The GDPR, which used to be binding law in the UK until Brexit took effect on Dec. 31st, 2020 (Read more about the GDPR and when it applies here.), is now, for the most part, still applicable in the UK as “UK GDPR” as long as no new national data protection act or legislation is passed.
We have an article dedicated to GDPR & Brexit – What it means for businesses and the impact on data protection, which you can access here for further reading.
Privacy information must be up to date, comprehensible, unambiguous, and easily available throughout the website to meet GDPR disclosure and transparency standards.
The GDPR can apply to you whether you live in the EU or have EU users, and the repercussions of non-compliance can be severe. To be compliant, your policy must include at the very least:
Disclose the personal data gathered and the purposes for which they were obtained; provide an accurate list of all third parties with whom the data is shared, and notify users of their data rights.
iubenda makes it easy to comply with legal requirements across multiple countries’ legislation (including the GDPR). With hundreds of available clauses, our privacy policies contain all the elements commonly required across many regions and services while applying the strictest standards by default – giving you the option to fully customize as needed.
Or learn more about iubenda’s solutionsStart generating