GDPR and Frequently Asked Questions for Publishers

What is the GDPR and why should I, as a publisher, care about the GDPR?

GDPR stands for General Data Protection Regulation. It is a new regulation with comprehensive privacy and security requirements intended to strengthen and unify data protection in the European Union. The GDPR will go into effect on May 25, 2018. Under the GDPR, organizations that violate GDPR can be fined up to 4% of annual global turnover or 20MM euros, whichever is greater.

To help sift through some of the noise, we’ve complied a few frequently asked questions for publishers:


Q: What is the definition of “personal” data”?

A: The EU defines personal data to be “any information relating to an identified or identifiable natural person”. This could include any data related to an individual such as the data AddThis collects from website visitors such as IP address or mobile advertising ID (MAID).


Q: If my site uses AddThis, what are my privacy responsibilities under the AddThis Terms of Service?

A: You need to be sure that you obtain on your site the rights (including any required consents) that are necessary to collect information using the AddThis tool.  By agreeing to the Terms of Service, you agree to, among other things,:

  • Provide cookie notice to your website visitors that cookies will be set on the visitor’s device

You, as the website owner, will alert your visitor via a cookie banner or overlay that your website uses third party advertising cookies (including the AddThis cookies), if required.

  • Obtain consent from your website visitors to share data with Oracle

You will obtain permission from visitors, as necessary, to share visitor data with Oracle.

  • Provide a privacy policy for your website visitors

Your website will have an easily accessible privacy policy which will contain the word “Privacy” and/or “Cookies’ (or similar equivalent terms) that adequately describes your data processing activities.

  • Offer your visitors an opt-out mechanism

Your website’s privacy policy must enable your visitors to opt out of the collection and use of their data via AddThis cookie. Please see the Terms of Service for more information and opt-out options.


Q: What are the consequences of non-compliance with the AddThis Terms of Service?

A:  It is critical that publishers who use the AddThis tools on their site respect user choice and adhere to all applicable legal and industry requirements when using the AddThis tools to collect visitor data. Failure to do so will be considered a material breach of the AddThis Terms of Service.  Oracle may revoke a publisher’s license to the AddThis tools for failing to adhere to obligations as set forth in the Terms of Service.


If you have any questions regarding AddThis and GDPR, please do not hesitate to reach out to our dedicated support team.




The information presented here may not be construed or used as legal advice about the content, interpretation, or application of any law, regulation, or regulatory guideline. Customers and prospective customers must seek their own legal counsel to understand the applicability of any law or regulation on their processing of personal data, including through the use of any vendor’s products or services.