This free returns policy should be used in conjunction with one of our T&Cs of sale via a website documents. It can be used with the B2B, B2C or mixed version. Mandatory rights ...

Free cyber security policy

FREE

1.0
This free cyber security policy has been created by Emma Osborn of OCSRC to help small (especially new) businesses to create their first internal policy in relation to cyber security. This policy is identical to our basic policy, except that it includes a Docular credit, and accordingly it covers only they basics. If you need more detail, you should look at the standard and premium ...

Anti-spam policy

FROM

£4.80

OR

4

CREDITS
1.0
If you are operating a website or running a service that may be exploited by spammers, then you should consider publishing a formal anti-spam policy. This short policy document covers the basics. First, it includes a definition of spam, and provides that the website operator / service provider does not tolerate such spam. Second, it outlines the technical measures used by the operator / provider in ...

Linking policy

FROM

£4.80

OR

4

CREDITS
1.0
Hyperlinks are one of the central features of the world wide web. Many visitors will arrive at a website through links. Also, search engines count links when ordering website rankings and, in general, more links mean better rankings in the search engine results pages. Most webmasters will want to encourage links to their websites. The purpose of this document is to help website operators control ...

Cookies policy

FROM

£9.60

OR

8

CREDITS
2.0
In the UK, the use of cookies on websites is regulated by the Privacy and Electronic Communications (EC Directive) Regulations 2003 (as amended). Cookies are also affected by the General Data Protection Regulation. This policy can be used to help you comply with the information disclosure requirements in that legislation relating to cookies. The policy should be used in conjunction with, or as an element ...

Privacy policy

FROM

£12

OR

10

CREDITS
2.4
This privacy policy is a shorter and simpler version of our privacy and cookies policy document, and may be used in relation to a wide variety of different kinds of website. The primary purpose of a privacy policy is to assist a website operator to comply with information disclosure obligations under data protection legislation. From 25 May 2018 in the UK and elsewhere in the ...

End user cyber security policy (basic)

FROM

£12

OR

10

CREDITS
1.0
This policy covers some of the basics of cyber security. It is designed to help new and small businesses to develop their first end user cyber security policy. The clauses are mainly restrictive, stating what employees must and must not do. This is intended to support people who have never attempted to write a policy before, so there are limited options to choose from. If ...

Delivery policy

FROM

£14.40

OR

12

CREDITS
1.0
This delivery policy (or shipping policy) is meant to serve either as (i) guidance for customers so that they have a general idea of when to expect delivery of their goods, or (ii) a legally-binding contract placing obligations on the seller. It explains what the customer should do in the event of any issues with the delivery, including non-delivery and loss. Customers will ...

Returns policy

FROM

£14.40

OR

12

CREDITS
1.0
Online vendors need to define the conditions in which they will accept returns from customers and refund payments. Online shoppers are more likely to purchase when they have the ability to return items. Some shoppers will review a merchant's returns policy before purchasing, and a fair returns policy increases the likelihood of a sale. Having a clear returns policy builds trust with potential customers. ...

Acceptable use policy

FROM

£16.80

OR

14

CREDITS
1.0
This acceptable use policy document is designed to regulate the use of a website or other online service. The bulk of the policy is concerned with prohibiting certain actions and certain types of content. The policy naturally covers unlawful actions and content, but may also cover actions and content that are undesirable but not unlawful.

Privacy and cookies policy (lead generation)

FROM

£19.20

OR

16

CREDITS
2.4
This privacy and cookies policy template has been adapted for websites that earn money by passing leads or prospects to third party suppliers or service providers. Generating leads inevitably involves the collection of personal data. Typically, a lead generation website will collection users' names, email addresses, postal addresses and telephone numbers, as well as information about the products or services that they have an interest ...

Privacy and cookies policy (social networking)

FROM

£19.20

OR

16

CREDITS
2.4
A website privacy and cookies policy can have more than one purpose. From a lawyer's perspective, the primary concern is compliance with disclosure of data protection legislation, in particular, from 25 May 2018, the General Data Protection Regulation. However, there are also marketing and user relations perspectives. Users expect website privacy policies and practices to be fair. For some users, unfair policies and practices ...

