Termly

Does your website track visitors' online behavior? Are some of those visitors from California? Under the California Online Privacy Protection Act (CalOPPA), you’re required to explain in a privacy policy whether and how your website responds to Do Not Track requests.

DNT requests are a browser setting users can turn on to signal their desire not to be tracked online.

While the law doesn’t require you to honor these requests, it does mandate that you transparently disclose how your site responds to them.

Learn more about DNT disclosures and the CalOPPA requirements here 👉

Do Not Track Disclosures Not sure what a Do Not Track Request is, or if your privacy policy needs one? Learn what they are and how they legally protect your website.

Don’t copy your Terms AndConditions Agreement from another business… It's illegal and will only harm your business.

Here’s how:

▶️ Copyright laws protect legal policies.
▶️ Another business’s terms and conditions won’t accurately cover all of your business needs.
▶️ It looks unprofessional, especially if consumers notice it.

FAvoid all of these issues and learn how easy it is to make your own right here 👉

Can I Copy Terms and Conditions? Is it legal to copy competitor's terms and conditions? No, doing so could cause trouble. Find out why you can't copy terms and conditions.

Does your business need to follow the Oregon Consumer Privacy Act? We made a simple six-step checklist to help remove confusion from the OCPA requirements!

Businesses should plan to:

✅ Perform a data inventory
✅ Create a compliant privacy policy
✅ Manage user consent so Oregon consumers can opt out of targeted ads, profiling, and the sale of their data.
✅ Use compliant contracts between data controllers and processors.
✅ Give Oregon consumers two or more ways to submit requests to follow through on their privacy rights.
✅ Create, implement, and maintain adequate security measures to protect personal data!

Learn more and access the complete checklist right here 👉

6-Step OCPA Compliance Requirements Checklist We made a simple OCPA compliance requirements checklist to help your business comply with Oregon's data privacy law.

Websites that sell products or feature product reviews should post product disclaimers somewhere on their site.

Product disclaimers remove liabilities from your business by informing users:

🛡️ That their experiences and results using a product may vary from what you’re presenting online.
🛡️ That any reviews you feature from consumers do not reflect your business and are not promises made by your business.
🛡️ The warranty details for products on your site.
🛡️ Details about ingredients in a product that may cause allergies, especially for beauty-related items.

Learn how to make your own product disclaimers right here 👉

Product Disclaimer: Examples & Guide Learn when to use a product disclaimer to protect your site, and see different product disclaimer examples.

Do you collect data from people in Australia? 🇦🇺

If so, the Australia Privacy Act 1988 might apply to you!

This law affects your privacy policy and consent management and requires you to follow 13 Australian Privacy Principles to legally collect, process, and use personal data.

This means:

You can only use personal data for the purposes you disclose to users in your privacy policy.
You must take reasonable steps to keep that data safe and secure
You must notify all affected individuals (and the OAIC) of any data breaches or leaks.

Want to know more about what it takes to follow the APPs?
Find out here:

The Australia Privacy Act 1988 Explained We take a comprehensive look at the Australia Privacy Act of 1988 and cover everything businesses need to know to comply.

We made a simple 6-step compliance checklist for businesses that need to follow the Utah Consumer Privacy Act!

🔵 Step 1: Perform a data privacy audit.

🔵 Step 2: Create and publish a compliant privacy policy.

🔵 Step 3: Use a consent banner to allow users to follow through on their opt-out rights.

🔵 Step 4: If you work with third parties, both must sign contracts that meet specific UCPA standards

🔵 Step 5: Give Utah consumers two or more ways to submit verifiable consumer requests to follow through on their privacy rights.

🔵 Step 6: Establish, implement, and maintain reasonable security measures to protect the personal data you collect.

Access the whole checklist and learn more about the UCPA here 👉

6-Step UCPA Compliance Requirements Checklist We've created an easy-to-follow UCPA compliance requirements checklist to help your business comply with Utah's data privacy law.

The Texas Data Privacy and Security Act enters into force on July 1, 2024 — time to prepare for compliance!

We made a 6-step checklist to help your business out.

