Wix is a fantastic tool for building websites, including online stores, with its easy drag-and-drop features. You can create visually stunning websites, aimed at delivering the ultimate user experience. However, you must ensure that your users are well-informed about how their personal information is handled. And what better way to achieve this than through a comprehensive privacy policy?
This article is here to help Wix website owners create a privacy policy that fits their needs. We cover what to include, how to write it well, and how to add it to your Wix site.
Why do you need a privacy policy for your Wix site?
A privacy policy serves as a legal document that informs visitors about how their personal information is collected, used, and protected on your website. There are several compelling reasons why having a privacy policy for your Wix site is crucial:
- Legal compliance: In many regions, including the EU and parts of the US, it’s legally required to have a privacy policy if your website collects personal information. Failure to comply with these regulations can result in fines and legal penalties.
- Transparency: A transparent privacy policy builds trust with your visitors by demonstrating your commitment to protecting their privacy and respecting their rights. It assures them that their personal information will be handled responsibly and ethically.
- Business protection: A clear privacy policy helps minimize legal risks and potential disputes by outlining your data handling practices and compliance with relevant laws. It also provides a framework for resolving privacy-related issues and other user concerns.
Wix privacy policy requirements under major privacy laws
GDPR
- Identity and contact details of the controller and representative (if applicable).
- Contact details of the data protection officer (if applicable).
- Purposes and legal basis for processing.
- Legitimate interests pursued by the controller or third party (if processing is based on point (f) of Article 6(1)).
- Recipients or categories of recipients of the data.
- Intention to transfer data to third countries or international organizations, with details on safeguards.
- Additional necessary information for fair processing.
This additional information includes:
- Storage period of data or criteria used.
- Rights of access, rectification, erasure, restriction, objection, and data portability.
- Right to withdraw consent.
- Right to lodge a complaint with a supervisory authority.
- Nature of data provision (statutory, contractual, or obligatory) and consequences of failure to provide.
- Existence of automated decision-making and relevant details.
CCPA/CPRA
- Consumer rights and request methods.
- Categories of collected personal information.
- Sources of personal information.
- Business purposes for data collection, selling, or sharing.
- Third parties receiving personal information.
- Categories of sold or shared personal information, or no such activity.
- Categories of disclosed personal information for business purposes, or no such activity.
What to include in your Wix site’s privacy policy?
Crafting an effective privacy policy for your Wix site involves several key components, each of which plays a crucial role in informing visitors about your data practices:
Introduction
Explain the purpose of the privacy policy and its applicability to visitors of your Wix site. State your commitment to protecting their privacy and complying with relevant laws and regulations.
Roles and responsibilities
Describe your and Wix’s role when it comes to data processing. While Wix acts as a processor, you, as the website owner, are the controller of users-of-users’ data. This distinction is fundamental and should be clarified in the policy at the outset.
E.g. YPI CREW explains quite well the purpose of the privacy policy and what role they play in handling user data.
Legal compliance
Compliance with relevant privacy laws, such as the GDPR, should be at the forefront of your privacy policy. Make it explicit that you, as the controller, are responsible for obtaining necessary consents and permissions. Clearly state your commitment to adhering to privacy regulations to build trust with your users.
E.g. G-Solutions Fissures (in French) clearly mentions the law it’s obliged to follow.
Information collection
Explain categories of personal data collected – name, contact information, IPs, location, payment information, etc. Provide specific examples of information gathered through forms, store transactions, etc.
Wix, similar to many website platforms, collects your user’s information for functionalities and services. This information includes personal details (name, email, phone), transaction info (billing address, partial payment info, order history), website usage data (IP address, browsing activity, cookies), user-uploaded content (images, videos, audio), and inferred data about user preferences and demographics.
E.g. Menzies Aviation’s privacy policy available as PDF explains in detail all the types of personal data it collects and when it collects them.
