The Article 29 Working Party (WP29) (European data protection authorities), has just released its recommendations to Google on how to comply with its legislation. They are proposing that in order to comply with EU data protection laws, privacy policies should be easier to find and understand, as well as include an exhaustive list of the type information being processed. These guidelines are not mandatory. Still, they are interesting in the sense that the industry will welcome additional practical guidance on how to draft and implement good policies. Also, these guidelines can be relevant for any organization, not just Google.
What are these recommendations?
- be immediately visible and accessible from each service landing page
- provide an address at which users can contact the company to exercise their rights (such as access rights, etc.)
- have clear, unambiguous and comprehensive information regarding the type of information being processed (or “collected, used and disclosed” for Canadians)
Link to the: WP29 cover letter.
This content has been updated on July 6, 2015 at 20 h 39 min.