ABSTRACT
Chapter 7 discusses why a Privacy Policy is needed, the benefits of a layered approach, what a policy should contain and how it should be presented. GDPR has placed a requirement on companies and organisations to provide transparent and accessible information about the personal data that they process this chapter includes practical guidance on creating a Privacy Notice/Statement including the mandatory information that must be included. The final section of the chapter is on GDPR consent, its definition in GDPR and how to apply it. A section on obtaining cookie consent is also included.
