Keep your client’s data safe to avoid legal issues


  1. Know where your client data is.
    Make a list of all the places online where you collect Personally Identifiable Information (PII), such as names, email addresses, or credit card information.
  2. Check your exposure.
    Know exactly where all of the data is housed. Is it kept on your website server, on your computer’s hard drives, or inside third-party software?
  3. Write down why you are collecting data.
    The law wants to make sure you have a good reason to collect personal information in the first place.
  4. Find out how your website tracks visitors.
    Use tracking tools like cookies, web beacons, and tracking pixels on your website cautiously because you have the legal responsibility to manage the information your website browser has access to through these tools.
  5. Use third-party data processing when possible.
    If you are using data processor companies like Mailchimp, Facebook, Paypal, and Stripe, you need to sign the Data Processing Agreement (DPA), ensuring that you and these third parties are handling data with appropriate care and responsibility.
  6. Create a privacy policy for your clients to refer to whenever the need arises.
    The privacy policy should include the types of information you are collecting, the methods of collection, why you are collecting them, the measures to keep the information safe, and how clients can get to you to access their data.


No insights yet

Take action!

Our mobile app, Mentorist, will guide you on how to acquire this skill.
If you have the app installed

Our site saves small pieces of text information (cookies) on your device in order to deliver better content and for statistical purposes. You can disable the usage of cookies by changing the settings of your browser. By browsing our website without changing the browser settings you grant us permission to store that information on your device.