Skip to main content
  • Increase trust and sales
  • The lowest price
  • Automatically collect reviews
ValuedShops
Join us

Sample documents Creating a privacy statement

"Creating a personalized Privacy Policy for web shops difficult? Not with our own privacy policy generator!"

AVG / GDPR for webshops

Having a good Privacy Policy or Privacy Statement is important. Only now with the stricter rules, which went into effect on May 25, 2018, as a webshop owner you need to know exactly what personal data you collect and allow to be processed by other parties. This is not always easy, considering you not only have to think carefully about how you handle data, but also how other companies do so on your behalf.

The name AVG / GDPR is actually a collection of strict rules that you as a merchant must comply with. 'AVG' stands for: General Data Protection Regulation and the English term 'GDPR' for: General Data Protection Regulation.

Free Privacy Policy generator for webshops

WebwinkelKeur therefore comes with its own handy Privacy Policy generator / Privacy statement generator, which makes drafting a personalized privacy policy for your webshop even easier. Whether you are affiliated with us or not; every merchant can use it. This generator also takes into account the new GDPR / AVG legislation and several commonly used parties within the web shop world. This means that for those parties you usually don't have to search their privacy policies anymore.

The generator will not yet cover every relevant party from the 'World Wide Web'. In any case, we have made a nice selection and intend to expand the list in the future.

Generate your own Privacy Policy today!

Generating a customized privacy policy for the GDPR/AVG?Generate a free online customized privacy policy for your webshop.

Sign up immediately!

Now also in English (beta)

We had to sit for a while but fortunately the beginning is there. After quite a few requests for a translation of our generator, we have now created an English-language Privacy Policy generator for web shops. We hope this will help webshop owners with international dreams! Since this is a beta version, we would like to ask you to read the privacy policy carefully before placing it on your web store.

An English Privacy Policy generator for the GDPR/AVG?Go for an English privacy policy for your webshop.

Sign up now!

Example Privacy Policy for webshops

To give you an idea of what such a document could look like, we have provided an example below. Note: this is only an example and is not focused on your shop. We therefore advise you to use the generator when you want to have your own privacy policy for your webshop.

We hope that this way you are at least partially covered for the GDPR / AVG within your privacy policy. If you still need more information, we recommend you take a look at our GDPR/AVG page and blog posts.

We also have sample terms and conditions for your webshop. Is your shop ready to sign up? Then sign up immediately by clicking sign up

Example webshop privacy policy

[This is an example, go through the generator here].

About our privacy policy

[Example] cares deeply about your privacy. We therefore only process data we need for (improving) our services and treat the information we have collected about you and your use of our services with care. We never make your data available to third parties for commercial purposes.

About the data processing

Below you can read how we process your data, where we store it, which security techniques we use and to whom the data can be viewed.

Webshop software

Our web store is developed with software from [Example]. Personal information that you provide to us for our services will be shared with this party. [Example] has access to your information to provide us with (technical) support, they will never use your information for any other purpose. [Example] is required by the agreement we have with them to take appropriate security measures. These security measures include the application of SSL encryption, a strong password policy and secure data storage. [Example] reserves the right to share collected data within its own group and affiliated partners in order to further improve services. [Example] takes into account the applicable legal retention periods for (personal) data.

Web hosting and email

We purchase web hosting and email services from [Example]. [Example] processes personal data on our behalf and does not use your data for its own purposes. However, this party may collect metadata about the use of the services. This is not personal data. [Example] has taken appropriate technical and organizational measures to prevent the loss and unauthorized use of your personal data. [Example] is bound to secrecy under the agreement.

[This is an example, go through the generator here (link)]]

[Example] Our website uses [Example], a third-party provider that handles email traffic originating from our website and the sending of any newsletters. All confirmation emails you receive from our website and web forms are sent through the servers of [Example]. [Example] will never use your name and email address for its own purposes. At the bottom of every email sent automatically through our website you will see the 'unsubscribe' link. If you click on this you will no longer receive email from our website. This may seriously reduce the functionality of our website! Your personal information is stored securely by [Example]. [Example] uses cookies and other Internet technologies that provide insight into whether emails are opened and read. [Example] reserves the right to use your information to further improve the service and as part of this to share information with third parties.

Payment processors

[Example]

For handling (part of) the payments in our online store we use the platform of [Example]. [Example] processes your name, address and place of residence and your payment information such as your bank account or credit card number. [Example] has taken appropriate technical and organizational measures to protect your personal data. [Example] reserves the right to use your data to further improve the service and as part of this to share (anonymized) data with third parties. All the above mentioned safeguards regarding the protection of your personal data also apply to the parts of [Example] services for which they use third parties. [Example] will not retain your data longer than permitted under the legal time limits.

