GDPR, ADA, CCPA. There are a lot of acronyms floating around the web development sphere these days. And the thing these three have in common? Compliance. While there isn’t an all-seeing internet governing board to police these policies, trust us, you will want to make sure they’re not missing from your website. 

There are many reasons to make sure your website is compliant. Google adheres to pretty strict policies for its search and advertising platforms. You definitely don’t want to miss out on showing up on Google. Also, it never hurts to design your site for ADA compliance and make it easier to access for those with disabilities. 

As we mentioned, there isn’t a true governing system to ensure these policies, yet, but there are still some things we strongly recommend you implement to ensure your website is properly working. And while it’s a safe bet to say there will be even more internet privacy acts passed in the near future, these are the big ones we make sure all of our clients are up-to-date on.

A Clear and Concise Privacy Policy

This is always good to have on your site and absolutely necessary if you are collecting information from your users. If you are storing emails or tracking names and phone numbers you must disclose so on your website. A general privacy policy should be its own web page, linked in the footer and cover some of the following:

Type of information collected
How it is collected
Why it is collected
How it is stored
Any third parties involved


Any website visitors from California are covered by the California Consumer Privacy Act. Your privacy policy must reflect this if you have traffic from California residents. Additions to your privacy policy to include for CCPA are:

How users can request information collected about them
Contain the word “privacy” in the display link


The General Data Protection Regulation is now in effect in the EU. If you have any website traffic originating from the European Union you need to include GDPR compliance in your privacy policy as well. Some additions are:

Easy contact to whoever is collecting data
Length of time data is being stored
Cookie consent

The cookie consent is implemented through a popup on any of your landing pages. The user needs to be able to opt-out of third-party tracking. 


Overall you want to make sure your website is accessible for persons with disabilities. At this time there are no federal guidelines for ADA websites but a few ways you can adjust your site to be easier to use are:

Alt tags (descriptors) for images and videos
Text transcripts for videos
Consistent, organized layout
Documents in a text-based format
Appropriate colors


If you are in the medical field and dealing with Personal Health Information (PHI) then your website will need to have extra security measures to be HIPAA compliant. 

Secure web forms
Company’s HIPAA Privacy notice displayed on its own page

As more governments start to take a hard look at consumer data protection there will be many more ways to keep your website compliant in the future. It can be a murky area to navigate and while we always recommend speaking with a lawyer, we are here to help you keep your website as up-to-date as possible.

About the Author

Carolann Crittenden