A true relic on the World Wide Web, Blogger, a free-to-use website hosting service, has been helping people easily create blogs, portfolios, photography websites, and even small ecommerce stores since 1999.
It’s super easy, quick to use, and helps you comply with several of the most prominent data protection laws worldwide.
Below, see an example of one of the questions it asks.
Templates are a good option but they take more work and time than a managed solution. You’ll have to manually fill in the blank sections with details about your business.
Termly’s free template features several necessary clauses to help you comply with different data protection laws from around the globe.
See a sample of what it looks like below.
However, this option is only recommended if you plan on having a lawyer check it for you or have extensive knowledge about data privacy regulations.
New laws enter into force regularly, and old ones often get amended. If you forget to update your policy or leave something out, even by mistake, you’ll still be held accountable.
- What personal data you collect
- How you use the personal data
- If you share the data with any third parties
- The rights users have over their personal data
- Your company contact information
The highlighted text in the screenshot below shows Google’s exact expectations.
Otherwise, Blogger may terminate your site use, and you could face fines and other penalties for violating the law.
You Monetize Your Blog or Use Internet Cookies
This requirement is especially true if you use services like Google AdSense or Analytics, as some privacy laws give individuals the right to know that websites are collecting their data in this way and provide a way for them to opt out of targeted ads and other tracking technologies.
These services also rely on internet cookies, which are subject to data protection laws as they are stored on a user’s device to collect certain personal data.
Don’t forget to include an affiliate disclosure to notify users that you get compensated by companies for mentioning or linking to their products on your Blogger site.
These laws can and often do impact business outside of the regions where they originate, so you may fall under the scope of one or more of them.
To help you, I put a table describing the legal thresholds for some of the most significant data privacy laws worldwide. Take note of any that apply to you.
|Data Privacy Law||Legal Threshold|
|General Data Protection Regulation (GDPR)||Any organization that collects, processes, or stores the personal data of individuals located in the European Union (EU) or European Economic Area (EEA).|
|The Data Protection Act (UK GDPR)||Any organization offering goods or services to UK citizens that processes their personal data.|
|Amended California Consumer Privacy Rights Act (CCPA/CPRA)||For-profit entities that do business in California and meet one of the following:
|California Online Privacy Protection Act (CalOPPA)||Any website with California visitors falls under the threshold of this law.|
|Virginia Consumer Data Privacy Act (VCDPA)||Entities doing business in Virginia or targeting Virginia residents who meet one of the following:
|Connecticut Data Protection Act (CTDPA)||Any data controller or processor who conducts business in Connecticut or produces products or services targeted at Connecticut consumers and any controller or processor who meets one or more of the following:
|Colorado Privacy Act (CPA)||Controllers that conduct business in Colorado or who produce or deliver commercial products intentionally targeted to Colorado residents that meet one (or both) of the following:
|Children’s Online Privacy Protection Act (COPPA)||Any website or online service that is directed at children under 13 that:
|Personal Information Protection and Electronic Documents Act (PIPEDA)||Any organization that collects and uses personal information in connection with commercial activities, including selling or sharing donors, membership, or fundraising lists, falls under PIPEDA.|
|Australia’s Privacy Act of 1988||Any Australian government entities or organizations that have annual gross revenue of AUD $3 million and small businesses that make less than AUD $3 million who meet any of the following:
|New Zealand’s Privacy Act of 2020||Any New Zealand individual, organization, or business in the public or private sector that collects and holds personal information about other people.
Any overseas individual, organization or business carrying business in New Zealand that collects and holds personal information about other people
|South Africa’s Protection of Personal Information Act (PoPIA)||Any entity registered to South Africa that processes personal data or people from any location.
And any entities located outside of the country who outsource their data processing to South Africa.
So whenever you add third-party services to your Blogger site, always check their terms of service to ensure you comply with their privacy guidelines.
But below, I’ve summarized the most common clauses relevant to Blogger websites.
What Personal Data You Collect
You might organize it as a bullet list, put it in a table, or write short paragraphs that are easy to read and understand.
See their clause covering the data they collect in the screenshot below.
How and Why You Use the Data
Laws like the GDPR require you to explain why and how you use the data you collect, and on which legal ground.
If You Share the Data With Third Parties
You’ll need this clause if you use Google AdSense or Analytics or if your site lets people log in or connect to it with their social media or other third-party APIs, like Facebook.
Blogger does allow you to put cookies on users’ browsers, especially if you set up Google AdSense or Analytics.
Description of Consumer Privacy Rights
If multiple laws impact your blog, consider creating different clauses for each user location so it’s easier for people to find the proper information.
Data Retention Policy
You can see how Gasparilla Invitational words this clause in the example below.
Consider an email address, phone number, physical address, or any combination of these.
Examples of Blogger Privacy Policies in the Wild
They put a link to their policy directly in the footer of their site, so it’s always accessible no matter what page you end up on.
They also include links to help their users opt out of targeted ads, which is necessary under laws like the GDPR and the CCPA. Check it out below.