Amendment 13 to Israel’s Privacy Law

What Has Actually Changed?

Amendment 13 requires website owners to present a clear, accessible, and detailed privacy policy, and to ensure that every step of the data collection process is conducted transparently and securely. The main principle is full transparency toward users regarding the types of data collected, how it is used, how consents are presented clearly, and regular updates to the policy. The amendment is designed to address the challenges of the digital and AI era and includes, among other things, expanded powers for the Privacy Protection Authority, strengthened individual rights, increased transparency, and stricter sanctions for violations.

In addition, the amendment reinforces the responsibility of website owners for information security, establishing organized internal processes, and the responsible management of user data.

Who Must Implement Amendment 13?

Every website in Israel that collects information from users must comply with the requirements. 

This is particularly relevant for websites that include “Contact Us” forms, newsletters, user registrations, cookies, tracking tags, or complex systems collecting extensive information about users. Even small websites are required to meet the new legal standards.

How to Make Your Website Compliant with Amendment 13?

To comply with Amendment 13, several critical steps must be carried out systematically and completely:

1. Write an Updated Privacy Policy

• Rewrite the policy according to the new requirements, including details about the types of data collected, the purposes for its use, retention periods, user access, and procedures for updates/deletions.
• Clearly specify the Data Privacy Officer in the organization and provide their contact information.
• Use clear and simple language that allows every user to understand the information.

2. Make the Policy Easily Accessible

• Provide links to the policy in the footer, the top menu, and on registration or contact forms.
• Display the policy before form submission so that users know where their data is going.
  

3. Update All Forms on the Website

• Add a clear consent checkbox to each form.
• Ensure that the checkbox is not pre-selected by default.
• Include a direct link to the privacy policy.
• Clearly state the purpose of data collection.
  

4. Information Security

• Perform basic security checks: encrypt admin passwords, update plugins, ensure SSL, and apply system updates.
• Maintain proper backups of the website and databases.
• Set proper admin permissions and manage sensitive information securely.
  

5. Schedule Regular Updates

• Set an annual reminder to review and update the privacy policy as required by law.
• Document changes and updates as needed, even if no substantial content changes have occurred.
  

6. Improve User Experience

• Present consent requests clearly and neutrally.
• Maintain a simple and convenient access to information so users feel safe sharing their data.

Why Is This Important for the Business?

Beyond legal compliance, adapting to Amendment 13:

• Increases customer trust in the website and the brand.
• Reduces security risks and data breaches.
• Improves the business image and maintains professional standards.
• Aligns the business with international standards (such as GDPR).

In Conclusion

Amendment 13 changes the rules of the game for website owners in Israel. It requires higher transparency, compliance with strict privacy and security standards, and professional management of user data collection and usage. Updating the privacy policy, clarifying consents, implementing security procedures, and performing annual compliance checks are no longer "Nice to have,” but a legal, business, and reputational necessity.

For full details, you can read the law itself here - or follow the guide for implementing the Privacy Protection Law published by the Privacy Protection Authority to help website owners.

If you haven’t updated your website according to the amendment yet, now is the time to do so to protect your customers and maintain brand trust.

Want to make sure your website meets the new requirements? Contact us, and we’ll review your site, recommend necessary updates, and create a maintenance plan tailored to your business.