Methods of collection
Describe the methods you use to collect visitor information, such as contact forms, registration forms, cookies, and tracking technologies. Explain how these methods work and what information they gather from visitors. Describe how Wix tools like form builder, stores manager, Velo code, etc. are used to collect visitor information. Explain associated cookies and tracking technologies enabled.
E.g. Bakalikon has outlined several key points regarding how they collect and use customer data in their privacy policy.
Purpose of collection
Clarify why you collect visitor information and how it is used. This may include purposes such as processing orders, providing customer support, personalizing content and advertising, conducting analytics, and improving website functionality.
E.g. Yaya Babe Shop lists in detail the purpose of all the data they collect including with whom they disclose the information.
Use of cookies and tracking technologies
Disclose if your website uses cookies or similar technologies for tracking, analytics, advertising, or other purposes. Explain the types of cookies used, their purpose, and how visitors can manage or disable them through browser settings or other opt-out mechanisms. Please note this can be done in a separate cookie policy page and it should be linked in the privacy policy.
Wix uses cookies for important reasons such as providing a good user experience, identifying logged-in members, and ensuring the platform’s security. These cookies are essential for the smooth functioning of your website. However, depending on the features you add to your site, there may be other types of cookies involved. These could include cookies for third-party applications like Google Analytics or Facebook Ads.
It’s important to understand and communicate this cookie usage transparently within your privacy policy to build trust with your visitors and comply with privacy regulations.
E.g. Deviantart’s privacy policy dedicated a detailed section for cookies and tracking technologies. Starting with a brief explanation of the different types of cookies used by them, they go on to list these cookies in tabular format with details such as type, purpose, and duration.
Data sharing
Explain whether and how you share visitor information with third parties, such as service providers, business partners, or legal authorities. Specify the purposes for which data is shared and the safeguards in place to protect it.
Wix will share the personal information of users of your website with third-party services only if Wix is specifically instructed to do so or granted permission. However, it’s important to note that Wix assumes no responsibility for how these third-party services process or handle this personal information. Therefore, you must properly disclose in your privacy policy if and how your Users-of-Users’ information may be shared with and used by any third parties you authorize to access it.
E.g. Match Media Group‘s privacy policy outlines how they share user data only when needed with specific groups like third-party vendors, their own corporate family, and for legal reasons.
User rights including opt-out
Inform visitors of their rights regarding their personal data, including the right to access, rectify, or delete their information. Explain how visitors can exercise these rights and provide contact details for inquiries or requests related to their privacy rights. This should include their opt-out rights. The policy should clearly explain how users can opt out of data collecting and other processing activities.
E.g. Wix’s own privacy policy handles this section quite well. They have a section where they detail all the rights their users have under the US applicable privacy laws. This includes the opt-out rights and how to exercise them.
Data security
Assure visitors that you have implemented appropriate security measures to protect their information from unauthorized access, disclosure, alteration, or destruction. Describe the security protocols and technologies you utilize, such as encryption, firewalls, access controls, and regular security audits.
E.g. Archerirm lists the ways they protect the personal information of users which includes encryption, access limitation, and de-identification. They also have a section use of children’s personal information.
Data retention
Explain your data retention practices clearly, including the criteria used to determine retention periods. Emphasize compliance with legal obligations and legitimate interests while ensuring transparency about data retention.
E.g. Soulmachine’s privacy policy ensures users how long they keep user data and they also link to thier data retention policy for more information.
Questions and complaints
Demonstrate your commitment to addressing users’ concerns by providing contact information for privacy-related inquiries and complaints. Assure users that you take privacy complaints seriously and will make every effort to resolve them promptly.
E.g. Farmacia Visini’s privacy policy (Italian) includes the email address of their Compliants Manager for users to ask questions or share concerns regadung their personal information.
Policy updates
State your right to update the privacy policy as necessary to reflect changes in data practices, legal requirements, or business operations. Encourage visitors to periodically review the policy for any updates and provide a prominent last revision date.