Privacy and cookies policy (online shop)

FROM

£19.20

OR

16

CREDITS
2.6
This privacy and cookies policy template has been designed for online stores selling goods, including B2B stores, B2C stores and those supplying goods both B2B and B2C. The policy sets out details of the processing of personal data by the online store in accordance with UK/EU laws concerning the protection of personal information - including the General Data Protection Regulation. The core of the policy ...

Privacy and cookies policy

FROM

£19.20

OR

16

CREDITS
2.7
From a lawyer's perspective, the key purpose of a website privacy and cookies policy is to help a website operator comply with data protection and cookies legislation. In the UK, from 25 May 2018, that will mean compliance with the General Data Protection Regulation (GDPR) as well as the Privacy and Electronic Communications Regulations. One of the principles of the GDPR is transparency: data ...

Cyber security incident response policy

FROM

£24

OR

20

CREDITS
1.0
This policy provides organisations with a pre-structured way of describing their policy in the event of a cyber security incident. Policy users may be a small group within an organisation, or this policy may be given to all personnel as guidance in the event of an incident. Unlike an employee, contractor or B2B cyber security policy this is not intended to be a legal ...

End user cyber security policy (standard)

FROM

£24

OR

20

CREDITS
1.0
You can use this standard-length cyber security policy to govern the use of an organisation's information technology systems. The policy may be adapted to cover employees or contractors - or both. This policy is relatively flexible, with provisions covering such matters as the risks that might arise out of the use of IT systems, password security, software security and updates, security breaches, misuse of ...

Personal data breach notification policy

FROM

£36

OR

30

CREDITS
1.0
This is a personal data breach notification policy, which sets out the procedures to be followed by a business in the event that personal data stored or processed by the business is subject to a breach. The policy has been created with SMEs in mind. The policy is designed to aid compliance with the General Data Protection Regulation or GDPR, and takes account of the ...

Data protection information notice for freelances

FROM

£36

OR

30

CREDITS
1.1
Under data protection law, data controllers have obligations to provide to data subjects (i.e. individuals) information about how they process personal data. This data protection information notice is designed to help controllers to meet those obligations with respect to individual subcontractors and freelances appointed by the controller. The principal provision in the notice cover: (a) the purposes of processing and the legal bases of ...

Data protection information notice for suppliers

FROM

£36

OR

30

CREDITS
1.0
It is relatively unusual - as at January 2018 - for organisations to issue data protection information notices to their suppliers. However, organisations do usually act as data controllers with respect to some of the personal data provided by suppliers, and there is an obligation under data protection law to notify data subjects, individuals whose personal data is being processed, about the parameters of that processing. With ...

Data protection information notice for customers

FROM

£36

OR

30

CREDITS
1.0
This notice is designed to help data controllers to comply with the disclosure requirements of the General Data Protection Regulation (GDPR) with respect to customers. This notice sets out the categories of personal data that may be processed and, with respect to each category of personal data, the legal basis of that processing. Where the legal basis is "legitimate interests", then the specific interests should ...

End user cyber security policy (premium)

FROM

£36

OR

30

CREDITS
1.0
This cyber security policy is designed to regulate the use of company IT systems by employees and/or contractors. This policy is intended for organisations that have a complex system user environment. It may be adapted to create a restrictive policy or a permissive policy, or one which mixes and matches restrictive and permissive provisions. To increase the chances of the policy being read, understood ...

Supply chain cyber security policy (standard)

FROM

£36

OR

30

CREDITS
1.0
This is a standard-length supplier cyber security policy designed to help businesses to create contractually enforceable obligations on suppliers with respect to cyber security. This flexible template can be edited either to focus on specific, identified risks, or to apply a general benchmark across a supplier's systems. Before or while editing the policy, you should establish what the relevant risks are, your general ...

Data retention policy

FROM

£48

OR

40

CREDITS
1.0
This management-level data retention policy should be used to codify the policies and procedures of an organisation in relation to the archiving and deletion of data. The driving force behind the adoption of many retention policies is the General Data Protection Regulation (GDPR), but the suggested drafting in this document covers non-personal as well as personal data. To make effective use of this ...

Supply chain cyber security policy (premium)

FROM

£48

OR

40

CREDITS
1.0
Increasingly, organisations are recognising cyber security as a strategic risk, touching every aspect of their business, including the way they interact with suppliers and customers. This supplier cyber security policy is intended to assist your organisation in producing a contract, or a schedule or addendum to a contract, describing the cyber security requirements a supplier (or other person) must comply with before it can do ...