English

Italiano
English
Deutsch

Login
Sign up

Products and services

A complete set of solutions to make your website or app compliant with the law, on multiple languages and legislations

Overview
Pricing

For websites/apps

Privacy and Cookie Policy Generator

Explore

Create your privacy and cookie policy in minutes.

Customizable from 1600+ clauses, available in 8 languages and automatically updated if the law changes, our generator allows you to create a legal document in minutes and
seamlessly integrate it with your website or app.

Explore
Features
Documentation and guides

For websites/apps

Cookie Solution

Explore

Manage consent preferences for the ePrivacy, GDPR, and CCPA. Integrated with the IAB TCF and CCPA Compliance Framework.

Our solution allows you to display a fully customizable cookie banner, collect cookie consent, implement prior blocking, set advertising preferences, collect explicit consent to Google
personalized ads and more.

Explore
Features
Documentation and guides

For websites/apps

Terms and Conditions Generator

Explore

Create your terms and conditions in minutes.

Customizable from hundreds of combinations, available in 8 languages, powerful and precise — our solution is capable of handling even the most complex, individual scenarios.
Optimized for e-commerce, marketplace, SaaS, apps and more.

Explore
Features
Documentation and guides

For websites/apps
For organizations

Consent Solution

Explore

Collect GDPR consent, document opt-ins and CCPA opt-outs via your web forms.

Our solution smoothly integrates with your consent collection forms, syncs with your legal documents and includes a user-friendly dashboard for reviewing consent records of your
activities.

Explore
 Features
Documentation and guides

For websites/apps
For organizations

Internal Privacy Management

Explore

Document all the data processing activity within your organization.

To comply with privacy laws, and particularly the GDPR, companies need to record how they store and use the data they collect from their users. Our solution allows you to easily
document all the data processing activities within your organization.

Explore
Features
Documentation and guides
Not sure what you need?
Getting started guide
Blog
Contact us
iubenda for...

Use cases

Some of the ways you can use iubenda

iubenda for CCPA

iubenda for GDPR
iubenda for LGPD
iubenda for mobile apps
iubenda for Facebook apps
iubenda for Agencies

Start generating

Documentation
Home
Documentation
Search

Search the documentation...

Hide index

Getting Started
Getting Started Guide
Complete guide to the GDPR

Compliance for:
Simple Websites / Blogs
E-commerce Websites
App Developers
Individual Services
Legal Requirements
Legal Requirements Overview
How to Determine Your Law of Reference
What Should Be in a Privacy Policy
Impressum: What Is It and When Is It Needed
Main Legislations
GDPR
Complete guide to the GDPR
GDPR Offline Compliance Duties
Web agency’s responsibilities according to the GDPR
Picking the Right Privacy Policy Options
GDPR treatment of services that do not collect personal data
How to Prove You Honored the Right to Be Forgotten
Privacy Shield Guide: Certification and iubenda Integration
Privacy Shield invalidation – everything you need to know and what to do now

Cookie Law / ePrivacy

Cookies and the GDPR: What’s Really Required?
How Must I Manage Cookie Consent in Order to Be Compliant
Which Data Can Be Safely Stored in Cookies Without Having to Request Consent?
Is the use of a cookie wall on websites allowed in European Countries?
Legal Sources on Third-Party Cookie Names and Opt-Out Mechanisms

CCPA
Complete guide to the CCPA
An In-depth Look at the CCPA Concept of Sale

CalOPPA and COPPA

COPPA and Mobile Apps

LGPD
Complete guide to the LGPD

Australian Privacy Principles (APPs)

 Privacy Policies and Australian Law
Common Scenarios
Blogs and Websites
GDPR for Bloggers and Web Publishers: How to Make Your Site Compliant
How to Comply with the GDPR on a WordPress Site

E-commerce
Terms and Conditions for eCommerce (and how they protect your online store)

Emails and Newsletters

How to Make your Emails and Newsletter Compliant (with Form Examples)
ePrivacy and Direct Email Marketing (DEM)
Opt-In vs Opt-Out in Email Marketing
Privacy policy, GDPR forms and consent collection for Mailchimp

Apps
Privacy Policy for iOS and macOS Apps
Privacy Policy for Android Apps
Privacy Policy for Windows Apps
Cookies and Mobile Apps