✅ Conduct a privacy audit so you know what personal information you collect and your purposes for the processing.
✅ Create a privacy policy that meets all notification requirements outlined by the TDPSA.
✅ Make sure Texas residents can easily opt out of the sale of their data, targeted ads, and profiling.
✅ Make sure controllers and third-party processors sign contracts that meet all obligations outlined by Texas’s data privacy law.
✅ Give Texas consumers 2 or more ways to submit verifiable consumer requests to follow through on their privacy rights.
✅ Implement proper security measures to keep the personal data you collect safe from unauthorized access.

Find out more about the TDPSA and see the whole checklist here:

6 Step TDPSA Compliance Requirements Checklist We made an easy-to-follow TDPSA compliance requirements checklist to help your business comply with Texas's data privacy law.

Do cookie consent banners hurt websites?

According to our survey results, 89.2% of businesses that use one said it had a positive or no noticeable impact.

Manage consent with confidence. Termly can help you with that. https://hubs.ly/Q02BRb7y0

The next U.S. state to pass a data privacy law is… Nebraska!

The Nebraska Data Privacy Act impacts businesses' privacy policies and consent management practices.

It gives residents of the state rights over how their personal information gets collected, processed, and used. They can opt out of targeted advertising and the sale of their data.

Find out more about the NDPA and learn if it applies to you business here

Nebraska Data Privacy Act: First Look & Summary We take a first look at the Nebraska Data Privacy Act (NDPA) and cover everything businesses must know to be ready.

What legal policies do you use on your site?

We surveyed businesses and learned most of them have a privacy policy, terms and conditions agreement, and cookie policy. ✅

Termly can help you make all of these policies and more!

See more stats here: https://hubs.ly/Q02BRbbX0

When it comes to processing personal data, it’s all about striking the right balance. The businesses we surveyed believe finding this balance is possible - what about you?

Termly’s compliance solutions can help! See more stats and learn more here: https://hubs.ly/Q02BRb860

When it comes to processing personal data, it’s all about striking the right balance. The businesses we surveyed believe finding this balance is possible - what about you?

Termly’s compliance solutions can help! See more stats and learn more here: https://hubs.ly/Q02BR8lx0

Does your business need to comply with the Florida Digital Bill of Rights?

The consumer protections outlined in this bill or rights apply to larger, enterprise-sized entities that meet the following requirements:

You conduct business in Florida or target products or services in the state and
⬇️
You’re for-profit and make an excess of $1 billion in gross annual revenue, and
⬇️
You derive 50% or more revenue from selling ads online
or
You operate a smart speaker or voice command component services (exemptions for those connected to vehicles)
or
You operate an app store or digital platform that offers at least 250,000 different software applications.

We made an easy-to-follow checklist to help simplify the requirements and guidelines outlined by this new data privacy law!

Find it here 👉

6-Step FDBR Compliance Requirements Checklist We've created an easy-to-follow FDBR compliance requirements checklist to help your business comply with Florida's privacy law.

Businesses are ready to build customer trust and prove that they take data privacy seriously.

Termly solutions, like our Privacy Policy Generator and Consent Management Platform, can help simplify the whole process for you.

See more stats and check out all we have to offer here: https://hubs.ly/Q02BR9W20

Another state passed a data privacy law! The Maryland Online Data Protection Act, or MODPA, has a broad threshold and no monetary requirements.

It also has strict data minimization requirements, especially when compared to other state-level U.S. privacy laws.

Under the law, businesses can only collect data that is reasonably necessary and proportionate to provide or maintain specific products or services, as requested by the consumer.

This phrasing differs from other state-level laws, as it depends on a good or service and not only the purpose of the processing.

This law will impact businesses' privacy policies and consent management.

Read a summary of the act right and find out if it impacts your business here ➡️

Maryland Online Data Protection Act: First Look & Summary We take a first look at the Maryland Online Data Protection Act (MODPA) and cover everything businesses need to know to be ready.

Data privacy laws like the GDPR and CCPA outline several requirements businesses must follow, like presenting users with a privacy policy, consent management options, ways to follow through on their privacy rights, and more.

And of the businesses we surveyed, 78.1% said they don’t feel like these privacy requirements negatively impacted them. 💪

Data privacy makes the internet a safer place for everybody. 🛡️

See these stats and more here: https://hubs.ly/Q02BR8P_0

We conducted a survey to determine how data privacy compliance impacts small to medium sized businesses!

