For Businesses For Consumers TRUSTe Blog About TRUSTe   
 
TRUSTe - Make Privacy Your Choice
Seal Programs  ::  How To Renew  ::  Resources  ::  Partner Services  ::  Events  ::  Tech Tips  ::  FAQs

General TRUSTe Application

Frequently Asked Questions

How do I join the TRUSTe program?

What does TRUSTe need in order to begin the review and approval process?

In addition to a privacy statement, what are the other TRUSTe program requirements?

What is the purpose of the Self-Assessment form?

If I don't have a privacy statement, what should I do?

How long does it take to become TRUSTe certified?

What are the TRUSTe seals?

Can I post more than one privacy statement on my site?

How does TRUSTe handle consumer complaints regarding licensed sites?

What happens if my Web site fails a compliance review?

Is it possible for a Web site to apply for both the TRUSTe Privacy Seal and the TRUSTe Children's Privacy Seal?

Does TRUSTe cover privacy practices of third parties with whom you may share personally identifiable information?

What is TRUSTe's policy regarding the approval of Web sites that have not yet been launched?

Q: How do I join the TRUSTe program?
A: To become a TRUSTe licensee, you must first submit an application packet in our online Certification Center. Please see How to Join for easy-to-follow steps for submitting the application, and guidance on creating a privacy statement for your Web site.

Q: What does TRUSTe need in order to begin the review and approval process?
A: Before TRUSTe begins its thorough review process, prospective and renewing licensees must send to us the following items: a current privacy statement for the site, a completed Master Services Agreement and self-assessment form, and payment.

Q: In addition to a privacy statement, what are the other TRUSTe program requirements?
A: Please see How the TRUSTe Program Works for a comprehensive overview of our program requirements. You may also want to review the oversight and resolution process.

Q. What is the purpose of the Self-Assessment form?
A: The Self-Assessment document form is a critical tool, both for TRUSTe and for your company, to ensure that you are exercising responsible data management practices within your organization. The form has been developed based on real-world issues of concern from consumers and government authorities. The purpose of the form is to ensure that we identify and correct any loopholes or oversights in your corporate practices or technology before a problem occurs - this will help to minimize your liability.

Q. If I don't have a privacy statement, what should I do?
A: You must submit a privacy statement with your TRUSTe application or shortly thereafter. We have developed Model Privacy Policy Disclosures that you can review to help you draft your privacy statement. Unfortunately, there is no single "ideal" privacy statement–by definition, privacy statements vary from company to company and must be tailored to highlight specific practices.

**Please note that the Model Privacy Policy Disclosures are not to be used as your company's completed privacy statement, it is merely a tool to serve as an example of a complete and approved TRUSTe privacy statement. It is very important that you TAILOR the privacy statement to the practices of your own Web site. We can not effectively review your privacy statement until it matches the information collection and use practices on your Web site.

DO NOT under any circumstances display these marks on your site until you receive final approval from your account manager.

Q. How long does it take to become TRUSTe certified?
A: Very diligent organizations can become TRUSTe certified in as little as three weeks once they have submitted their applications. You can shorten the certification process significantly by taking great care to submit complete, accurate, and thorough application materials and responding to TRUSTe communications in a timely fashion. If you have any questions about any of the materials, you should contact us at privacyseals@truste.org or (415) 520-3417 to prevent delays in handling your application. Remember that the certification process is interactive and requires your input in order for the process to progress.

Q: What are the TRUSTe seals?
A: TRUSTe has two seals, the trust mark, which you can use in place of a Privacy Statement link and the "Click to Verify" mark, which is put at the top of your privacy statement and links to TRUSTe's secure server so that consumers may verify that you are a legitimate licensee.

Q: Can I post more than one privacy statement on my site?
A: Yes. Each web site should determine the best means of delivering a privacy statement. In some cases if a site has both a children's area and a general audience area, you may need to have two different privacy statements to describe the different practices. With a co-branded web site may have privacy statements for the two companies that are represented on the web site. With downloadable software, you may need to have a separate privacy statement that reflects the practices of the software.

Q: How does TRUSTe handle consumer complaints regarding licensed sites?
A: TRUSTe requires consumers to contact the Web site first to resolve the issue. If consumers do not receive satisfaction, they may then come to us with a complaint, and we serve as the liaison to resolve the issue with the TRUSTe licensee. We provide Web users with a simple, convenient online Watchdog Report for communicating their complaints or concerns regarding a member's privacy policy or suspected misuse of the trust mark directly to us. In addition, all privacy statements contain TRUSTe's contact information. For additional information, please review the Watchdog procedures.

Q: What happens if my Web site fails a compliance review?
A: In the unlikely event that a site fails a compliance review or TRUSTe has reason to believe that a site is in non-compliance with its stated privacy practices, we will conduct an escalated investigation. Depending on the severity of the breach, the investigation could result in an on-site compliance review by a CPA firm, or revocation of the site's trust mark license. After TRUSTe has exhausted all escalation efforts, extreme violations are referred to the appropriate law authority, which in the U.S. may include the appropriate attorney general's office, the Federal Trade Commission, or the Consumer Protection Agency. TRUSTe may pursue breach of contract or trademark infringement litigation against the site.

Q: Is it possible for a Web site to apply for both the TRUSTe Privacy Seal and the TRUSTe Children's Privacy Seal?
A: Yes it is. As stated in the TRUSTe license agreement, Web sites can apply for both seals. You must sign both license agreements in order to do so. In some cases, after reviewing your site, TRUSTe may determine that your site is directed at children and therefore must join the children's program.

Q: Does TRUSTe cover privacy practices of third parties with whom you may share personally identifiable information?
A: No. TRUSTe only covers the information collected and shared by our licensees. We do not monitor the uses of that information by the business partners of our licensees.

Q: What is TRUSTe's policy regarding the approval of Web sites that have not yet been launched?
A: While we understand that many Web sites make efforts to address consumer privacy concerns before public launch, we cannot review and approve the privacy statement of a Web site if it will change before launch. If the Web site is complete and no further changes to the collection of information will be made, the site can be reviewed by TRUSTe. TRUSTe will give a provision approval and conduct an implementation review, after the site has gone live.
 
Sponsor: Microsoft Corporation
Go to your online applicationGet Certified
For Business | For Consumers | About TRUSTe | Careers | Site Map | Privacy Statement - UPDATED | TRUSTe Homepage | Terms & Conditions
© 1997 - 2008 TRUSTe. All Rights Reserved.