SlideShare ist ein Scribd-Unternehmen logo

Deck for Chardan conference call on ePrivacy and GDPR

Johnny Ryan
Johnny Ryan

Deck for investment analysts to understand the challenges facing online advertising companies

Business
1 von 39
Downloaden Sie, um offline zu lesen
Changing ePrivacy laws and the implications for online media Dr Johnny Ryan
1. What the new European rules (the GDPR and the ePR) are.  (a)Global impact and risk 2.The three big challenges for online media & advertising. 3.Outlook (a) Adtech data players. (b) Google. (c) Facebook.  (d) Publishers.  Contents slide 1
General Data Protection Regulation (GDPR) ePrivacy Regulation (ePR) Area of focus Protection of personal data (Article 8 of the EU Charter of Fundamental Rights) Respect for private life and communications (Article 7 of the EU Charter of Fundamental Rights) Current status Has entered in to force, and will soon be applied. Currently being negotiated between lawmaking institutions. Date of application 25 May 2018 25 May 2018 (or later) Geographic impact Global European Economic Area (may widen) slide 2
513+ million people • Processing data by, or for, an EU business. • Businesses that offer services to, or sell to, or monitor and profile users in the EU. European Economic Area Geographic scope slide 3
for infringements relating to the consent of a child, processing that does not require identification, data protection by design, the tasks of the data protection officer, and certification for infringements related to the legal basis for processing, consent, and processing of sensitive data (including profiling), notification about users rights and the processing of their data, the rights of users (e.g. data rectification, erasure, portability, etc.), transfers of data outside of the EU, and failure to comply with a supervisory authority’s order to cease processing or to suspend a data flow 2% of total worldwide annual turnover (or €10M, whichever is higher) 4% of total worldwide annual turnover (or €20M, whichever is higher) plus court actions by data subjects and their representatives.  Penalties slide 4
3 Big Challenges 1. Risk: Not getting consent 2. Risk: Data leakage 3. Risk: Data portability slide 5
“any information relating to an identified or identifiable natural person ('data subject'); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person…” -GDPR, Article 4 “Personal data” slide 6
“Single customer view” Indirectly identifiable: Netflix users’ TV & movies Directly identifiable: IP addresses, where ISP can identify the subscriber slide 7
How RTB/ programatic works slide 8
/// Visitor Site Brand $ slide 9
/// Visitor Site SSP DSP DMP Brand $ “Demand side”“Supply side” Ad Exchange slide 10
/// Visitor Site SSP Ad Exchange DSP DMP serve page request page request bid request segment ad request cookie to SSP deliver ad sync deliver segment sync Ad request Brand $ store data “Demand side”“Supply side” slide 11
The Daily Bugle ExchangeExchange Exchange Exchange DSP DMP DSP DMP DSP DMP DSP DMP DSPDMP DSPDMP DSPDMP DMP DSP DSPDSP DSP DSP DSP slide 12
The Daily Bugle ExchangeExchange Exchange Exchange DSP DMP DSP DMP DSP DMP DSP DMP DSPDMP DSPDMP DSPDMP DMP DSP DSPDSP DSP DSP DSP ? ? ? ? ? ? ? ADVERTISEMENT slide 13
1. Any one of the 100s of parties receiving data from an ad exchange can share onward with further parties. 
 
