Legislation governing the sending of marketing material varies globally, so you should make sure that the texts you use are suitable for the regions in which you are operating.

However, since you cannot control where a customer will open an email or register on your site, it is a good idea to protect yourself by complying with the most restrictive legislation.

These guidelines were prepared for our customers operating in the German-speaking parts of Europe and are compliant with German email marketing legislation. Since this is among the strictest in the world, we consider them to be a benchmark for best practice policy.

Your Privacy Policy outlines how your company gathers, uses, discloses, and manages your customers' data. This should be made available by a clearly visible link on your website and next to your registration forms. It is also a good idea to include it in the footers of your marketing emails.

Below are some hints of what to include in your Privacy Policy.

You should include the following information on your company:

• Physical address
• Email address
• Telephone number
• Tax ID number (where applicable)
• Authorized representative

You should also include details on how to contact you on matters relating to data protection, and mention your data protection officer, if you have one.

Regarding email newsletters, the most important factors are openness about the content they will receive, and reassurance that they can easily opt out.

Your Privacy Policy should contain the following information:

• A description of the content that they will receive in the newsletter, such as new products, valuable tips, company news and exclusive offers.
• A description of the subscription process, e.g. if they will receive a confirmation email with an activation link to start receiving the newsletter.
• A description of the unsubscribe process in detail, giving the location of your unsubscribe link.
• Details of who will be sending the recipient what type of emails, and at what frequency.

After a customer has bought a product, it may be in their interest to receive further information relating to that product, even if they have not explicitly opted in for such content. This is a gray area which this German law attempts to clarify.

Where relevant, your Privacy Policy should contain the following information:

• If local legislation permits the unsolicited sending of certain types of content, mention this explicitly in a separate section.
• Clearly state that the contact can also opt out of these at no additional cost (beyond the costs of a working Internet connection) and give the location of the unsubscribe link and any additional unsubscribe methods.

For a detailed explanation of how our web tracking works, please read: 

• GDPR and Web Extend - all you need to know.

The most important goal for you in this regard is to explain to the reader that data is collected for their benefit, so that you can send them only relevant information, tailored to their preferences.

Your Privacy Policy should contain the following information:

• Make it clear that personal data given upon registration will be used to send personalized newsletters.
• Explicitly state that no data will be shared with third parties. If data will be shared (for example for affiliate marketing, or for Emarsys partners, see below), name each party (max. 10).
• Mention local legislation by name that you know that your privacy policies are in accordance with, for example the Federal Data Protection Act (BDSG) and the Telemedia Act (TMG) of the Federal Republic of Germany.

Covered by the core Platform functionality

The following products do not share data outside the Emarsys Platform:

• Email Channel, including
  • Inbox Preview
  • Triggered Email
• Send Time Optimization
• Open Time Content

Covered by Web Extend

The following products are covered by whatever you include on web data collection and do not need to be included in your Privacy Policy:

• Smart Insight
• Predict, including:
  • Email Recommender
  • Web recommender
• Web Channel