Free, GDPR-compliant privacy policy for your website or app — ready in under 2 minutes
Fill in your details to generate your privacy policy →
A Privacy Policy is legally required under the Australian Privacy Act 1988 if your website or app collects any personal data — even just an email address for a newsletter.
Have this ready before you start:
Do you actually need one? Yes, if you collect any of the following: contact form submissions, newsletter signups, user accounts, payment details, or analytics data via Google Analytics, Facebook Pixel, or similar tools.
This tool generates an Australian Privacy Policy compliant with the Privacy Act 1988 (Cth) and the 13 Australian Privacy Principles (APPs). Under Australian law, any business or organisation with an annual turnover exceeding $3 million — or that handles health information, trades in personal data, or is a government agency — must have a publicly available Privacy Policy.
Your generated Privacy Policy will cover: what personal information you collect, why you collect it, how it is stored and protected, when and to whom it may be disclosed (including overseas transfers), how individuals can access or correct their information, how to make a complaint, and your use of cookies and third-party analytics (including Google Analytics).
Who needs one? Any Australian website, app, or business that collects names, email addresses, phone numbers, payment details, or any other personal information needs a Privacy Policy. Even businesses below the $3 million threshold benefit from having one to build customer trust and satisfy contractual requirements from payment processors and app stores.
The Office of the Australian Information Commissioner (OAIC) provides enforcement of the Privacy Act and can investigate complaints. A compliant Privacy Policy is your first line of protection. This generator runs entirely in your browser — your business information is never stored or transmitted.
