General privacy notice

What's a general privacy notice, and when do you need it?

This is a general privacy notice and it is compliant with the new UK data protection laws (the General Data Protection Regulation, the GDPR) in force from 25 May 2018. The notice informs individuals (with whom you may do business or interact with in a business environment) about how you collect, handle, store and potentially also share, their personal data, as well as the rights that they have in relation to your activities, under the UK's data protection law.

Not all parts of the notice will be applicable to all businesses and our experts recommend that you take legal advice in relation to this and your wider data controlling activities within your business.

If you want a privacy notice for your website (which should also display one), then you should use our website privacy notice template.

The guidance notes to this template cover the position where you are or will be the data controller of the personal data and you are collecting data from the individual directly and where you may have obtained the personal data from a third party (i.e. not directly from the individual themselves) – because even where a third party acts for you, you will still need to get your privacy terms to that individual.

The practical suggestions built into the template will help you work out what's best and most logical for your particular circumstances, since you don't necessarily have to give a hard copy of the privacy notice to individuals, but you must make them aware of it and give them an easy way to access it.