Are you operating a website or mobile app that collects any information from visitors?
Do you need to inform clients about data collection?
The data you collect on your website can vary depending on the goals of your website. Common types of data collection on a website that you may not always think about can include basic information such as name, address, e-mail address, IP address, and device identifiers. These are collected through a simple contact form on a website, an ecommerce checkout, or even by using Google Analytics on your website.
Aside from this, there is also information that is automatically collected such as log-in information, usage information, and even location information. Note that this information is automatically collected and stored.
All data collected depends on which services are used and authorized by the user. These are mainly used for the improvement of specific products and services offered by the website. These are also used to easily communicate with the clients.
Promotion of Safety and Security
Is information collected safely?
In doing business, the safety and security of all collected information from the customers should be put into priority. When customers visit a business, one of the things they expect is that their privacy will be respected. This means that the business will not collect personal information from them without their consent and will not sell or give it away to other business or organizations.
California Consumer Privacy Act, also known as CCPA which took effect in January 2020, gives consumers more control over the personal information that businesses collect from them. It applies to any business that impacts people in California. This law also provides the consumers four (4) different rights, namely:
(1) Right to know about the information collected from them,
(2) Right to delete information collected from them,
(3) Right to opt-out from selling their personal information, and
(4) Right to non-discrimination in the exercise of the CCPA rights.
On the other hand, California Online Privacy Protection Act or CaloPPA, currently considered the broadest privacy law in the US, was created to protect the rights and personal information of all California residents.
(1) Lawfulness, fairness, and transparency
(2) Purpose limitation
(3) Data minimization
(5) Storage limitation
(6) Integrity and confidentiality, and
Also as stated earlier, Utah has just passed one law last March 25, 2022 that will go into effect in December 31, 2023. The Utah Consumer Privacy Act is intended to protect collected data and information from the Utah residents and from businesses that operates in the said state or those business whose target customers are located in Utah.
REQUIRED BY THIRD-PARTY SERVICES
This reason may not apply to all sites but famous and well-known services such as Google Ads, Facebook, and Apple uses third-party services. The top priority of this kind of service is to ensure compliance with any international laws while storing cookies as the client uses them.
“Tumblr may determine your location by using drone technology and live video feeds. Ha ha, no, we just check out your IP address or any location data you attach to a post. Normal stuff.”
The ICO is a non-departmental public body that reports directly to the Parliament of the United Kingdom. It deals with Data Protection Act 2018, the General Data Protection Regulation and other Data Privacy related acts in the UK.