You should also mention who, if anyone, you share their data with. For example, if you use an external email marketing service like Mailchimp you will effectively be sharing your clients information with them. You might for example say 'We share your email address and name with Mailchimp so we can send you emails relating to our services such as current promotions'.
Ideally this document should be legally drafted by an expert - However, it is better to have something rather than nothing should a complaint ever be made against you.
Add Confirmation Tick Boxes to Forms
Secure Your Website
You can make the communications between your website user and your website more secure using SSL security. This means that any personal information communicated between the website and the user will be encrypted. Users will see a green or yellow padlock symbol next to their website address in the browser. This not only helps you demonstrate you are securing the data you collect, but can also reassure customers and act as differentiating point when compared with your competitors. You can read more about this in our SSL Security blog article.
Inform Users About Cookies
There's no doubt that GDPR is adding an additional burden on businesses, however despite the work it adds for us all it should generally be welcomed as these rules help to keep all our data secure. There are huge fines that can be applied for those who do not comply although we expect these to be reserved for the largest of companies. For smaller companies who don't have access to expensive legal advice we recommend taking actions now to meet your obligations as best as you can and not to ignore the new rules.