One of the things that you will immediately need is to state how any client or customer coming to your website will be able to contact you. This can be as simplye as stating your website address. Or depending on the jurisdiction you are in, you may be required to state more information such as a contact person, the address, the telephone number perhaps even the email. But at the bear minimum you should provide the website address. So that is the first bit of information about how people contact you.
You should also have a clear outline of the kind of data you collect on your website. Whether it be an email address, or whether it is going to be firstname, surname, credit card details or address. You need to have a clear list outlining what kind of data you collect.
The next thing to consider is methods. You need to kind of give the user an outline on the methods you are going to use to process the data. What is going to happen to it? What method are you going to use to collect that data. That must be clearly stated. How you protect their data? In what way. What is it within your system, within your processing platform that helps them protect their data or helps you protect the data you collect from them. In some instances and depending on your jurisdictions all these things may vary.
That brings me nicely to the next point. You really need to state what happens when data is transferred outside your country , outside the EU, or to other international destinations or even entitites or public international bodies like the UN and then what are the international and local laws that prevail in those areas that might be a positive or negaitve to your data. So there has to be a clear statement of what happens when data is transferred intra and inter country. Very very important.
I hope to meet you there. Thank you for now.
This is YJ.