This plugin runs on a script delivered from your site, and not the owner's site.
Do you warrant that the script running on your site complies fully with EU cookie and privacy laws? This is an important and serious issue for any site running in the EU.
Do you also guarantee that your site is not collecting information about visitors to the sites?
Why does the script have to run from your servers instead of the user's own host?