12 Documents Available

Privacy & Data Protection Documents

Complete privacy compliance documentation for GDPR, CCPA/CPRA, and global data protection requirements. Privacy policies, Data Processing Agreements, consent mechanisms, and data subject rights procedures.

Included with any security package
View Security Packages Browse Documents

When Do Privacy Laws Apply?

GDPR (EU/EEA)

  • Established in EU or offering goods/services to EU
  • Monitoring behavior of EU individuals
  • Processing personal data of EU residents

Fines: Up to 4% of global revenue or €20M

CCPA/CPRA (California)

  • Revenue > $25.625M (2025 threshold)
  • Data on 100,000+ CA consumers/households
  • 50%+ revenue from selling personal info

Fines: $2,500-$7,500 per violation

Other US State Laws

Virginia (VCDPA), Colorado (CPA), Connecticut (CTDPA), Utah (UCPA), and more states with privacy laws in 2025.

Key Compliance Requirements

Transparency (Privacy Notice)

Clear disclosure of data collection, use, and sharing

Lawful Basis / Legal Grounds

Consent, contract, legitimate interest, legal obligation

Data Subject Rights

Access, deletion, correction, portability, opt-out

Data Processing Agreements

Contracts with processors handling personal data

Breach Notification

GDPR: 72 hours to supervisory authority

Privacy Document Library

GDPR, CCPA/CPRA, and general privacy compliance templates.

Core Privacy Documents

Privacy Policy (Website)

GDPR Art. 13-14, CCPA §1798.100

Comprehensive privacy notice for websites/apps covering all major regulations

GDPR Privacy Notice

GDPR Art. 13-14

Detailed notice specifically compliant with GDPR transparency requirements

CCPA/CPRA Privacy Policy Addendum

CCPA §1798.100-199

California-specific disclosures, categories, rights, opt-out notices

Cookie Policy

ePrivacy Directive, GDPR

Cookie disclosure, consent mechanism documentation

Data Processing Agreement (DPA)

GDPR Art. 28

Contract between controller and processor for data handling

Standard Contractual Clauses (SCCs)

GDPR Art. 46

EU-approved clauses for international data transfers

Operational Privacy Procedures

Data Subject Access Request (DSAR) Procedure

GDPR Art. 15-22, CCPA

Process for handling access, deletion, and correction requests

Breach Notification Procedure

GDPR Art. 33-34

72-hour notification process, risk assessment, templates

Data Protection Impact Assessment (DPIA)

GDPR Art. 35

Template for assessing high-risk processing activities

Data Mapping Template

GDPR Art. 30

Records of processing activities (RoPA)

Consent Management Procedure

GDPR Art. 7

Collecting, recording, and withdrawing consent

Data Retention Schedule

GDPR Art. 5(1)(e)

How long to keep different data categories

CCPA Annual Update Requirement

California law requires privacy policies to be updated at least once every 12 months. Your policy must include the date it was last updated.

  • Review and update privacy policy annually
  • Include "Do Not Sell or Share" link if applicable
  • Include "Limit Use of Sensitive Personal Information" link (CPRA)
  • Document last 12 months of data categories collected

Privacy Document Packages

Privacy Policy Only

$297

Basic Website Coverage

  • Privacy Policy Template
  • Cookie Policy
  • GDPR & CCPA compliant
Get Basic Pack
COMPLETE

Full Privacy Pack

$1,297

All 12 Documents

  • All privacy policies
  • DPA template
  • DSAR procedures
  • Breach notification
  • Data mapping template
Get Full Pack

Add: DPA Only

$197

Data Processing Agreement

  • GDPR Art. 28 compliant
  • Controller-Processor
  • SCC references
Get DPA Template

Get privacy compliant in days, not months

Professional privacy documentation for GDPR, CCPA/CPRA, and global requirements.

Get Privacy Pack - $1,297 Back to Library