Data Compliance

Our platform ensures all data exchanges respect data privacy regulations and iAB guidelines.

Adhering to MSPA, TCF, GDPR, and CCPA initiatives provides a safe and compliant environment for both consumers and businesses. Learn more about our approach to consumer compliance and how it impacts your data strategy.

1. Compliance Consult
   Let’s discuss what you want to build and see if you are on a compliant path toward immediate transactions.
2. Compliance Development
   We’ll look at the details of your assets and develop a cost-effective strategy toward compliant monetization.
3. Compliance Management
   Compliance regulations and legislation are constantly evolving, we’ll help get your product compliant across industry standards while optimizing funnel and systems, maximizing output.

MSPA is a contractual framework that allows participants in the digital ecosystem to engage in Digital Advertising and Monetization Activities in a way that complies with the requirements of Applicable State Privacy Laws. It does this by requiring digital asset Owners and Operators to set, send, receive, and/or honor MSPA Signals that indicate how they comply with those laws’ requirements. Signaling a Consumer and allowing fluid Opt-in or Out of Targeted Messaging, determines whether an Owner or Operator is Compliant under Consumer rights and law.

GDPR came into force on 25 May 2018 and changed the data privacy landscape in Europe. GDPR was designed to harmonize data privacy laws across Europe, giving individuals greater control and transparency over their personal data while raising the bar for businesses to achieve lawful processing of personal information.

In anticipation of the entry into force of the GDPR, IAB Europe launched in February 2017 a collaborative effort by organizing dedicated working groups attended by more than 70 member companies and sectoral trade associations, supported by the IAB Europe staff, to deliver, maintain and iterate an industry standard, the TCF, in an attempt to meet the needs of users, industry and regulators.

The TCF is an accountability tool that relies on standardization to facilitate compliance with certain provisions of the ePrivacy Directive and the GDPR. It applies principles and requirements derived from these two legislative instruments to the specific context of the online industry, taking account of relevant EU-level guidance from the EDPB and national-level guidance from Data Protection Authorities.

The TCF is a voluntary standard intended for use by three categories of stakeholders (and all such stakeholders are welcome to use the TCF – irrespective of whether they are members of IAB Europe)

1) Publishers: owners or operators of online content or services where personal data is collected and used by third-party companies (vendors) for digital advertising, audience measurement, or content personalization.

2)  Vendors: third-party companies that do not ordinarily have direct access to end-users of publishers. Vendors can be Ad servers, measurement providers, advertising agencies, DSPs, SSPs, and more.

3)  Consent Management Providers: software or solution providers that develop notices (e.g. cookie banners) to inform users and capture their preferences with respect to the processing of their personal data. 

CCPA was enacted to provide California consumers with greater transparency and control over their personal information. In many ways, the CCPA is a first-of-its-kind law in the United States: an omnibus statute that seeks to create broad privacy and data protection rules that apply to all industries doing business in one jurisdiction, California, rather than focusing on a single sector or specific data collection and use practices. The CCPA was created in response to changing public perceptions. Users, rightfully, want to understand and have the option to exercise control over their data.

Creating a new industry framework to support CCPA compliance amongst publishers or those that own, control, and/or operate a digital property.

We identified the publishers’ compliance weak points, offered several user experience alternatives, and developed a solution around their immediate monetization needs.