Forgotten password?

Privacy policy

This is a website privacy policy template. It may be used in relation to many different types of website.

The main purpose of a privacy policy is to help a website operator to comply with information disclosure obligations under data protection legislation. Across the EU, that means compliance with the General Data Protection Regulation (GDPR). Within the UK, the Data Protection Act 2018 applies. Failure to comply with data protection legislation may lead to civil liability and/or criminal law penalties.

This privacy policy is a shorter version of our privacy and cookies policy document. That document is more flexible than this policy, although at the cost of greater complexity.

To complete this template, you will need detailed information about how you or your organisation uses personal data. For example, you will need to know what personal data is processed, the purposes for which that personal data is used, the persons or categories of persons to whom that personal data may be disclosed and the periods for which that personal data will be retained. You will also need to establish the legal bases of the your processing.

Separate rules regulate the provision of information about cookies, and this document includes optional provisions dealing with cookie-related disclosures. If you retain these provisions, you will need to know the purposes for which cookies and similar technologies are used on your website.

You should consider whether you need to take specialist legal advice on data protection.

If you collect sensitive personal information (such as information about a person's health, sexuality or political affiliations), or if you collect personal information from children or about children, you should always take advice before using this (or indeed any other) privacy policy template. In any case, use of a privacy policy is only one aspect of data protection compliance.

Ask about this document

Privacy policy contents

  1. Introduction: commitment to privacy; document applies to controlled personal data; consent to use of cookies; website privacy controls; data controller name.
  2. How we use your personal data: introduction to categories, purposes and legal bases of processing; processing of usage data; processing of account data; processing of publication data; processing of enquiry data; processing of transaction data; processing of notification data; processing of other data; processing for legal claims; processing for risk management; general purposes of processing personal data; disclosure of third party personal data.
  3. Providing your personal data to others: disclosure of personal data to insurers etc; disclosures of personal data to hosting services providers; disclosures of personal data to subcontractors; disclosure of personal data necessary for legal compliance etc.
  4. International transfers of your personal data: introduction to international personal data transfers; international transfers to hosting services provider; international transfers to subcontractors; publication of personal data on internet.
  5. Retaining and deleting personal data: data retention introduction; personal data retention default rule; personal data retention specific rules; personal data deletion exception.
  6. Your rights: introduction to data subject rights list; list of data subject rights; learn more about data subject rights; exercise of data subject rights.
  7. About cookies: what are cookies?; persistent and session cookies; cookies and personal data.
  8. Cookies that we use: purposes for which cookies are used.
  9. Cookies used by our service providers: use of cookies by services providers; google Analytics cookies; service provider cookies (generic).
  10. Managing cookies: how to manage cookies; negative impact of blocking cookies; effects on website use of blocking cookies.
  11. Amendments: amendment by publication; check for changes to
    ; notification of changes to 
  12. Our details: website operator name; company registration details; place of business; contact information.
  13. Data protection officer: data protection officer contact details.