* Post it on your Web site’s main menu or navigation bar “so it is available to users prior to the collection of personally identifiable information.”
* Provide a link to the privacy policy from any page where constituents enter personal information.
Once you’ve created a privacy policy and it’s OK’d by legal counsel, the authors of the whitepaper advise that you develop an implementation strategy to let staff know when the policy is in place, educate them on the practices described in the policy and keep them informed as changes are made.
In terms of educating staff on the privacy policy, the authors recommend the following tips:
* Inform all staff when the policy is in place.
* Review it with them.
* Educate staff on the importance of complying with the privacy policy in their day-to-day tasks and what that means in a real sense.
* Educate employees that have access to personal information on how and when this information can be used.
* Set up a means to track and respond to inquiries and complaints regarding privacy issues.
The complete white paper can be viewed by visiting www.naceweb.org/committee/whitepapers/privacy_online.htm