- The exact users’ personal information to be collected (as mentioned previously)
- How the data will be collected
- How the data will be used - for instance, to deliver to a third party
- How you will secure the data and protect it from misuse
- What compensations you will make if the data is sourced out
- If cookies are being used on the site, how they will affect users’ experience
GDPR - The GDPR is applied when you collect data from users in the EU. In Europe, countries that are a part of the European Economic Area (EEA) are required to follow 7 principles of data protection. In May 2016, the principles extended above EEA to be standardized as the General Data Protection Regulations (GDPR) across the whole region.
If your company fails to comply with the GDPR guidelines and violate the data privacy laws, you will possibly be fined up to 4% of your total revenue or 20 million euros.
COPPA - COPPA is a popular law in the US. In America, there’s no official general or standardized laws to protect users’ data, but there are several other laws that cover some specific demographics - one of which is the Children’s Online Privacy Act (COPPA).
The law puts restrictions on websites that target children under 13, whether these websites collect data from them or not. Even when the website does not specifically target this group of audiences and unintentionally collects personal data from these children, they will still have to follow the regulations.
CalOPPA - This law is more specifically applied to companies that collect data from people who live in California. The California Online Privacy Protection Act (CalOPPA) aims to take control of how individuals or entities owning a commercial website will use the identifiable information from residing customers in California.
These tools offer both free and paid options - with the paid option guaranteeing a higher level of legal law compliance. Usually, you will have to pay an extra from $30 to $50 to get your policy compliant with the GDPR, CalOPPA or COPPA. But trust me, this small amount of money will bestow you the powerful compliance that makes your policy useful in a court of law.
First of all, it should be compliant with international data protection laws, which are the GDPR, CalOPPA or COPPA to be specific, to give you permission to collect users’ data from the UK and the US.
Moreover, the generated document should be comprehensive and customizable enough to include all the necessary general and business-personalized clauses.
One big advantage is that Shopify offers a completely free 14-day trial to help your initial testing. However, to some extent, Shopify might not be the most optimal option since it is not as comprehensive as other tools, and it uses the same template for all users. Also, policies on Shopify are quite complicated and stringent which might make you stand higher chances of violating the laws.
Pricings on TermsFeed are quite affordable, with free or paid documents depending on your choice for your business website. You can save your budget by going for the free offering of a basic policy, but we would recommend you pay some extra money, from $30 to $70, to get full compliance with the international laws - GDPR & CalOPPA - and make your policy lawfully legal. One more advantage is that you can own your policy once you buy it on TermsFeed - that means you can modify it however you want after your purchase.
iubenda is one of the most top-rated competitors on the list, with its high-quality policy statements, full customization, and amazing cookies privacy managing and generating services. The tool enables you to add up to 650 clauses which are crafted and custom for your companies’ situations and operation by professional experts. If your business is a large entity that is processing several users’ data at once, then iubenda is definitely the right choice for you.
iubenda’s operating system is relatively similar to TermsFeed, but a bit more complicated. The tool offers a high degree of customization options which will possibly take you some enormous time to finish data filling. And to integrate the policy onto your business website, you will have to opt for a “third-party” method such as through a link, a widget or text.
Generating privacy policies on this platform is quite easy. All you need to do is to fill the inquired information in the questionnaire (although it might be a little bit long), and the tool will automatically take care of other works for you. You can get a brief reference from the default examples and guides as well. There are some free installation and add-on options available, and you will only have to pay for the add-ons you need.
GetTerms is an ideal solution to generate privacy policies on various platforms including blogs, freelance websites, mobile apps, e-commerce sites or SaaS applications.
The tool has a friendly interface that optimizes all information on one page to simplify and accelerate your policy generating process. Just fill in the query fields, select your preferred options and let the tool automate the process for you.
You can choose from the basic, custom or comprehensive pack depending on your needs. The basic policy is free, but it does not include a cookies policy nor meet the international data protection laws’ standards. Other paid versions do contain a cookies policy and many advanced features, but only the comprehensive pack, which costs $29, is GDPR-ready.
Firebase App Generator
This free tool is extremely easy to use in the provision of an intuitive interface that optimizes the whole policy generating process in one place. Set-up and customization on Firebase are streamlined as well. Also, since Firebase itself originates from Google, it is supported with link integrations to several third-party services such as Google Play, Facebook, Admob, Fabric and several others.
However, in some cases, advantages could turn into disadvantages in a blink of an eye. Because Firebase only generates privacy policies for mobile apps, it consequently limits its target users which are web apps or websites in general. And since the tool is free of charge, it cannot ensure you a high level of security.
Generating privacy policies on Termly only takes up around 15 minutes to finish. In addition, Termly makes sure to help you create a policy page that meets the requirements for the international data protection laws and third-party platforms including GDPR, COPPA, CalOPPA, as well as Google Ads, Google Analytics and Adsense without any fees charged. Moreover, your policies will also get automatic updates whenever new legislation comes out, so no need to worry about the lack of compliance.
Pricings on Termly are relatively transparent. There are both free and paid options to choose from. The free Basic plan is more recommended for startups in the developing phase, and if you want to add more compliance to your business, the Pro+ plan for $10 per month might be a better choice. You can save up to 50% for an annual subscription.
WebsitePolicies holds some competitive advantages over other equivalent tools in the market. The generator is mainly law-focused and does its best to give you the most legally-compliant privacy policies across countries and legislations.
Especially, the generated privacy policies on WebsitePolicies are not defaulted templates, which means they are all unique, and you can add any modifications or customize them as an owner. When you have full control of your policies, you can easily copy and paste them to your sites, or you can choose to let WebsitePolicies host them for you without any costs. Also, you will be notified when there are any changes in the standardized laws and WebsitePolicies will quickly update them to your policies.
WebsitePolicies offers both free and premium plans to let you choose. The free Basic plan is actually cohesive enough, but if you want to add more clauses and provisions to your policies and get access to free lifetime automatic updates, you can consider the paid option for $19.95 with no recurring charges.