如果你在互联网上运行一个网站，很可能你正在收集一些关于访问者的信息。法律和道德要求使得在网站上发布隐私政策变得非常重要。

隐私政策将保护您免受许多法律责任。同时，无论法律是否要求，与用户共享隐私信息都是正确的做法。

在下面的文章中，您将了解应该在隐私策略中包含哪些元素，向这些元素添加什么，以及一些示例网站隐私策略模板和示例。

网站隐私政策的5个关键要素

根据美国更好的商业局，有五个重要的元素，你需要包括在你的网站隐私政策。

1. 注意：告诉你的读者你在网站上收集的关于他们的所有个人信息。
2. 选择：解释访问者是否可以选择不收集和使用他们的信息，以及如何这样做。
3. 访问：提供任何链接，读者可以在其中看到您收集的数据，如果他们想更正它。
4. 安全性：详细说明为保护已更正的任何用户数据而采取的安全措施。
5. 纠正措施：如果不遵守隐私政策，给你的访客提供他们所拥有的选择。

您不需要为策略中的每一个主题都包含一个完整的部分，但是您应该尝试确保以某种格式包含所有信息。

让我们更详细地探讨这些网站隐私政策的每一个要素。

网站隐私政策：简介

你的隐私政策应该从介绍开始，详细说明该政策的目的。

它还应该详细说明读者将从阅读中学到什么信息。在文本中看到“（网站）”的地方**服务或网站的名称。

您可以从基于此隐私策略模板的介绍开始：

"Here at (website) we take personal privacy very seriously. As a general rule (website) does not collect your personal information unless you chose to provide that information to us. When you choose to provide us with your personal information, you are giving (website) your permission to use that information for the stated purposes listed in this privacy policy. If you choose not to provide us with that information, it might limit the features and services that you can use on this website.

Generally, the information requested by (website) will be used to provide a website feature or service to you, such as commenting, support, or providing future content better tailored to your interests. A description of (website)'s intended use of that information, how that information is collected, security measures (website) takes to protect that information, and how to grant or revoke c***ent for collection and use of that information will be fully described the 'Privacy Notice' section of this privacy policy."

随着介绍的方式，现在是时候把你的隐私政策隐私通知部分。

网站隐私政策：通知

要完成隐私政策的通知部分，您需要对您的网站进行全面审核，以确定您正在从访问者那里收集哪些信息。通常，这可能包括以下任何来源。

• 表格（联系信息）
• 登录或注册信息（名称和密码）
• 在站点的任何页面上运行的广告脚本（人口统计）
• Cookie（网页浏览历史记录）
• 评论脚本（IP地址和位置）
• 社交媒体整合（朋友和家人）

大多数博客、论坛甚至更大的网站都使用广告网络、评论插件和其他直接或间接收集用户信息的便笺。

例如，如果你的网站使用Disqus，它要求访问者键入他们的电子邮件地址。但许多用户不知道的是（除非你让他们知道），它还记录了他们用来在你的网站上留言的计算机的IP地址。

重要的是你要了解你的网站从用户那里收集到的信息。你应该确保让他们知道你的网站隐私政策的通知部分。

最好为站点上存在的每种形式的数据收集创建一个单独的部分。描述该工具如何收集信息以及它收集了哪些信息。

根据您自己的网站正在收集的信息，调整下面每个示例的文本。

电子邮件地址

如今，大多数网站都会为访问者提供一个发送电子邮件的链接，或者访问者可以填写一份联系人表格向您发送消息。

这是您正在收集的个人信息的一种形式，因此请使用隐私通知文本将其披露给访问者，如以下示例所示：

"Some of the services on this website allow you to send us an email. We will use the information you provide, such as email address or phone number, only to respond to your inquiry. Keep in mind that email tran**issi*** are not encrypted by default, so we suggest you do not send sensitive information such as Social Security numbers, credit card numbers, or bank account information via such contact forms.

If such information is required, it will be via a web page that clearly states the page and its tran**ission of information is secure and encrypted. All electronic messages received from visitors are deleted when no longer needed."

如您所见，该语句准确地描述了您正在收集的信息以及如何使用这些信息。

第三方网站和应用程序

任何插件或服务，您使用添加功能到您的网站可以让您访问您的访客的个人信息。

一些例子是评论服务（如dishs）或与访问者的社交帐户集成的社交媒体插件。

即使您没有直接收到这些信息，如果该服务允许您登录到一个允许您查看或收集这些信息的帐户，您也需要向您的访问者披露这些信息。

以下是可用于本节的隐私政策文本示例：

"(website) uses commenting and social media plug-ins and third-party websites. We use those third-party services to interact with visitors and to build our community on social media. We also uses these third-party services to measure the number of visitors to our website, to interact with visitors on the site, and to make our website more useful to visitors.

In such cases, the third-party application may request an email address, username, password, internet protocol (IP) address, and geographic location for account registration or sign-in purposes. (website) does not use those third-party websites or services to collect personal information from individuals. Any personal information collected by the third-party website will not be stored or tran**itted by (website). (website) has no control over or access to specific login information or any other sensitive personal information provide to third-party websites."

