Privacy policy for small business owners

As a small business owner, you’re likely aware of the importance of having a privacy policy. But what does that mean for your business? And more importantly, what do you need to do to make sure your privacy policy is effective? This post will help answer those questions and provide tips on creating and implementing a privacy policy for your small business.

Australian Privacy Principles

The Privacy Act 1988 (Cth) sets out the Australian Privacy Principles. The following entities must comply with the Australian Policy Principles:

  • Australian Government Agencies;
  • Organisations (including sole traders, body corporates, trusts, partnerships and unincorporated associations) with more than $3 million turn-over;
  • Small businesses (ie organisations with an annual turn-over of $3 million or less) if they are:
  1. A health care provider including private hospitals, medical centres, a medical practitioner, a pharmacist, an allied health professional, a complementary therapist
  2. Gym, weight-loss clinics
  3. Child care centres
  4. Private schools, private tertiary educational institutes
  5. And other businesses, for a full list, visit:


Privacy Statements

One of the Australian Privacy Principles is to have a clear and up-to-date privacy statement which is freely available and readily accessible. A privacy statement must set out:

  • The providers name and contact details
  • What kind of personal information is collected and stored
  • How the personal information is collected and where is it stored
  • Reasons as to collection of personal information
  • How your personal information will be used and disclosed
  • How you can access your information
  • How to lodge a complaint
  • Whether your information will be disclosed to overseas parties


Website Privacy Policy

As part of our DIY documents series, we provide a comprehensive website privacy policy that contains the following sections:

  • Personal information
  • How personal information including IP, Cookies,  and third party cookies are collected and used
  • How personal information is used
  • When personal information is disclosed
  • Access requests/corrections
  • Storage and security of personal information
  • Third party websites
  • Brief information on General Data Protection Regulation for customers in the EU


To purchase a privacy policy, head to this page:

You can tailor this document to your circumstances.

Purchase of this document does not create a lawyer-client relationship.

This short note does not constitute legal advice and should not be relied as such. For legal advice, please contact us.

Tags :

APP,privacy law,privacy policy,small businesses

Share :