Website Privacy Policy Template (First Party Cookies + Analytics)

Website Privacy Policy – First Party Cookies + Analytics (GDPR-Ready)


This document has been reviewed and updated for improved compliance with the GDPR, coming into force in May 2018. Key new features include details of data subjects' rights under the GDPR, important information on the retention of personal data (i.e. for how long it will be kept), new references in the section on cookies to controls (thereby removing reliance on a user's browser settings constituting consent or lack thereof), and an updated clause on subject access requests (including GDPR-specific wording to reflect the fact that normal subject access requests can no longer be charged for). Note also the addition of “anonymous” in reference to data used for analytics. You may need to change this to reflect the data actually used, but it is important to be aware that the GDPR will prompt changes in the way web analytics use personal data. These changes will be addressed in greater detail as more official guidance becomes available.

Greater detail about your use of personal data should also be provided under the GDPR. If a user of your site is required to provide personal data under a contract or by law, this should be noted in section 6 of the policy, along with the possible consequences of failing to provide it. Also note that if any automated decision-making (including profiling) is undertaken using personal data, that should also be explained, including how decisions are made, their significance, and their consequences.

At present, the template includes optional provisions for the Data Protection Act 1998 regime and the GDPR. These options will be removed, leaving only GDPR references, when the GDPR takes effect in May 2018.

This Website Privacy Policy is designed for websites that gather information about and/or from their users, employing first party cookies in the process. Additional provisions address the use of website analytics.

First party cookies are those which are set directly by the website itself. Alternative versions of this policy are available for sites which also use third party cookies (those set by another site or service – commonly used for advertising).

Key parts of this template address the use of cookies and compliance with so-called EU Cookie Law. Using (and complying with) this policy can help in compliance with the various requirements laid down by the law. Of particular importance, the policy explains to your website’s visitors what cookies the site uses, what it uses them for, and why. Alternatively, if you wish to provide more detailed information on cookies, this document can be altered to refer to a separate Cookie Policy.

Optional phrases / clauses are enclosed in square brackets. These should be read carefully and selected so as to be compatible with one another. Unused options should be removed from the document.

This Website Privacy Policy contains the following clauses:
1. Definitions and Interpretation
2. Information About Us
3. What Does This Policy Cover?
4. [Your Rights]
5. What Data Do We Collect?
6. How Do We Use Your Data?
7. How and Where Do We Store Your Data?
8. Do We Share Your Data?
9. What Happens If Our Business Changes Hands?
10. How Can You Control Your Data?
11. Your Right to Withhold Information
12. How Can You Access Your Data?
13. Our Use of Cookies
14. Contacting Us
15. Changes to Our Privacy Policy

This website privacy policy template is in open format. Either enter the requisite details in the highlighted fields or adjust the wording to suit your purposes.

Once you have purchased access to the appropriate document folder click on the “Download Document” link below. You will be asked what you want to do with the file. It is recommended that you save the document to a location of your choice prior to viewing.