Facebook Pages and Apps

Privacy Policy for Facebook Pages
Privacy Policy for Facebook Apps

Children
Legal Requirements for Websites and Apps Used by Children
Minors and the GDPR

Multi-lingual Websites and Apps

When Do You Need a Privacy Policy in Different Languages

Ads and Affiliate Programs

Privacy Policy for Google AdSense
Privacy Policy for Google Ads Remarketing
How to Collect Consent for Google Ad Personalization
Privacy Policy for Facebook Lead Ads
Amazon Affiliate Program

Analytics and Other Google Services

Privacy Policy for Google Analytics
How to Anonymize IP Addresses and Avoid the Cross-Referencing of Data in Google Analytics
Google Analytics and the GDPR: Is It Considered Monitoring Behavior?
Privacy Policy for Google Analytics Advertising and Remarketing Features
Privacy Policy for Google OAuth
Place of Processing Customisation for Google Services
Privacy and Cookie Policy Generator
Creating Your Policy
Generating
How to Generate a Privacy Policy
How to Generate a Cookie Policy
How to Display the Cookie Lifetime in Your Cookie Policy
How to Apply GDPR Protections Only to EU Users or to All Users
How to Apply CCPA Standards for Californian Consumers within the Generator

Adding Services
How to Add Services to Your Privacy Policy
Using the Site Scanner to Identify Missing Services
How to Add a Custom Service and Customize to Your Needs

Adding Owner Details

What is meant by the identifying details of the Data Controller
The Owner Field Within the Generator

Languages
How to Add Another Language to Your Documents
Editing/Updating Your Policy
How to Edit a Privacy Policy
How to Delete a Privacy Policy

iubenda Branding
How to Remove iubenda Branding
Can I Remove the "iubenda hosts this page" Disclaimer

Advanced Settings
How to Force Update & Change the “Last updated” Date Information
Customize the Way Your Website or App Is Referred To in Your Privacy Policy
Customize Privacy and Cookie Policy Internal Links
Embedding Your Policy
General
Ways to Use iubenda’s Privacy Policy on Your Site and App
Standard Embedding
Direct Link
Direct Text Embedding via JS or API
Behavior of iubenda Embedding Options When JavaScript Is Disabled

Apps
iOS and macOS
tvOS (Apple TV)
Android
 How to Add Android and iOS Mobile Permissions for Device Data
Make Your Legal Documents Available for Offline Viewing

Popular Platforms
Amazon Store
ePages
Jimdo
Joomla!
Magento
Matomo (Formerly Piwik)
PrestaShop
Shopify
Squarespace
Ucraft
Webflow
Wix
WordPress
WordPress.com

Advanced
How to Configure your Content Security Policy for iubenda
Troubleshooting and FAQs
How to Access the iubenda Dashboard
Must I Repeat the Process of Adding Services for Every Language in Which I Generate the Policy?
Why Does My Privacy Policy State "This Application Does Not Support Do Not Track Requests"?
What Is the Difference Between the Privacy and Cookie Policy Generator and the Cookie Solution?
What’s the Difference Between the Integration of the Privacy Policy and Cookie Solution?
Which Countries Is Your Privacy Policy Good For?
Can I Copy and Paste the Privacy Policy's Text into My Website?
How to start the iubenda initializer asynchronously

Changelog
Legal Changelog
Cookie Solution
Introduction
Introduction and Getting Started
How to Identify the Cookies Your Site Installs in Browsers
Cookie Banner Setup and Customization
How to Customize the Look and Behavior of the Cookie Banner (Beginner’s Guide)
How to Generate a Cookie Policy for the Cookie Banner
How to Configure Your Cookie Solution (Advanced Guide)

Advertising Tracking Preferences

The complete guide to IAB GDPR Framework and iubenda’s Consent Management Platform
Google and TCF 2.0: how to collect consent for personalized ads
TCF 2.0 Transition Guide

Languages
Cookie Policy and Cookie Solution for Multilingual Websites
How to Use the Cookie Solution in a Multilingual WordPress Site
For CCPA
How to add a notice of collection and a "Do not sell" link
Installation and Prior Blocking Implementation
Custom Website

Plugins and integrations

Jimdo
Joomla! Extension
Magento Module
PrestaShop Plugin
Shopify
Squarespace
Ucraft
Webflow
Wix
WordPress Plugin

