Article from: http://www.chami.com/tips/internet/080899I.html
* Automatically collected information: If your web server logs information about which pages visitors view, IP address, host name, browser type, or other information that’s automatically collected by the software you use to serve your visitors, list the types of information you collect and how you use them. For example, you maybe using browser type information to fine tune your pages to specific browsers and other information in web server logs to administer and troubleshoot technical problems.
* Personal information: How you use any personal information that you collect from visitors should be documented here. For example, if you allow visitors to purchase products online, explain if you share or sell the information you gather to third parties. Also explain why it’s necessary to obtain personal information such as age if your product is aimed to adults. Parents maybe specially interested in whether your site ask for personal information from children without adult supervision.
* Security: Explain what steps you have taken to secure and backup the information you gather from visitors. For example, if you obtain credit card information over the web explain if you’re using a secure protocols such as SSL (Secure Socket Layer) / digital IDs to protect the information transferred between the browser and your web server.
* Public forums: Explain to visitors that information they provide on some sections of your site is public. For example, information provided on forums, guest books, message boards and news groups can be read by others and you should warn visitors to be careful when posting personal information on them. Also explain how you handle information collected from any polls, auctions, electronic newsletters, contests and sweepstakes you may have on your site.
* External links: Almost every web site link to external sites, but your visitors may not realize that they are being directed to a third party web site when they click on links on your site. If you have any external links, explain that you’re not responsible for the content and security of third party sites.