The scope and scale of data privacy has increased significantly since the GDPR entered into action in 2020, so we wanted to know from the businesses themselves how they really feel about data privacy?

How do the legal requirements impact them, and is it possible to achieve a balance between privacy compliance and essential data processing?

Here’s what we learned:

🔵 72.9% of survey takers said they use a solution like Termly to help them with data privacy law requirements.
🔵 94.1% of businesses believe you can achieve a balance between data collection for marketing while respecting customer privacy.
🔵 91.1.% are willing to prioritize data privacy if it increases customer trust and loyalty.

See more of our findings and read our complete analysis here: https://hubs.ly/Q02BG36q0

We’ve updated our Privacy Policy Generator to cover 11 more data privacy laws!

These updates account for 11 of the upcoming U.S. state-level comprehensive consumer privacy acts. So, if your business is subject to following any of these new laws, our generator is ready for you!

Our generator can now help businesses meet the notification requirements outlined by 26 different laws from around the world. 🌎

Read more about these updates and get the entire list of laws here:

11 New US Privacy Laws Covered by Termly in 2024 Termly's Privacy Policy Generator has been updated to cover 11 new U.S. state privacy laws that enter into effect in 2024, 2025, and 2026.

Kentucky joins the ever-growing list of U.S. states to pass a comprehensive consumer privacy law with the Kentucky Consumer Data Protection Act!

The KCDPA gives Kentucky residents the right to access, correct, or delete their data. They can also opt out of targeted advertising and the sale of their information.

Under this law, businesses must present consumers with a compliant privacy policy and provide one or more ways for users to exercise their privacy rights.

👉 Learn more about this law and find out if it applies to your business by reading our simplified guide!

Kentucky Consumer Data Protection Act: First Look & Summary We take a first look at the Kentucky Consumer Data Protection Act (KCDPA) and cover everything businesses need to know to be ready.

The latest state to pass a comprehensive consumer data privacy law? New Hampshire! 💪

The New Hampshire Data Privacy Law protects the personal data of state residents.

Businesses in New Hampshire or whose services and products are targeted as people in the state who meet certain thresholds must comply with the new law.

It takes effect on January 1, 2025, and required:

✅ A compliant privacy policy.
✅ A way for users to opt out of targeted ads, the sale of their data, and profiling.
✅ Consent to process and collect sensitive personal information.
✅ Two or more ways for users to submit verifiable requests to follow through on their rights.
✅ Websites must honor universal opt-out mechanisms set by browser settings or extensions.

Check out our guide to learn everything you need to know to prepare for this new law:

New Hampshire Data Privacy Law: First Look & Summary I take a look at the New Hampshire Data Privacy Law and cover everything businesses need to know to be ready.

Need an Impressum? We have a brand new, totally free template for you!

Impressums are legally required for German websites and are a legal statement of ownership.

They must also contain contact details, like your:

✅ Business name
✅ Registration information
✅ The name of the website or business owner
✅ and more!

You can learn more about Impressums and who’s required to have one right here 👉

Impressum Template: Free Download and Real Life Examples Stay compliant with German regulations by using our free Impressum template and learn how to include all the necessary information.

Consent Management significantly impacts businesses operating online and often causes a ton of confusion.

Several data privacy laws worldwide require it, but these laws often have slightly different guidelines and specifications.

So, we created a simple, straightforward guide explaining consent management, how it impacts businesses, and what different laws require.

Find it here 👉

Consent Management Explained: How It Affects Your Business I go over everything businesses need to know about consent management and how to properly implement it to avoid penalties.

New Jersey was the first US state in 2024 to pass a comprehensive consumer data privacy law 🛡️

Signed in January, Senate Bill 332 (aka the NewJerseyDataPrivacyAct) is scheduled to enter into force on July 1, 2025. 📅

Here’s what your business needs to do to prepare:

Update your privacy and cookie policies: This law outlines new transparency and notification guidelines that businesses with websites must follow.

Perform data protection assessments as needed: You must perform a data protection assessment to collect sensitive personal information from users.

