This note examines the range of distinct adtech data processing purposes that will require opt-in under the GDPR. In late 2017 the Article 29 Working Party cautioned that “data subjects should be free to choose which purpose they accept, rather than having to consent to a bundle of processing purposes”. Consent requests for multiple purposes … Continue reading GDPR consent design: how granular must adtech opt-ins be?
Websites and advertisers can not prevent personal data from leaking in programmatic advertising. If not fixed, this will render consent to use personal data meaningless. The GDPR applies the principle of transparency: People must be able to easily learn who has their personal data, and what they are doing with it. Equally importantly, people must have surety … Continue reading Adtech consent is meaningless unless one stops data leakage