In this article, you’ll learn how to update your Termly privacy policy to comply with the Data Privacy Framework (DPF) program requirements.

To read all of the DPF program requirements, check out the key requirements for DPF Program participating organizations.

The DPF program requirements are applicable to U.S.-based organizations that wish to self-certify their compliance pursuant to the EU-U.S. DPF, the UK Extension to the EU-U.S. DPF, and/or the Swiss-U.S. DPF.

Once an organization self-certifies to the International Trade Administration (ITA) and publicly declares its commitment to adhere to the DPF Principles through a privacy policy, that commitment is enforceable under U.S. law.

If you want your policy to be compliant with the DPF program, log into your Termly Dashboard and follow these steps in the generator.

First, select Yes for the question, “Do you have users in the EU, UK, Switzerland, Iceland, Liechtenstein, or Norway?” if you have not already done so.

Next, select the Save & Next button and skip to the International Transfers page under Europe Considerations.

Select Yes for the question, “Will you be transferring EU or UK users’ personal information to anyone outside the EU or UK?” and answer all questions on this page if you have not already done so.

Next, select the Save & Next button and select Yes for the question, “Do you adhere or plan to adhere to the Data Privacy Framework (DPF)?”

Answer all applicable questions on the Data Privacy Framework page.

At this point, you may not have the URL address to your DPF listing yet. Once you receive the URL address from the ITA, you can come back to update your policy.

Important: You should only PUBLISH your policy with these updates once your organization’s DPF submission is deemed complete by the ITA.