• Products

  • Customers

  • Services & Support

  • Partners

  • Resources

We're Here to Help!

Questions? Give us a call.

Contact Me

Oracle Marketing Cloud & GDPR

Ready for GDPR? Oracle Marketing Cloud gets you there!

As organizations prepare for the new European Union (EU) General Data Protection Regulation (GDPR), marketing teams are challenged with implementing changes in the way they manage processes, people, and technical controls in order to comply with the new legislation. The Oracle Marketing Cloud welcomes the positive changes the GDPR is expected to bring to our services and we are committed to helping our customers address GDPR requirements that are relevant to our products and services. 
Webinar: GDPR & Oracle Marketing Cloud
Modern Marketing Webinar Series

Learn more about the GDPR, Oracle Marketing Cloud’s position on it and how you can prepare yourself for the regulations.

 Watch Webinar


The GDPR Run Down
What is GDPR?
The European Union (EU) introduced its data protection standard 20 years ago through the Data Protection Directive 95/46/EC. Because the EU requires each Member State to implement a Directive into national law, Europe ended up with a patchwork of different privacy laws. In addition, increasing security breaches, rapid technological developments, and globalization over the last 20 years has brought new challenges for the protection of personal data. In an effort to address this situation, EU developed the General Data Protection Regulation (GDPR), which is directly applicable as law across all member states.
Why GDPR matters to us and our customers?
Once effective, the GDPR will apply broadly to companies that are based both inside and outside the EU, and that collect and handle personal data from EU-based individuals. Personal data, also known as personal information or personally identifiable information in other parts of the world, is defined as any information relating to an individual that can be directly or indirectly identified, for example by reference to identifiers such as names, identification numbers, location data, online identifiers or to one or more factors specific to the individual’s physical, physiological, genetic, mental, economic, cultural or social identity.
With new and strengthened rights for individuals, accountability requirements for companies, and increased scrutiny by regulators, companies collecting and handling personal data in the EU, both offline and online (for example, involving e-commerce or online advertising activities), will need to consider and manage their data handling practices and use cases more carefully than ever before
What are the key requirements of GDPR?
Built on established and widely accepted privacy principles such as purpose limitation, lawfulness, transparency, integrity and confidentiality, the GDPR strengthens existing privacy and security requirements, including requirements for notice & consent, technical and operational security measures, and cross-border data flow mechanisms.
To adapt to the new reality of a digital, global and data-driven economy, the GDPR also formalizes new privacy principles such as accountability and data minimization, which are reflected throughout the text, including in the following requirements:
  • Data security. Companies must implement an appropriate level of security, encompassing both technical and organizational security controls, to prevent data loss, information leaks, or other unauthorized data processing operations. The GDPR encourages companies to incorporate encryption, incident management, and network & system integrity, availability and resilience requirements into their security program.
  • Data breach notification. Companies have to inform their regulators and/or the impacted individuals without undue delay after becoming aware that their data has been subject to a data breach.
  • Security audits. Companies will be expected to document and maintain records of their security practices, to audit the effectiveness of their security program, and to take corrective measures where appropriate.
If you would like to learn more about some of the requirements particularly relevant for marketers, please review our GDPR for Marketers whitepaper with more information about the native Data Privacy & Security features provided across the Oracle Marketing Cloud. 
How will the GDPR impact the Oracle Marketing Cloud?
The Oracle Marketing Cloud  welcomes the positive changes the GDPR is expected to bring to our service offerings by providing a consistent and unified data protection regime for companies across Europe and elsewhere. 
We are committed to helping our customers to address the GDPR’s new requirements that are relevant to our services, including any applicable processor accountability requirements. Across the Oracle Marketing Cloud, Many of our services already have built-in privacy and security features to put our customers in control and to help build consumer trust.

The Oracle Marketing Cloud Comes Prepared.

As part of our commitment to help customers address GDPR requirements, the Oracle Marketing Cloud comes packaged with a robust set of built-in privacy and security features that puts marketers in control of the personal data they handle and helps them build consumer trust. These native capabilities span across the broader Oracle Marketing Cloud portfolio and can be grouped into the following categories.
  • Collecting Personal Data
    The Oracle Marketing Cloud enables marketers to capture personal data across many different channels. As part of these data capture processes, marketers have the ability to incorporate mechanisms that enables their customers to make informed decisions about the use of their personal data.  Whether someone is visiting your website, submitting a web-form, or even sharing personal data across social media channels, the Oracle Marketing Cloud provides controls that can be configured to meet specific business requirements. 
  • Managing Personal Data
    As today’s businesses capture vast amounts of personal data, marketing teams require powerful tools that enable them to manage data at scale. The Oracle Marketing Cloud provides a comprehensive portfolio of features that makes it easy for marketers and customers to manage personal data. This includes the ability for marketers and customers to update personal data on request, as well as to securely transfer personal data at scale leveraging modern API’s and SFTP mechanisms. 
  • Protecting Personal Data 
    Businesses hold a responsibility to secure personal data to protect the integrity of their customers. Native to Oracle’s core business, the Oracle Marketing Cloud provides state of the art data security mechanisms and controls derived from ‘privacy by design and privacy by default’ principles. These include capabilities like encryption, anonymization, and more to protect personal data at the highest possible standard as well granular access controls that enables organizations to distinguish which individuals or groups should have access to personal data
Want to learn more about Oracle Marketing Cloud’s Data Privacy & Security capabilities? Download the GDPR for Marketers whitepaper 
White Paper

You Cannot Get Marketing Right If You Get Privacy Wrong

Learn how the GDPR may impact marketing, and how Oracle Marketing Cloud can help accelerate your response to required changes. Download the whitepaper to learn more.


”You cannot get marketing right if you get privacy wrong. With the GDPR, European and global marketers have new privacy requirements. As a leading provider of marketing technologies, Oracle is committed to helping our customers comply with the GDPR"

Steve Krause | Group Vice President, Product Management, Oracle Marketing Cloud

How we can help

The Oracle Marketing Cloud provides a number of resources to help customers prepare for the GDPR.
  • GDPR for Marketers Whitepaper: Enables marketers to assess the potential impact the GDPR is expected to bring to their processes, technology, and people, and identifies data privacy and security capabilities across the Oracle Marketing Cloud to help drive adoption of the new legislation 
  • GDPR & Oracle Marketing Cloud Webinar: Learn more about the GDPR, Oracle Marketing Cloud’s position on it and how you can prepare yourself for the regulations. Watch Webinar