Get ready to honor universal opt-out mechanisms (like Global Privacy Controls): The NJDPA is another US state law that requires websites to use UOOMs as a verifiable consumer request to follow through on certain privacy rights.

This is just the tip of the iceberg.

Ready to learn more? Check out our guide right here:

New Jersey Data Privacy Act: First Look & Summary We take a first look at the New Jersey Data Privacy Act (NJDPA) and cover everything businesses need to know to be ready.

Let’s talk about the New Zealand Privacy Act 2020. This law applies to entities in New Zealand and anyone overseas that collects personal data from people in the country.

It describes several Information Privacy Principles businesses must follow to lawfully process personal data, and it impacts your…

📃Privacy Policy
🍪Cookie Policy
🤝Consent Management

Learn more about complying with New Zealand’s data privacy law here: ​​

New Zealand Data Privacy Act 2020 Explained We take a comprehensive look at New Zealand's Data Privacy Act and cover everything businesses need to know to comply.

Remember cookie walls? 🍪

Some people still use them, but if you fall under Data Privacy Laws, like the GDPR, a cookie wall most likely isn’t compliant with all necessary privacy requirements because they only allow your users to accept or reject trackers…

There’s no option to customize consent preferences, and rejecting cookies usually means access to the website is denied

You’re better off using a cookie wall alternative, like a consent banner and a consent manager, which meet all obligations outlined by the GDPR.

Learn more about cookie walls and GDPR compliance here:

Cookie Walls: Are They GDPR Compliant? A cookie wall is a pop-up that blocks access to a website until you accept cookies. Their usage is not supported by most data privacy laws.

Did you know?

Data Privacy Laws like the VCDPA and the CCPA use slightly different definitions for Personal Information and Sensitive Personal Information 🛡️

This distinct category of personal information must be handled and stored in specific ways under each law.

Sensitive information includes more vulnerable details about individuals, like their…

✅ Religious or philosophical beliefs
✅ Political affiliations
✅ Race or ethnicity
✅ Health data
✅ Biometric data

And each law grants consumers different rights over their sensitive data.

Knowing the difference between the two categories of data is vital to your Data Privacy Compliance.

So we made this guide to help clear up any confusion you experience along the way…

Find it here:

Personal vs. Sensitive Personal Information We take a look at the subtle differences between personal and sensitive personal information and how your business needs to handle each one.

Even church websites sometimes need a Privacy Policy! ⛪

Some data privacy laws could apply depending on where your church is located, how much data your website collects, and other factors.

Your church website may collect personal information if…

✅ Your congregation offers daycare or day-school services
✅ Your church has a large number of congregation members,
✅ Your church hosts events, volunteer efforts, or accepts donations.

Find out how to easily make a customized privacy policy for your church website here!:

Privacy Policy for Church Websites Learn how to make a privacy policy for church websites, why you need one, and where you need to display it on your site.

Own a gym? 🏋️

If it has a website, it might need a Privacy Policy 📄

Gym websites can fall under the jurisdiction of data privacy laws and collect personal data from users when they…

✨Sign up for a gym membership
✨Join a fitness class
✨Provide contact info for an email newsletter

Your privacy policy should explain…

✅ What data you collect
✅ Why and how it’s used
✅ If it’s shared with any third parties
✅ The rights your users have over their data
✅ How they can act on those right

Learn how you can quickly and easily make a compliant privacy policy for your gym website here

Privacy Policy for Gym Websites Learn how to make a privacy policy for gym websites, why you need one, and where you need to display it on your site.

Those in the Hotel industry know how essential it is to have an up-to-date and legally compliant Privacy Policy. 🛡️

Hotels collect personal information from guests when they interact with the website to book a stay, create a log-in, and more.

Make sure your hotel privacy policy…

✅ Follows all applicable data privacy and industry laws.
✅ Lists all information you collect from guests online and in person.
✅ Explains how your guests can act on their data privacy rights.
✅ Is posted on your website and available physically to hand out to guests as needed.

We can help you easily make a privacy policy for your hotel in minutes.
Learn more

Privacy Policy for Hotel Websites Learn how to make a privacy policy for hotel websites, why you need one, and where you need to display it on your site.