5 things your brand can do to get privacy compliant in 2021

There is more to being privacy compliant than adding a link to your privacy policy in the footer of your website.  True privacy compliance requires ongoing effort.  Fall short and you may find your brand fined hundreds of thousands of dollars.  This article contains the five things your brand can do to get privacy compliant in 2021.

Global Privacy Platform

 

The first thing to do is to draft your privacy policy.

I highly recommend working with a law firm that has experience drafting privacy policies.

Be sure to vet the law firm by having them show you the templates they will use and provide proof of their experience.  Privacy is serious business and if not done correctly you will find your brand in financial straights to due the fines levied.

 

The second step to take is the proper rollout out of your privacy policy globally.

This isn’t as simple as dropping a link to your privacy policy in the footer of your website.  There are a few moving parts like native language considerations for your global footprint.  If you have a US and an Italian footprint you should consider having your policy available in both English and Italian.

 

Third it is important to note that you don’t get a pass if you have an information only website meaning you don’t collect data via a form.

If you have Google Analytics capturing analytic data on your site or you’re using WordPress you have to account for your tracking and CMS processes where privacy in concerned.

 

Fourth, keeping tabs on your cookies.

Writing a policy isn’t enough.  You have to know which cookies your sites use and account for them dynamically in your privacy policy.  Yes, dynamically!  That means you have to continuously update your privacy policy with the list of cookies your sites are using globally.

You have to systematically maintain privacy compliance.

Trying to do this manually can be a nightmare.  I highly recommend connecting with us at UPPmarket to learn more about our Global Privacy Platform and our ongoing cookie management process. 

Fifth, properly manage your Data Subject Request (DSR) process.

A DSR is defined as a request from a data subject to a data controller asking for modification of personal data held by a third party.  Need help defining your DSR process?  Want to learn more about how the Global Privacy Platform by UPPmarket can help?  Book time with our privacy experts.

Keep in mind that even using a technology is innocuous as Mailchimp or Constant Contact can force your brand out of compliance and subject to fines.

Listen to the UPPmarket Global Privacy Podcast for more insight around privacy.

Set up a time to talk to one of our privacy experts to see if your brand is privacy compliant or how to get your brand privacy compliant.