Who We Are
In this section, you should clearly state your www.naturalhealthafter50.com, as well as the name of the company, organization, or individual responsible for the site, along with detailed contact information.
The amount of information you may be required to provide varies depending on your location or specific business regulations. For example, you may need to provide a physical address, business address, or company registration number.
What Personal Data We Collect and Why
In this section, you should describe what personal data is collected from users and visitors on your website. This may include personal data such as name, email address, personal preferences, and transaction data such as purchase information, as well as technical data such as information about cookies.
You should also explain any collection and retention of sensitive personal data, such as health-related information.
In addition to listing the personal data you collect, you should explain why you collect it. These explanations should justify the legal basis for collecting and retaining the data or the explicit consent provided by the user.
Personal data is not created only through user interaction with your website. It is also generated through technical processes such as contact forms, cookies, analytics, and embedded third-party media.
By default, WordPress does not collect personal data about visitors and only collects the data shown on the profile screen of registered users. However, if any of your plugins also collect personal data, you should add that information below.
Comments
In this subsection, you should describe what information is collected through comments. We have already described the data WordPress collects by default.
Media
In this subsection, you should describe what information may be disclosed when a user uploads media files. Uploaded media files are generally public.
Contact Forms
By default, WordPress does not include a contact form. If you use a contact form plugin, use this subsection to explain what personal data is collected when someone submits information through a contact form and how long you keep that information. For example, you may state that you keep contact form submissions for a certain period for customer service purposes, but do not use the information for marketing purposes.
Cookies
In this subsection, you should list the cookies your website uses, including those set by plugins, social media, and analytics services. We have provided the cookies that WordPress installs by default.
Analytics
In this subsection, you should describe which analytics service your website uses, how users can opt out of tracking, and provide a link to your analytics provider’s privacy policy, if applicable.
By default, WordPress does not collect any analytics data. However, many hosting providers collect anonymous analytics data. You may also have installed a WordPress plugin that provides analytics services. In that case, add information about the plugin here.
Who We Share Your Data With
In this section, you should list all third-party providers with whom you share website data, including partners, cloud-based services, payment processors, and third-party service providers, and explain what data you share with them and why. If possible, provide links to their own privacy policies.
By default, WordPress does not share any personal data.
How Long We Retain Your Data
In this section, you should explain how long you retain the personal data collected or processed by the website. While it is your responsibility to define the retention schedule for each type of data and why you keep it, this information must be listed here. For example, you may state that you keep contact form entries for six months, analytics records for one year, and customer purchase records for ten years.
What Rights You Have Over Your Data
In this section, you should explain what rights your users have regarding their data and how they can request to exercise those rights.
Where Your Data Is Sent
In this section, you should list all transfers of your website’s data outside the European Union and describe the safeguards used to protect the data according to European data protection standards. This may include website hosting, cloud storage, or other third-party services.
European data protection law requires that data belonging to European residents transferred outside the European Union receive the same level of protection as if the data remained within Europe. Therefore, in addition to listing where the data is sent, you must explain how you ensure these standards are followed, either by you or your third-party providers, through agreements such as the Privacy Shield, standard contractual clauses, or binding corporate rules.
Contact Information
In this section, you should provide a method of contact for specific privacy-related concerns. If you are required to have a Data Protection Officer, you should also list their name and full contact details here.
Additional Information
If your website has commercial purposes and engages in more complex collection or processing of personal data, you should also provide that information in your privacy policy, along with all the information already discussed.
How We Protect Your Data
In this section, you should explain what measures have been taken to protect your users’ data. This may include technical measures such as encryption, security measures such as two-factor authentication, and measures such as employee training in data protection. If you have conducted a Privacy Impact Assessment, you may mention it here as well.
What Data Breach Procedures We Have in Place
In this section, you should explain what procedures are used to handle data breaches, whether potential or actual, such as internal reporting systems, contact mechanisms, or bug bounty programs.
What Third Parties We Receive Data From
If your website receives user data from third parties, including advertisers, this information must be included in the section of your privacy policy dealing with third-party data.
What Automated Decision-Making and/or Profiling We Do With User Data
If your website provides a service that includes automated decision-making — for example, allowing customers to apply for credit or aggregating their data into an advertising profile — you must disclose that this is taking place and include information about how the data is used, what decisions are made using the aggregated data, and what rights users have regarding decisions made without human intervention.
Industry Regulatory Disclosure Requirements
If you are a member of a regulated industry or are subject to additional privacy laws, you may be required to disclose that information here.