GDPR: 5 Examples of well-presented privacy policies

Copy of Copy of 2018 tech trends_ industries leveraging data (7)It’s been three months since the General Data Protection Regulation (GDPR) went into effect, and some businesses are still working to get their compliance plans in place. While there’s a lot of GDPR-fatigue (Forbes’ breaks down several unexpected consequences of GDPR, like roadblocks for blockchain data storage, poor customer service, photography under GDPR compliance, and more), businesses still have to make the new adjustments associates with the regulation.

Several business are building “hubs" for their privacy policies. This is a dedicated area where data subjects (visitors to your website, customers, etc.) can go to view:

  • How their data is being used;
  • Where it’s being used;
  • How your data is being collected and what type;
  • Terms of the policy;
  • And one of the most important pieces of GPDR—where subjects can revoke consent.

Below are five examples of well-presented privacy policies companies should mirror as they create their own GDPR-compliant practices. Visit our GDPR Hub for more resources on how specifically you can do this for your business.

Disney: Privacy policy website here

In addition to the above, Disney also is clear about how the company and its advertisers track your web behavior for advertising purposes: 


As well as how they protect their largest audience, children. 


Outbrain: Privacy policy website here

The Outbrain Legal Center includes its privacy policy, which details how the company uses and stores data related to the end users of its customer, their customers, and their business users and partners.

Below is a screenshot depicting this, showing the different types of personas:

  • Site Visitors: Visitors to that are anonymous to Outbrain;
  • Users: The end user of Outbrain’s customer on websites like,, and thousands of other publishing websites.
  • Business Partners: Users that register with Outbrain on behalf of the company they work for to use the Outbrain Amplify or Outbrain Engage Services.


Outbrain’s cookie policy details which cookies (web activity) is stored for how long for each of these user types. 


Uber: Privacy policy website here

Uber’s privacy policy is another great example of being easily acceptable and digestible. The very first thing on its privacy policy page is when the policy was last updated, where to download it, and a menu where data subjects can easily access how their data is collected and used. 


Google: Privacy policy website here

Google is of course another great example of providing a transparent privacy policy for its users. Complying with one of the GDPR’s most crucial policies—the ability for a data subject to revoke consent of data—Google clearly depicts how and where a user can remove data. 


Twitter: Privacy policy website here

Twitter’s privacy policy website is outlined as the rest of the leader’s on this list, providing how your tweets, location, and personal information is used. 


Feeling overwhelmed with GDPR to-do’s? We can help.

Take a look at our GDPR Hub for more resources, and connect with us today to get a head start on creating your Legal Center for all data compliances.

See how we help with GDPR compliance. 

Don’t miss out!

Want the latest news, tips and best practices for high-velocity acceptance? Subscribe to our newsletter.