Please ensure Javascript is enabled for purposes of website accessibility

Free Privacy Policy Generator!

Comply with the California privacy policy law, GDPR, and other privacy policy laws with a template created by a Harvard Law grad turned entrepreneur!

Privacy Policy document on Computer against a purple background

Comply with the California privacy policy law, GDPR, and other privacy policy laws with a privacy policy template created by a Harvard Law grad turned online entrepreneur!

Create your customized privacy policy with this free privacy policy generator. When you use our generator, we’ll keep you updated if the laws change and you need to modify the agreement later!

    When you sign up, you’ll be added to our email list. You can unsubscribe at any time. We value your privacy. View our privacy policy, which was created with the generator, for more details.

    The Creator Has Been Featured In...

    What Is A Privacy Policy?

    Your privacy policy defines how you’ll interact with your visitors’ personal information and helps your website visitors understand what the heck is going on with their data and information when they visit your website. 

    Among other things, your website privacy policy should tell visitors what information you collect from them, how you collect that information, why you collect that information, how you use that information, who you share that information with, and what visitors can do to limit your use or collection of that information. 

    There is some other privacy policy boilerplate that needs to be in your policy, including the effective date of the policy, how you’ll notify people of changes, and how you’ll respond to Do Not Track requests.

    While your privacy policy is a legal document of sorts, the good news is that it should NOT include “above-mentioned,” “heretofore,” “foregoing,” “whereof,” or any other legalese. 

    Your privacy policy should be readable by site visitors… not something that you need a law degree to understand.

    Now, there will be some technical language (about pixels, cookies, tracking codes, and the like…), but keeping things simple is the way to go.

    Is A Privacy Policy Required?

    The short answer is… Yes. 

    The longer explanation is that if you are collecting any personal information from your website visitors — and that includes things like collecting their IP address automatically — you are legally required to have a privacy policy on your website. Here are some of the laws that apply:


    If you have website visitors coming from the European Economic Area (formerly known as the EU), you are required to comply with the General Data Protection Regulation (GDPR).

    The GDPR is an all-encompassing privacy law that covers a number of subjects. Among other things, the GDPR requires website owners to include a clear description of how information is collected and handled. You’re also required to notify visitors of their rights under the GDPR.

    Your website privacy policy is how you comply with these mandates for website visitors.


    California passed the California Online Privacy Protection Act (CalOPPA) way back in 2003 (in the days of dial-up internet!). CalOPPA has a single purpose — to require operators of commercial websites to conspicuously post a privacy policy that explains what data is collected and how it is being used.

    CalOPPA applies to any commercial website that collects data from California residents, whether the business is located in California or not. Because your site is open to all, there’s a pretty stinking good chance you have California website visitors.

    More recently, California passed the California Consumer Privacy Act (CCPA). While this law created quite a bit of buzz, it does not apply to you unless you have gross revenue of more than $25 million, you are collecting data from more than 50,000 California residents per year, or you are a data broker. If you meet one of those thresholds, you should consult with a lawyer about creating a custom privacy policy to meet your needs.


    The Children’s Online Privacy Protection Act (COPPA) makes it illegal to collect personal information from children under 13 years old without express consent from their parents… and requires you to provide a way for parents to raise issues if they believe their child’s information has been collected.

    Your website privacy policy should address the COPPA requirements by stating that your site is not intended for children younger than 13 and providing instructions for parents to reach out if they believe there has been an issue.

    Advertising Requirements

    Beyond the legal requirements, if you intend to run online advertising for your business, you will need a privacy policy in place. The major online advertising channels (including search and social advertising) require advertisers to post a privacy policy.

    So a website privacy policy is required for pretty much every online business. We created the free privacy policy generator so business owners like you don’t have to worry about the cost of following the law!

    What Should You Include In Your Privacy Policy?

    Creating a website privacy policy can seem a bit daunting, but it doesn’t have to when you understand what it is that you are supposed to include. And it all goes back to the central purpose of the policy — to create transparency and help website visitors make decisions about their data.

    Every website’s policy should include provisions that explain:

    • What information you collect, including the data collected automatically.
    • Whether your website collects information from children younger than 13 and how you handle consent issues.
    • How you collect the information, including with pixels and analytics software.
    • Why you collect the information and what you’ll use the information for.
    • Who you share the information with, including contractors and service providers.
    • What steps you take to safeguard the information.
    • What rights your users have with respect to the information, including whether they can review and correct it.
    • How you’ll notify visitors of changes to your policy.
    • The effective date of the policy.
    • Whether your site honors “do not track” requests (most don’t).
    • Your contact details.

    There are also some additional disclosures that some larger companies will need to make to comply with GDPR and other legal rules. 

    Luckily, you don’t need to spend much time thinking about this because we’ve included all the key provisions in the template that we use as the backbone for our Free Privacy Policy Generator. When you generate your policy with our generator, you’ll be covered. 

    Trust an Expert... Not a Random Website


    After graduating with honors from Harvard Law School, Bobby Klinck worked for a federal court of appeals judge, was mentored by a future Supreme Court Justice, served as a federal prosecutor with the United States Department of Justice, and worked at top-flight law firms. In other words, he knows his stuff.

    In 2017, he shifted to entrepreneurship because he saw small and medium-sized businesses priced out of the legal protection they need. He answered the call with templates that let businesses get their protection in place quickly, easily, and affordably.

    Bobby prides himself on making the legal stuff understandable, approachable, and accessible for other online entrepreneurs. He created this free privacy policy generator to make it truly simple for online business owners to get their legal protection in place.

    © Copyrights by Your Online Genius LLC. All Rights Reserved.