 2. The ad unit may contain JavaScript that summons unauthorized trackers. The Daily Bugle ADVERTISEMENT ? 2 FORMS OF DATA LEAKAGE slide 14
• It must be specific and informed. 
 Can not be buried in “Terms & Conditions”. • Consent can not be disruptive. Must be obtained freely, without detriment. (Consent Walls may or may not be permissible) •Who or what type of party is receiving the data •What are the purposes of processing, and legal basis for that •How long are the data stored (or what criteria determine duration) •If this giving that data is part of a contract what are the consequences of not providing data •If the data are being transferred to a third country, what safeguards or binding corporate rules are in place? •In cases of automated decision-making, including profiling, what logic is applied and what is the significance of the outcomes. You must tell the user: Consent GDPR & ePrivacy Regulation: Businesses must obtain consent to use personal data. slide 15
We would like to share your browsing habits on our site with Brand Name and their analytics partners, to understand what offers may be of interest to you. These data will be deleted after 6 months. You can withdraw permission at any time in My Data. Learn more? Pop-up Dialog OKNo Purpose of processing, and notification of profiling. Article 13, para 1, c, and para 2, f. Duration Article 13, para 2, a. Text links to tool for withdrawing consent. 
 Article 7, paragraph 3. Text links to tool to complain to supervisory authority, and to access, correct, and transfer data, etc. 
 Article 13, para 2, b, c, and d. Can say no Recital 42. Details of recipients and categories of recipients. Text links to contact details of the controller and their data protection officer. 
 Article 13, para 1, a, b, and e. A (probably non-compliant) GDPR CONSENT REQUEST Scenario: a website requests consent to share data with a brand for product offers slide 16
We would like to share your browsing habits on our site with Brand Name and their analytics partners, to understand what offers may be of interest to you. These data will be deleted after 6 months. You can withdraw permission at any time in My Data. Learn more? Pop-up Dialog OKNo Thinking of yourself as a visitor to websites, what would you select if shown this message? 79% 21% slide 17
Please allow your browsing habits on our sites to be shared with Open ID participants We will then be able to identify offers that are more interesting to you, and process business transactions with our partners. (Alternatively, we will use generic ads, which might be less interesting to you.) You can cancel at any time by clicking the icon on any ad. Learn more about your data. Help us keep Example.com profitable OKNo OK 6 months 12 months [Ad exchange] [Ad exchange] [DMP] [DMP] [DSP] [DSP] [Verification vendor] i i i i i i i [Consortium] and its participants Each controller. and categories of processors. Might GDPR consent requests actually look like this? slide 18
3% 3%32%65% 46% 51% 64%13% Do you believe that users will opt-in to tracking for the purposes of advertising? No Yes, if denied access to the site otherwise Yes 1st party tracking on a website 3rd party tracking on a website Tracking by any party, anywhere on the web 23% 0% 100% 200% Can not deny access because of GDPR Article 7 slide 19
Ad server SSP Step 2. Ad server selects an SSP Step 3. SSP selects an exchange Step 7. DSP serves agency creative Step 8. Assets load from CDN Step 9. Agency ad server loads verification vendor ADVERTISERS website.com AD DMP DMP DMP DMP DMP DMP DMP DMP DMP DMP DSP DSP DSP DSP DSP DSP DSP DSP DSP DSP DSP W inningbid DSP Ad server javascript SSP javascript DMP DMP DMP DMP DSP DSP DSP DSP DSP DSP javascript Ad server javascript Step 6. Exchange serves winning bid Verification javascript Agency ad server Verification vendor Winning DSP Step 1. User requests webpage Ad exchange Channel of data leakage Personal data Legend Step 4. Exchange sends bid requests to hundreds of partners Step 5. Exchange lets some DMPs/ DSPs to refresh cookie sync CDN Money This is the current process of real-time bidding that is used in online behavioural advertising. DATA LEAKAGE IN ONLINE ADVERTISING Risk slide 20
“Controller” “Processor” “Processor” “Processor” Contract Contract Contract Contracts required that determine the following: • the nature of processing and its duration, • the obligations of the “controller”, • and a guarantee that the “processor” handles the data only as dictated by documented instructions from the controller GDPR requires a new chain of accountability Risk slide 21
Holding first-party personal data that are now non-compliant Buying personal data (directly or indirectly identifiable) from other sources to augment profiles Buying behavioural ads online, which currently requires the sharing of personal data with countless partners. BROKER 3 2 1 Risk (brands) slide 22
All potentially liable! The Courts Multiple controllers and processors “involved in the same processing” can each be held liable for damages awarded in a case. A person can complain to the regulator, and at the same time go to court. And can take the regulator to court for inaction. Supervisory Authority /// /// Visitor Site SSP Ad Exchange DSP DMP Brand $Risk slide 23
Risk: user can move data to a competitors platform slide 24
Outlook: adtech Acxiom 10-K slide 25
Needs “opt-in” consent, but user has little incentive to agree 4 Needs “opt-in” consent, and may get it 3 Can show an “opt-out” before using data 2 Out of scope of Regulation if business is modified 1 Already out of scope of the Regulation 0 PageFair GDPR disruption scale (digital advertising) 5 Needs “opt-in” consent, but is unable to communicate with users slide 26