Reviews

WebwinkelKeur

We collect reviews through the platform of WebwinkelKeur. If you leave a review through WebwinkelKeur you are required to provide your name, city and email address. WebwinkelKeur shares this information with us so we can link the review to your order. WebwinkelKeur also publishes your name and place of residence on its own website. In some cases, WebwinkelKeur may contact you to provide an explanation of your review. In case we invite you to leave a review we share your name and email address with WebwinkelKeur. They use this information for the sole purpose of inviting you to leave a review. WebwinkelKeur has taken appropriate technical and organizational measures to protect your personal data. WebwinkelKeur reserves the right to use third parties for the provision of services, for this we have given WebwinkelKeur permission. All of the above guarantees regarding the protection of your personal data also apply to those parts of the service for which WebwinkelKeur engages third parties.

Shipping and logistics

If you place an order with us, it is our job to have your package delivered to you. We use the services of [Example] to carry out the deliveries. This requires us to share your name, address and place of residence information with [Example]. [Example] uses this data only for the purpose of executing the agreement. In the event that [Example] engages subcontractors, [Example] will also make your data available to these parties.

Invoicing and accounting

For our record keeping and accounting we use the services of [Example]. We share your name, address and residence information and details related to your order. This data is used to administer sales invoices. Your personal data is transmitted and stored in a protected manner, [Example] has taken the necessary technical and organizational measures to protect your data from loss and unauthorized use. [Example] is under an obligation of confidentiality and will keep your information confidential. [Example] will not use your personal data for purposes other than those described above.

External sales channels

We sell (part of) our items through the platform of [Example]. If you place an order through this platform then [Example] shares your order and personal data with us. We use this data to process your order. We handle your data confidentially and have taken appropriate technical and organizational measures to protect your data from loss and unauthorized use.

Purpose of data processing

We use your data exclusively for the purpose of our services. This means that the purpose of processing is always directly related to the assignment you provide. We do not use your data for (targeted) marketing. If you share data with us and we use this data - other than at your request - to contact you at a later time, we will ask you explicit permission to do so. Your data will not be shared with third parties other than to meet accounting and other administrative obligations. These third parties are all bound to confidentiality by virtue of the agreement between them and [Example] or an oath or legal obligation.

Automatically Collected Data.

Data automatically collected by our website is processed for the purpose of further improving our services. This data (for example, your IP address, web browser and operating system) is not personal data.

Cooperation with fiscal and criminal investigations

Where appropriate, we may be required by law to share your data in connection with governmental fiscal or criminal investigations. In such a case, we are forced to share your data, but we will resist within the possibilities offered by law.

Retention periods

We will retain your data for as long as you are our client. This means that we will keep your client profile until you indicate that you no longer wish to use our services. If you indicate this to us, we will also interpret this as a request to forget. We are required by applicable administrative requirements to retain invoices containing your (personal) data, so we will retain this data for the duration of the applicable term. However, employees no longer have access to your client profile and documents we have produced as a result of your assignment.

Your rights

Pursuant to applicable Dutch and European legislation, as a data subject you have certain rights with respect to the personal data processed by us or on our behalf. We explain below which rights these are and how you can invoke these rights.

Right of inspection

You always have the right to inspect the data that we (have processed) and that relate to your person or can be traced back to you. You can make a request to this effect to our contact person for privacy matters. You will receive a response to your request within 30 days. If your request is granted, we will send you a copy of all data with an overview of the processors holding this data, indicating the category under which we have stored this data, at the e-mail address known to us.

Right of rectification

You always have the right to have the data we process (or have processed) that relates to your person or can be traced back to you rectified. You can make a request to this effect to our contact person for privacy matters. You will receive a response to your request within 30 days. If your request is granted, we will send you a confirmation at the e-mail address known to us that the data has been adjusted.

Right to restriction of processing

You always have the right to limit the data we process (or have processed) that relates to your person or can be traced back to you. You can make a request to this effect to our contact person for privacy matters. You will then receive a response to your request within 30 days. If your request is granted, we will send you a confirmation at the e-mail address known to us that the data will no longer be processed until you lift the restriction.

Right to transferability

You always have the right to have the data we process (or have processed) that relates to your person or can be traced back to you by another party. You can send a message to this effect to our contact person for privacy matters. You will then receive a response to your request within 30 days. If your request is granted, we will send you copies or transcripts of all data about you that we have processed or have processed on our behalf by other processors or third parties at the email address known to us. In all likelihood, [Example] will no longer be able to continue providing services in such a case, as the secure interconnection of data files can then no longer be guaranteed.

Right of objection and other rights

You have in appropriate cases the right to object to the processing of your personal data by or on behalf of. If you object, we will immediately cease data processing pending the resolution of your objection. If your objection is well-founded, we will make copies and/or copies of data that we process (or have processed) available to you and then permanently cease processing. You also have the right not to be subjected to automated individual decision-making or profiling. We do not process your data in such a way that this right applies. If you believe that it does, please contact our contact person for privacy matters.

Changes to the privacy policy

We reserve the right to change our privacy policy at any time. However, you will always find the most recent version on this page. If the new privacy policy affects how we process data already collected about you, we will notify you by email.

Contact details

[Example]

Increase sales with more trust from your customers because:

  • Customers are in good hands with you
  • Your webshop has everything well organized
  • Your visitors are more likely to buy quickly and frequently
  • Customers feel heard
  • Customers enjoy a more personalized experience

Want that too?

Sign me in