Cookie and Tracking Technology Use

What it is

Thomson Reuters uses cookies and similar tracking tools to monitor how you use its websites and communications, and provides a cookie preference centre to manage these settings.

Why it matters (compliance & governance perspective)

Tracking technologies collect behavioural data that may be used for targeted advertising, analytics, and product development; managing these settings is one of the most direct controls available to users.

Consumer impact (what this means for users)

Your browsing behaviour, preferences, and interactions on Thomson Reuters websites are tracked through cookies and similar technologies, and this data may be used for analytics and potentially advertising purposes; you can adjust these settings through the cookie preference centre.

What you can do

Institutional analysis (Compliance & governance intelligence)

REGULATORY LANDSCAPE: Cookie and tracking technology use engages the EU ePrivacy Directive (as implemented in national law), GDPR consent requirements for non-essential cookies, the UK's PECR regulations, and CCPA and CPRA provisions on the use of tracking technologies that may constitute a sale or sharing of personal information. The IAB's Transparency and Consent Framework is commonly used in this context. The FTC has issued guidance on online behavioural advertising and tracking. GOVERNANCE EXPOSURE: Medium. The use of OneTrust as a consent management platform (evidenced by the document's technical infrastructure) indicates a structured approach to cookie consent, but compliance teams should verify that the cookie preference centre accurately reflects the categories of cookies deployed and that consent is obtained before non-essential cookies are set. The CCPA and CPRA's treatment of tracking pixels and third-party cookies as potential sales or sharing of personal information is a key risk area. JURISDICTION FLAGS: EU and EEA users require opt-in consent for non-essential cookies under the ePrivacy Directive. UK users require consent under PECR. California users have the right to opt out of the sale or sharing of personal information facilitated by tracking technologies. Users in other jurisdictions may have fewer enforceable rights. CONTRACT AND VENDOR IMPLICATIONS: Organisations embedding Thomson Reuters tools or widgets on their own websites should assess whether those tools set third-party cookies and whether their own cookie consent mechanisms cover Thomson Reuters' tracking technologies. COMPLIANCE CONSIDERATIONS: Compliance teams should audit the Thomson Reuters cookie preference centre to confirm it provides granular consent options, that consent is logged and auditable, and that the cookie inventory is kept current. The use of Google Tag Manager, Adobe DTM, and other tag management systems visible in the page source should be reviewed to confirm all fired tags are covered by the consent framework.

Applicable agencies

Applicable regulations

Provision details

Other risks in this policy

• AI and Machine Learning Training Use of Personal Data high
• Data Broker and Information Product Disclosure high
• Sensitive Personal Information Processing high
• Cross-Border Data Transfers medium
• Data Subject Rights and Opt-Out Mechanisms medium
• Third-Party Data Sharing and Corporate Transactions medium

Related Analysis

• Netflix Updated Terms Authorize Voice Data Collection: April 2026

  Netflix updated its Privacy Statement on April 18, 2026, disclosing voice recording collection and expanded household ad profiling for the first time.

• What Google Actually Knows About You

  Google's Privacy Policy covers Search, Gmail, YouTube, Maps, and every site running Google Analytics. Here is what it actually authorizes.