Prior Blocking Implementation

Introduction to the Prior Blocking of Cookie Scripts
Manual Tagging (with Practical Examples)
Google Tag Manager
Google Consent Mode
Google AdSense and Ad Manager
PHP Class
How to integrate iubenda Cookie Solution with Google AMP (WordPress method included)

Advanced
How to migrate consents from a previous provider to the Cookie Solution
Cache, Speed and Other Optimization of the iubenda Cookie Solution
How to invoke Cookie Solution API methods from an iframe
How to Configure your Content Security Policy for iubenda

Stats
Analytics and Stats
Troubleshooting and FAQs
How Are the Cookie Solution Pageviews Calculated?
Where Can I Find My Cookie Policy and Site Ids?
Why Does the Cookie Solution's Preemptive Blocking Not Function Even If "priorConsent" Is Set to True?
Can I Integrate the Cookie Policy Within My Website Using the Direct Text Embedding and API?
How do I collect cookie consent on AMP pages?
 Channels and Changelog
Delivery Channels
Changelog
Terms and Conditions Generator
What Are the Terms and Conditions and When Are They Needed?
What Should Basic Terms and Conditions Include?
Can I use a Terms and Conditions template?
Creating Your Document
How to Generate Terms and Conditions
The Owner Field Within the Generator
How to Add Another Language to Your Documents
Editing/Updating Your Document
How to Edit your Terms and Conditions
How to Delete your Terms and Conditions

Advanced options
How to Force Update & Change the "Last updated" Date Information
Customize the way your website or app is referred to in your documents
Embedding Your Document
How to Integrate iubenda’s Terms and Conditions on your Site and App
Make Your Legal Documents Available for Offline Viewing

Advanced
How to Configure your Content Security Policy for iubenda
Troubleshooting and FAQs
Can I Copy and Paste the Text of the Legal Documents into My Website?
Consent Solution
Getting Started
Introduction and Methods
How to Sync Your Legal Documents
Implementation
JavaScript
HTTP API

Popular Platforms
Joomla!
WordPress (plugin)
WordPress (JavaScript method)

Advanced
How to Configure your Content Security Policy for iubenda
Troubleshooting and FAQs
Delivery Channels
Changelog
Internal Privacy Management
Guide to the Internal Privacy Management Tool
Resources
Webinars
Videos
All Video Guides

Privacy and Cookie Policy Generator

Overview
Introduction to the Generator
Adding services/clauses to your policy
Filling in the owner info
Managing languages
Editing your policy
Removing iubenda branding
Embedding your policy
Integrating iubenda with WordPress

Cookie Solution
Introduction to the Cookie Solution
How to customize the cookie banner (basic options)
How to customize the cookie banner (advanced options)
Transparency and Consent Framework (TCF)

Terms and Conditions Generator

Overview

Consent Solution
Introduction to the Consent Solution
Consent Solution manual implementation (JavaScript)
Consent dashboard in action

Internal Privacy Management

How to use the IPM tool
Templates
GDPR
EU Representative Appointment
Data Processing Agreement
Data Protection Officer (DPO) Appointment Letter
Non-Disclosure and Confidentiality Obligation for Employees
Data Protection Impact Assessment (DPIA)

CCPA
Service Provider Addendum
Cheat Sheets, Checklists and Tests
 GDPR cheat sheet
GDPR Cookie Consent Cheatsheet
CCPA compliance checklist
CCPA quiz
Compliance self-assessment test
Account and Billing
Pricing FAQs
How to Delete Your Account
Plans and Licenses
How to Modify Your Pricing Plan (Single and Multi-license)
Limits of the Free / Basic License
What Is the Difference Between License and Policy?
Swap Licenses from One Privacy Policy to Another
Can I Keep the Privacy Policy When I Don't Renew the Pro License?
Is it ok to include the same privacy policy in other sites and apps?
Individual Licenses on Multiple Subdomains
Payment
How to Update Payment Information
Why Is My Payment Failing?
How to Disable Auto-Renewal
Why the iubenda Service Is On a Recurring Basis
Invoices
Where Can I Find My Invoices?
How to Update Your Invoicing Information
How to Receive Invoices on a Different Email Address
Partners and Affiliates
How to Set up a Basic Affiliate/Referral Program Partnership with iubenda
How to resell iubenda’s solutions to your clients
Need help getting set up? View our directory of certified partners
About iubenda
Data Processing Agreement iubenda <> users
What iubenda Does and Does Not Track
5 Reasons Why We Host Your Documents

Table of Contents
Show index

What Should Be in a Privacy Policy

Putting together a privacy policy yourself is not always easy. What are the right contents, what are the basic elements needed? We’ll tell you on this page.

