Frequently Asked Questions
Everything you need to know about privacy policies, privacy laws, and how PolicyLens helps protect your digital rights.
About PolicyLens
Is PolicyLens really free?
Yes! PolicyLens is 100% free to use. No signup required, no credit card needed. We believe everyone should have access to understand what they're agreeing to online.
How does AI-powered analysis work?
PolicyLens uses advanced AI to analyze privacy policies and terms of service documents. It identifies data collection practices, third-party sharing, red flags, and provides a risk score with plain English explanations. Our AI understands legal language and can spot concerning clauses that might be hidden in fine print.
Is my data safe when using PolicyLens?
Yes. PolicyLens does not store your pasted policies or analysis results on our servers. All data is processed temporarily and immediately discarded. Your privacy is our priority - we practice what we preach.
What types of documents can I analyze?
You can analyze privacy policies, terms of service, cookie policies, data processing agreements, and any other legal documents related to data privacy. Simply paste the URL or the text directly.
Can I compare multiple policies?
Yes! PolicyLens allows you to analyze and compare multiple privacy policies side-by-side. This makes it easy to see which service better protects your privacy when choosing between apps or services.
Privacy Policies
What is a privacy policy?
A privacy policy is a legal document that explains how a company collects, uses, stores, and shares your personal information. It's required by law in many jurisdictions, including the EU (GDPR), California (CCPA), and many other regions.
Why should I read privacy policies?
Privacy policies reveal what data companies collect about you, who they share it with, how long they keep it, and what rights you have. Understanding these policies helps you make informed decisions about which services to use and what permissions to grant.
Do I need a privacy policy for my website?
If you collect any personal information from users (through forms, cookies, analytics, etc.), you likely need a privacy policy. Requirements vary by location - GDPR applies if you have EU users, CCPA if you have California users. Check our guides for specific requirements.
What's the difference between a privacy policy and terms of service?
A privacy policy focuses specifically on data collection and handling. Terms of service cover broader rules for using a service, including user obligations, liability limitations, and dispute resolution. Both are important, but privacy policies are more relevant to your personal data.
Can I copy someone else's privacy policy?
No. Privacy policies are specific to each company's data practices. Copying someone else's policy is both ineffective (it won't accurately describe your practices) and potentially illegal (copyright issues). Use a generator or create a custom policy.
GDPR Compliance
What is GDPR?
GDPR (General Data Protection Regulation) is Europe's comprehensive privacy law that took effect in 2018. It gives EU residents rights over their personal data and requires companies to be transparent about how they collect and use data.
Who does GDPR apply to?
GDPR applies to any organization that collects or processes data of EU residents, regardless of where the company is located. If you have users in the EU, you need GDPR compliance.
What are the key GDPR rights?
GDPR grants individuals: the right to access their data, right to rectification, right to erasure ("right to be forgotten"), right to data portability, right to restrict processing, right to object, and rights related to automated decision-making.
What happens if a company violates GDPR?
GDPR fines can reach up to €20 million or 4% of annual global turnover, whichever is higher. The severity depends on the nature of the violation. Major tech companies have faced billions in fines.
Does GDPR require cookie consent?
Yes. GDPR requires informed consent before placing non-essential cookies. This means users must actively opt-in to cookies (no pre-checked boxes) and be told what cookies are used and why.
CCPA & US Privacy Laws
What is CCPA?
The California Consumer Privacy Act (CCPA) gives California residents rights over their personal information. It requires businesses to disclose data collection practices and allows consumers to opt out of data sales.
What is CPRA?
The California Privacy Rights Act (CPRA) strengthened CCPA, effective 2023. It created a new agency for enforcement, added rights to correct inaccurate information and limit use of sensitive data, and expanded opt-out rights.
Which US states have privacy laws?
As of 2026, over 20 states have comprehensive privacy laws including California, Virginia, Colorado, Connecticut, Texas, Florida, and many others. Requirements vary but generally include disclosure requirements and consumer rights.
What does "Do Not Sell My Personal Information" mean?
This CCPA requirement lets California residents opt out of the sale of their personal information. Companies must provide a clear link on their website to exercise this right.
What is COPPA?
The Children's Online Privacy Protection Act (COPPA) protects children under 13 in the US. It requires verifiable parental consent before collecting data from children and restricts what data can be collected from minors.
Privacy Best Practices
How can I protect my privacy online?
Key practices include: use strong unique passwords, enable two-factor authentication, review app permissions, use privacy-focused browsers and search engines, limit social media sharing, read privacy policies before using new services, and use a VPN on public networks.
What data should I never share online?
Never share your Social Security number publicly, financial account details, passwords, medical information unnecessarily, home address with strangers, or real-time location continuously. Be cautious with photos that reveal personal information.
How do I know if a website is trustworthy?
Check for HTTPS (padlock icon), read the privacy policy, look for contact information, research the company, check reviews, and verify the site has proper terms of service. Be wary of sites that ask for excessive personal information.
What are red flags in a privacy policy?
Warning signs include: selling data to third parties, unlimited data retention, vague language about data sharing, lack of user rights (deletion, access), no contact information, and automatic enrollment in data collection.
Should I use a VPN?
A VPN (Virtual Private Network) encrypts your internet traffic and hides your IP address. It's recommended when using public WiFi, for extra privacy, or to access region-restricted content. Choose a reputable VPN with a no-log policy.
Have More Questions?
Our AI analyzer can help you understand any privacy policy in plain English.
Try PolicyLens Free