Privacy Policy: How do I draft the ‘storage and security’ clause?

< Back to Commercial Contracts
November 20, 2014 (Updated on March 8, 2017)

A Privacy Policy states how your business will deal with personal information. It is important for businesses that collect personal information to have a detailed Privacy Policy. An experienced contract lawyer typically drafts this document. Your Privacy Policy explains to customers how your business will store their personal information, and your customer’s rights. A Privacy Policy can be used for any business that collects personal information, whether online or in person. It might be a good idea for you to contain a ‘storage and security’ clause in your Privacy Policy.

What should the ‘storage and security’ clause contain?

It is important that the ‘storage and security’ clause of your Privacy Policy explains to customers your policies in relation to how you store and secure customers’ information. It should also explain the risks associated with providing a website with personal information that could be unintentionally disclosed.

The ‘storage and security’ clause in your Privacy Policy should reflect your business’ commitment to ensuring that there are suitable procedures to safeguard and secure the information that has been collected from your customers.

You should clearly set out what procedures have been put in place to safeguard and secure the personal information. This could be any physical, electronic or managerial procedures which prevent personal information from misuse, interference, loss and unauthorised access, modification and disclosure.

However, to protect your business, your lawyer should set out that, if information is transmitted over the Internet, this transmission cannot be guaranteed to be secure and that the transmission and exchange of information is carried out at the visitor’s own risk.

Conclusion

If the Privacy Act applies to your business, you must have a Privacy Policy.

Failing to comply with the Privacy Act may result in fines of up to $1.7 million for companies, or $340,000 for entities that are not companies (including individuals) for serious or repeated breaches of the Privacy Act.

If you are unsure of whether or not your business requires a Privacy Policy, or a ‘storage and security’ clause, and if you would like assistance in drafting one, contact one of our contract lawyers today.

If you would like further information on any of the topics mentioned in this article, please get in touch using the form on this page.
Would you like to get in touch with Priscilla about this topic, or ask us any other question? Please fill out the form below to send Priscilla a message!

Read other articles by Priscilla

Tags

Privacy Policy Snapshot

We collect and store information about you. Let us explain why we do this.

What information do you collect?

We collect a range of data about you, including your contact details, legal issues and data on how you use our website.

How do you collect information?

We collect information over the phone, by email and through our website.

What do you do with this information?

We store and use your information to deliver you better legal services. This mostly involves communicating with you, marketing to you and occasionally sharing your information with our partners.

How do I contact you?

You can always see what data you’ve stored with us.

Questions, comments or complaints? Reach out on 1300 544 755 or email us at info@legalvision.com.au

View Privacy Policy