The exact required contents of a privacy policy depend upon the applicable law and may need to address requirements across geographical boundaries and legal jurisdictions.

Generally, data and privacy laws apply to any service targeting residents of a region, which effectively means that a law may apply to your business whether it’s located in the region or not.

For this reason, it’s always advisable that you approach your (legally mandated) privacy policy with the strictest applicable regulations in mind. You can read more about
determining your law of reference here or read our in-depth Legal Overview Guide here.

These are the most basic elements that a privacy policy should include:

Who is the site/app owner?

What data is being collected? How is that data being collected?
What is the Legal basis for the collection? (e.g consent, necessary for your service, legal obligation etc.) -This is more specifically related to the GDPR and EU Law, however, even if
you fall outside of GDPR obligations, it’s likely that under many other legislations, you’ll still need to say why you’re processing the personal data of users.
For which specific purposes are the data collected? Analytics? Email Marketing?
The categories of sources from which you collect consumers’ personal information. -This is more specifically related to the USA’s upcoming CCPA. You can read more about that here.
Which third parties will have access to the information? Will any third party collect data through widgets (e.g. social buttons) and integrations (e.g. facebook connect)?
Where applicable, details relating to cross-border/ overseas data transfer and which measures were put into place to facilitate this in a safe and compliant way. (This disclosure is
explicitly required under EU and Australian Laws in particular. Furthermore, there are additional requirements to be met for cross-border transfers in regards to both the EU’s GDPR
and Australia’s APPs)
What rights do users have? Can they request to see the data you have on them, can they request to rectify, erase or block their data? (under European regulations most of this is
mandatory)
Description of process for notifying users and visitors of changes or updates to the privacy policy
Effective date of the privacy policy

See our own policy here for an example of how these elements come together.

How iubenda helps you with this

iubenda generates privacy policies that work within the best-practices of various jurisdictions. With hundreds of available clauses, our privacy policies contain the all elements commonly
required across many regions and services, while applying the strictest standards by default – giving you the option to fully customize as needed.

Our policies are created by lawyers, monitored by our lawyers and hosted on our servers to ensure that they are always up-to-date with the latest legal and third-party requirements. Our
privacy policies are easily customizable and also come with the option to include a cookie policy (which is necessary if your website or app is using cookies).

You can read full policy generator features here or simply start generating your policy now.

Start generating

See also
How to Generate a Privacy Policy
Legal Requirements Overview

Still have questions?

Attend one of our free webinars

Email us
Live chat

Product and services

Compliance for websites and apps

Overview
Pricing
Getting started guide

Privacy and Cookie Policy Generator

Features
Help and guides
Explore

Cookie Solution

Features
Help and guides
Explore

Terms and Conditions Generator

Features
Help and guides
Explore

Consent Solution

Features
Help and guides
Explore

Internal Privacy Management

Features
Help and guides
Explore

Company

Work with us
Blog
Get certified as a Compliance Expert
Partner directory

Capterra rating

Legal

Privacy Policy
Terms and Conditions
Imprint/Impressum
Consent Solution Privacy Notice
Cookie Solution Privacy Notice

Help

Documentation
Feedback & support forum
Contact support
Webinars
Partner Academy

Country

Philippines

Follow @iubenda

iubenda s.r.l

Via San Raffaele, 1 - 20121 Milan (Italia)

EU VAT No: IT07347120961

UK VAT No: GB370904694

Milan Chamber of Commerce

CS: 12987 Eur (I.V.)

Content available on iubenda.com and documents generated using the Service are intended for general information purposes only. Although all clauses and provisions inside the generator
database have been drafted by a team of highly qualified legal experts and regularly undergo reviews and updates, documents are generated in a fully automated manner and therefore do not
constitute or substitute the rendering of legal advice, nor does any assistance and customer support provided by iubenda establish an attorney-client relationship. This is why, despite all
efforts in offering the best possible service, iubenda cannot guarantee generated documents to be fully compliant with applicable law. Users should therefore not rely upon documents
generated using iubenda without seeking legal advice from an attorney licensed in the relevant jurisdiction(s).