Contact information
Provide your contact information, including a physical address, email address, and phone number, for visitors to reach out with questions, concerns, or requests related to your privacy practices. Designate a responsible individual or department for handling privacy inquiries.
How to add a privacy policy to your Wix site?
Integrating your privacy policy into your Wix site is straightforward:
- Go to your Wix account dashboard and select Edit Site.
- Click on the Menu & Pages icon, then click +Add Page to add a new page.
- Choose +Blank Page, name it Privacy Policy, and click Done.
- On the new page, click on Add and select Text > Paragraph to add a block.
- Paste your privacy policy into the paragraph block, click Save, preview the page, and click Publish.
Seems easy, doesn’t it? However, crafting the content of a privacy policy is far from straightforward.
Get it right with CookieYes Privacy Policy Generator for Wix
Comprehensively covering every aspect required by privacy regulations demands considerable time to understand all your data practices and their impact on user privacy. Being a legal document, it adds more complexities to it. Two possible best avenues are hiring a lawyer to draft one for you or using a privacy policy generator, which can expedite the process. While hiring a lawyer can be expensive, a privacy policy generator is much more affordable and often, free to use.
CookieYes Privacy Policy Generator is a simple, free tool to create a privacy policy for your Wix website. offers a simple, cost-free solution to create a privacy policy for your Wix website. Simply answer a brief questionnaire on your site’s data practices, and you’ll have a detailed privacy policy ready for your Wix website in no time.
Generate a custom privacy policy
for your website
Create a free privacy policy Generate instantlyNo signup required
Where to display a privacy policy on the Wix website?
Here are some common places to display your privacy policy on your site:
- Website footer: This is one of the most common place for a privacy policy link. Users expect to find important links, including the privacy policy, in the footer section of a website.
- Banner or popup: Some websites use a cookie banner or popup to ask for cookie consent when users first visit the site. This ensures that users are immediately informed about cookies and their usage.
- Header or navigation bar: Placing a link to your privacy policy in the header or navigation bar ensures that it’s easily noticeable from any page on your website.
- Contact or legal Pages: Your privacy policy can be included on pages dedicated to legal information, such as Terms and Conditions or Contact Us page.
- Signup/sign-in page: If your website has signup/signin pages, consider adding a link to your privacy policy near the form.
- Checkout pages: If your website has checkout pages, include a link to your privacy policy to inform users about data handling practices.
- Forms and opt-in pages: If you collect personal information through forms or opt-in pages, it’s a good practice to include a link to your privacy policy near these forms to inform users about data collection and usage practices.
It’s evident that while Wix provides a seamless platform for website creation, the importance of a well-structured privacy policy must be addressed. By addressing the various components discussed in this guide and leveraging free tools like the CookieYes Privacy Policy Generator, Wix website owners can navigate the complexities of data protection with confidence. So, take the necessary steps to create a privacy policy that reflects your commitment to safeguarding user privacy on your Wix site.
FAQ on Wix privacy policy
Yes, if your Wix website collects, uses, or shares personal information from visitors, you need a privacy policy. A privacy policy is a legal requirement for websites that operate in certain jurisdictions, such as the European Union (GDPR) and California (CCPA/CPRA). It informs visitors about how their personal data is handled and their rights regarding that data.
No, Wix does not sell the personal information of your users to third parties. According to their privacy policy, they use personal information solely to provide and improve their services. However, they may share personal information with third parties under the instruction of website owners.
You can follow the same way as the above to open a new page. However, instead of selecting Text, you should click HTML Code. Enter the HTML code of the privacy policy and click Save and Publish to make the page live.
Failing to provide a privacy policy when legally required can result in significant fines and legal consequences. In the EU, GDPR requires websites that collect personal data from EU citizens to have a privacy policy. In the US, several state laws, including CPRA, VCDPA, CPA, CTDPA, and UCPA mandate privacy policies for certain websites.