Here are a few things privacy policies generally disclose:
- What personal information your website collects from customers.
- What personal information your website collects from other visitors.
- How your website stores and protects that information.
- How your company uses that information.
- Who else may have access to that information.
- Whether and how your company distributes that information.
- How customers may access the data you’ve collected on them.
Inaccurate or misleading privacy policies are also risky. In the United States, the Federal Trade Commission (FTC) is empowered to act against companies who don’t follow their own privacy policies, and the FTC takes that job seriously.
You’ll be prepared for data protection. Tour and activities booking websites generally collect quite a bit of personally identifiable data, including customers’ names, their contact and billing information, and sensitive data like ages, health considerations, and more.
Unfortunately, copying from someone in your field is also a risky proposition. Unless they share your practices exactly, they’re not likely to cover your specific needs. You might also violate copyright along with other laws and regulations in the process.
A lawyer can also help you avoid covering too much. Privacy policies that guarantee data security or promise other far-reaching protections can land you in trouble if you can’t follow through.
If you can’t get a lawyer’s immediate assistance with your policy, take the time to read the policy you’re using and make sure it’s accurate. Changing a policy comes with its own legal considerations, but having a policy you’re comfortable standing behind is a great end result.