Filter By

Show All

Connect to


Data Best Practice: The Power of the Privacy Notice


Data protection and privacy notices can be more than just fulfilling a legal requirement under the legislation introduced by the General Data Protection Regulation (GDPR) on May 25 2018.

They can be a powerful customer service and engagement tool, that helps increase your transparency and builds trust with your customers.

This is especially important as people become increasingly more aware of their data protection rights.

A study by Marketing Week showed that nearly half of consumers spoken to said they understood their rights around how their personal data was used and a huge 93% of those interviewed had heard about the GDPR.

How should organisations respond to this surge in consumer-knowledge?

One of your first steps should be to review your privacy policy. Here are some best practice steps:

Consider the privacy notice as a relationship opportunity

The privacy notice is an important opportunity to build a relationship, increase trust and improve your brand in the eyes of new and existing customers, so use it.

Ask yourself why people are viewing it.

Could they be a concerned current or potential customer? Do they have questions about how their data will be used? How can we provide reassurance?

Think about what questions are most important to your consumers and then set about answering them.

  • Put yourself in your audience’s shoes
  • Answer the questions your customers have
  • Regard this communication as important as anything else you publish

Make it clear

Using simple, plain and honest language will mean you have a privacy notice that answers questions rather than raises them.

Customers should finish reading your notice and have a rounded understanding of what is being done with their data.

Consider that they may have additional questions you had not thought of, so contact details of who to get in touch with should be included.

  • Do not resort to jargon
  • Simplify legal terminology so it is easy to understand

Ensure compliance with the law

It is important to check your updated privacy policy is compliant with the law before publishing:

  • Consult the DMA
  • Refer to the ICO’s guidance

Make it easily accessible

To optimise the positive customer experience, the privacy notice should be easy to find at all times.

It should also be referenced at all touchpoints where you ask for personal information.

Think about the user experience when publishing it, both on paper and online.

You should encourage users to read it by making it easily navigable: using an accordion function online helps people navigate content easily online.

An index and page-referenced approach will help people if your policy is in print. Your customers will thank you for helping them find information more easily.

  • Make the privacy notice prominent
  • Optimise display across devices
  • Hyperlink at data capture points if online

For more information, please see the Best Data Practice Guide.

For more from the DMA’s Customer Data Council, head here.

For more from the DMA’s Responsible Marketing campaign, head here.

Hear more from the DMA

Please login to comment.


Related Articles

Once again marketers reminded us of the multi-faceted role that email plays in the communication between brands and consumers across all stages of the customer lifecycle. Email is not only a transactional channel, but one that can be used to inform and build long-lasting relationships.

Customer Engagement web image(2).jpg

At DMA DATA 2020, a simple powerful statement was made by Firas Khnaisser that ‘data is people’.

As the case study from NHS Blood and Transplant clearly highlighted, great data insight and powerful design can create a true marketing force for good.

EAST framework for NHS Blood Donor.jpg

The ICO’s Direct Marketing Code of Practice will become the practical data protection guide for organisations seeking to stay within the law. The draft Code has been out for consultation and now the ICO is reviewing the responses it has received, including those from the DMA, which should shortly be published here on the DMA website.

The DMA Contact Centre Council's Regulation Hub has highlighted a few aspects that might be most significant for contact centres:

ICO Draft Code + DMA image.png

Our annual data summit took place at 30 Euston Square, and featured the expert input of keynote speaker Professor Anand Menon on the data economy and Brexit; the ICO on tech policy and innovation; PwC on cookie compliance; and panels sessions looking at privacy by design and data as a force for good. Take a look at this overview for the key takeaways.

Data 2020- An Overview_General articles.jpg