- Identify what information the website collects, and with which types of persons or entities the website shares the information;
- Describe the process by which a user can review and request changes to the user’s information;
- State the policy’s effective date;
- State how the website responds to “Do Not Track” signals or other ways in which personally identifiable information is used, including by other websites; and
- Disclose whether other parties may can collect personally identifiable information of users.
As CalOPPA violations can result in fines up to $2,500 for each download of information under Cal. Business & Professions Code 17206, the cost of not following the law can be many times more than the cost of fixing the problem.
It can be easy to miss how your website can harvest personally identifiable information, whether it is by joining mailing lists, or submitting requests for further information. Privacy policies can be fixed quickly and easily – and fixing them is a lot less hassle than a complaint filed by a competitor or disgruntled user.