Hello guys,
So I’ve been reading all threads regarding GDPR here on Meta, and even if the topic is “kind of dead” (because the craze already passed), I can’t seem to find any comment regarding the mix of GDPR compliance on Discourse and the usage of Ads (and for that matter, I can’t seem to find the Official AdSense Plugin topic, even though it is indexed on Google).
So I’ve been reading everything I can find, like this [excellent guide from Communiteq (formerly DiscourseHosting)](https://www.communiteq.com/kb/your-discourse-forum-and-the-gdpr/) regarding what we can do to be compliant with that legislation (regardless of where you host, since it is very likely that you will get EU users) and since the most data that Discourse uses it does from Registered users, it is true that if you put a field asking to acknowledge your TOS and Data Policy (like that article recommends) you are covered.
However, Ads from, for example, AdSense, are displayed regardless of being logged-in or not and if you are using Google Analytics you are also kind of sending data to Google (although I couldn’t find which data they get specifically, but IPs for sure to get the “where are your users from” data).
So… should a Discourse installation that has AdSense (or any other Ad Platform), given that those use cookies or any other browser data to show you “relevant ads” have one of those nice to the eyes and user (please note the sarcasm) pop-ups that make you choose what to use or acknowledge said usage before you can even read the forum? Similar to the Guest Gate Plugin, maybe?
Reaching out to the Community to see the experiences you guys have with this and if that is really necessary (I think it is, but then again, no one seemed to stress that back in 2018 when all the topics regarding GDPR where open).
Thanks!