Privacy Policy

A privacy policy is a mandatory legal document that informs your visitors about how you collect, use, and protect their personal data. Madra helps you generate one automatically.

What is a privacy policy?

A privacy policy is a page on your website that transparently explains how you handle your visitors' and customers' personal data. It meets the requirements of the GDPR and applicable data protection laws.

This page should be written in clear, accessible language, without unnecessary legal jargon. The goal is that any visitor can understand what data you collect and why.

Is a privacy policy mandatory?

Yes. As soon as your site collects personal data, a privacy policy is mandatory. This applies to virtually all websites, since even a simple contact form or the use of analytics cookies involves collecting personal data.

• GDPR obligation — The European regulation requires you to inform individuals about how their data is processed.
• National law requirements — Data protection laws in most countries also require this transparency.
• Penalties for non-compliance — The absence of a privacy policy can result in fines from supervisory authorities and damage your visitors' trust.

What should a privacy policy contain?

A complete privacy policy must include several essential pieces of information to be GDPR-compliant.

• Data controller identity — Your name or business name, address, and contact details.
• Data collected — The list of personal data you collect (name, email, IP address, browsing data, etc.).
• Processing purposes — Why you collect this data (responding to contact requests, sending newsletters, analyzing traffic, etc.).
• Legal basis — The legal foundation for each processing activity (consent, contract performance, legitimate interest, legal obligation).
• Retention period — How long you keep each type of data.
• Data recipients — Third parties who have access to the data (hosting provider, email tool, payment processor, etc.).
• Transfers outside the EU — If data is transferred outside the European Union, the safeguards in place.
• User rights — How your visitors can exercise their rights (access, rectification, deletion, portability, objection).
• Cookies — A summary of your cookie policy or a link to the dedicated page. See Cookies.

Does Madra automatically generate the privacy policy?

Yes. When your site is created, Madra automatically generates a pre-filled privacy policy page with standard information. This page is accessible from your site's footer.

• Dedicated page — The privacy policy is a full page on your site, indexable by search engines.
• Pre-filled content — The essential sections are already written with GDPR-compliant text.
• Footer link — A link to the privacy policy is automatically added to your site's footer.

How do you customize your privacy policy?

You can customize the content of your privacy policy from your Madra dashboard to adapt it to your specific business.

• Add your details — Replace the generic information with your name, business name, and address.
• Specify the tools you use — List the third-party tools you use (Google Analytics, Mailchimp, Stripe, etc.) and their purpose.
• Adjust retention periods — Customize data retention periods according to your business and legal obligations.
• Add specific sections — If you run an e-commerce site, add information about payment and delivery data.