本声明的最后一部分很重要，因为第三方网站或服务的隐私政策可能与您的不同。很重要的是要明确你的网站不能控制或访问这些信息。

最终，如果第三方服务因滥用信息而陷入法律纠纷，比如Facebook最近的剑桥分析（Cambridge Analytica）丑闻，你将不会受到任何这些问题的影响。

这也可以建立读者的信任，即使其他网站不善于保护他们的隐私，你仍然可以被信任。

跟踪和定制信息（cookies）

几乎每个在线网站都使用某种形式的分析或广告脚本来衡量用户的会话信息。

这些脚本收集了大量关于访问者的个人信息，尽管它们没有通过名字来明确标识这些用户。

如果你运行这些脚本或者显示那些广告，那么向访问者披露收集到的信息是非常重要的。以下是一些隐私政策声明示例：

"(website) uses cookies to provide a customized user experience on the site. A cookie is a **all file that a website transfers to your computer to allow your browser to remember information about your last session on that website. Your computer only shares information in the cookie with the specific website that provided it, and no other website can request that information. (website) also uses third-party ****ytics services (like Google Analytics) to gather this information for anlysis.

(website) collects and temporarily stores certain information about your visit to help us to better align our content and the website design with your needs. The information these cookies collect includes:

1. The domain you access our website from2. Your computer's IP address3. The date and time you accessed the site4. The operating system of your computer5. The browser you're using to access our site6. The Universal Resource Locators (URLs) of the pages you visit on our website7. Your username, if you've logged into the site8. The URL of site you came from, if you clicked a link there that brought you to our website

We may share this information internally with (website) employees or third-party contractors as needed. This information is only used to to improve the website and enhance our visitors' experience. Raw data logs are only retained temporarily site management purposes."

这将可能是你的隐私政策的最大部分，因为它通常是一种服务，大多数网站使用，它收集了这么多关于用户的信息。

对这些信息以及如何使用这些信息保持透明是很重要的（也是法律要求的）。要了解有关“请勿跟踪”功能的更多信息，请查看我们的指南。

网站隐私政策：安全

现在你已经详细介绍了你通过网站收集到的信息，是时候添加另一个部分，让你的访问者放心了。

在这里，您可以详细说明为保护访问者信息而采取的所有安全措施

下面是该部分的示例。同样，将“（网站）”替换为您自己网站的名称，并根据您的情况调整此模板文本：

"(website) takes the security of your personal information very seriously. We take many precauti*** to ensure that the information we collect is secure and inaccessible by anyone outside of our organization. These precauti*** include advanced access controls to limit access to that information to only internal personnel who require access to that information. We also use numerous security technologies to protect all data stored on our servers and related systems. Our security measures are regularly upgraded and tested to ensure they are effective.

We take the following specific steps to protect your information:

(1) Use internal access controls so only limited personnel have access to your information.(2) Anyone with access to user information is trained on all relevant security and compliance policies.(3) Servers that store visitor information are regularly backed up to protect against loss.(4) All information is secured through modern security technologies like secure socket layer (SSL), encryption, firewalls, and secure passwords.

All access safeguards described above are in place to prevent unauthorized access by outsiders to information stored on or tran**itted by our systems."

在向访客解释安全性时，重要的一点是你不要太详细。记住，并不是所有的访客都精通技术。他们只需要知道你为保护他们的信息而采取的一般安全措施。

网站隐私政策：选择、访问和补救

访问者对您收集的信息的控制通常在网站隐私政策的最后一节中讨论。

它涵盖了访问者访问信息和选择不收集信息的选项。如果他们发现你违反了自己的隐私政策，也可以提出投诉。

这三个问题通常都会通过向访问者提供一个通过电子邮件与您联系的选项来解决。您可以按以下方式编写此语句：

"You can do the following at any time by contacting us via the email address or phone number given on our website:

(1) Ask for a list of personal information we have about you, if any.(2) Request a change, correction, or deletion of your personal information.(3) Request that we avoid collecting anything in the future (opt-out).

If you do not wish to have cookies stored on your machine, you have the option to turn cookies off in your browser. However, keep in mind that turning off cookies may impact how this website functi***. Disabling browser cookies will also impact how other websites you visit store browser cookies as well.

Whenever we collect any sensitive information (such as social security numbers or credit card information), the information is encrypted and securely tran**itted. You are able to confirm this by looking for the 'lock' icon in the browser address bar, and also confirm that the URL link starts with 'https.'

If you believe at any point that we are not following this privacy policy as stated, please contact us immediately via email ([email protected]), or via telephone (415-555-1212)."

正如您所看到的，这一整节处理如何访问个人信息，以及如何选择退出，以及如何寻求补救，如果有任何问题。

本节末尾的联系句通常是结束隐私政策的好地方。

然而，如果你更喜欢以一个更个人化的注释结束，你总是可以添加另一段欢迎反馈或评论。同时考虑提供您的实际邮寄地址。

网站隐私政策的重要性

提供网站隐私政策不仅重要，因为它是法律要求的。

这是一个很好的做法，让你的网站访问者感到自信，你有他们的最佳利益考虑。一个彻底和详细的隐私政策为访问者提供了一个透明的感觉。它还可以帮助你的网站的新访问者感到足够安全，可以使用该网站，并希望在未来再次返回。

经营一个网站是一项艰苦的工作。我们在这里提供帮助，提供了大量关于建立网站、使用WordPress和正确保护网站安全等主题的文章。