5 Needs “opt-in” consent, but is unable to communicate with users 4 Needs “opt-in” consent, but user has little incentive to agree • Facebook Audience Network • WhatsApp advertising (see assumption 1) 3 Needs “opt-in” consent, and may get it 2 Can show an “opt-out” before using data • NewsFeed ads (based only on personal data with no “special” personal data (e.g. ethnicity, political opinion, religious or philosophical beliefs, sexual orientation), unless marked “public” or visible to “friends of friends” (see assumptions 1 and 2) • Instagram ads (see assumption 1) 1 Out of scope of the regulation, if business is modified. 0 Already out of scope of the regulation. Assumption 2. GDPR Article 6, paragraph 4, c, indicates a higher bar for “special categories of personal data” that reveal race, ethnicity, political opinion, religious or philosophical beliefs, trade union membership, or related to a data subject’s sex life or sexual orientation. However, this does not apply if the data have been “manifestly made public by the data subject” (GDPR, Article 9, paragraph 2, (e)). This may mean that the publicity settings that a user places on their post will prevent or enable those posts to be mined for advertising. GDPR scale: FACEBOOK Assumption 1. That the use of personal data to target advertising will be accepted as a “compatible” purpose with the original purpose for which personal data were shared by users, under GDPR Article 6, paragraph 4. GDPR Recital 61 says that if the further processing is compatible then the company must alert the data subject that it is using their data for this further purpose before it starts processing. GDPR Article 21, paragraph 2 and 3 say that the data subject must be alerted about their right to object to their data being used for direct marketing, and can do so at any time. GDPR Recital 70 says this alert should be presented clearly and separately from any other information. However, the Article 29 Working Party’s opinion on purpose limitation notes that among the various things that the compatibility assessment must consider are “the impact of the further processing on the data subjects”. slide 27
Assumption 1 … the Article 29 Working Party’s opinion on purpose limitation notes that among the various things that the compatibility assessment must consider are “the impact of the further processing on the data subjects”. slide 28
Until this week, when we asked Facebook about it, the world’s largest social network enabled advertisers to direct their pitches to the news feeds of almost 2,300 people who expressed interest in the topics of “Jew hater,” “How to burn jews,” or, “History of ‘why jews ruin the world.’” To test if these ad categories were real, we paid $30 to target those groups with three “promoted posts” — in which a ProPublica article or post was displayed in their news feeds. Facebook approved all three ads within 15 minutes. “Facebook Enabled Advertisers to Reach 'Jew Haters’”, ProPublica , 14 September 2017 slide 29
Sen. Mark Warner, the top Democrat on the Senate Intelligence Committee, has said the ads Facebook has disclosed to date represent just the "tip of the iceberg" of Russians' full election interference via social media. Warner and his fellow Senators have criticized both Facebook and Twitter for the limited scope of their findings. "Facebook gives Russian-linked ads to Congress", CNN, 1 October 2017 slide 30
5 Needs “opt-in” consent, but is unable to communicate with users 4 Needs “opt-in” consent, but user has little incentive to agree • Most personalized AdWords ads on Google properties including Search, Youtube, Maps, and the Google Network (including “remarketing”,“affinity audiences” , “in-market audiences”, “demographic targeting”, "similar audiences”, “Floodlight” cross-device tracking), “customer match”, “remarketing” (see assumption 1) • Gmail ads • Programmatic services (DoubleClick) 3 Needs “opt-in” consent, and may get it 2 Can show an “opt-out” before using data • Location targeting in Maps (see assumption 2) 1 Out of scope of the regulation, if business is modified. • AdWords (if all personalized features are removed) on Google properties including Search, Youtube, Maps 0 Already out of scope of the regulation. • “Placement-targeted” ads on Google properties. Assumption 1. That the average user does not “sign in” to Google Search or Chrome. If, however, users did sign in then Google may be able to further process their data for other purposes. GDPR scale: GOOGLE Assumption 2. That the use of personal data to target advertising will be accepted as a “compatible” purpose with the original purpose for which personal data were shared by users, under GDPR Article 6, paragraph 4. GDPR Recital 61 says that if the further processing is compatible then the company must alert the data subject that it is using their data for this further purpose before it starts processing. GDPR Article 21, paragraph 2 and 3 say that the data subject must be alerted about their right to object to their data being used for direct marketing, and can do so at any time. GDPR Recital 70 says this alert should be presented clearly and separately from any other information. However, the Article 29 Working Party’s opinion on purpose limitation notes that among the various things that the compatibility assessment must consider are “the impact of the further processing on the data subjects”. slide 31
USERS PUBLISHERS Outlook for Publishers Now: Agencies and adtech take 50% or more of brand spend. Publishers get what's left. BRANDS ADTECH slide 32
USERS PUBLISHERS Outlook for Publishers After 25 May: Publishers take control, and agencies and adtech must rely on them. ADTECH BRANDS slide 33
PLAN “A”: SEEK CONSENT (AND END DATA LEAKAGE). PEOPLE WILL OPT-IN TO TRACKING FOR ADS? BUT... HOW CONFIDENT ARE YOU THAT slide 34
Not at all How confident are you that the average user will click ‘OK’ to share data with other companies? 0% 100% 200% To a small degree Moderately Highly Very highly How concerned are you about your online behaviour being tracked? 5% 7% 21% 35% 32% 32% 32% 21% 12% 4% slide 35
Consent is meaningless, unless it is enforceable NEED TO PREVENT RISK OF DATA LEAKAGE // slide 36
Ads (Ethical Data)Ads (Conventional Data) Fossil Fuel Fossil Fuel Classic Cars Renewable Energy Personal data Ads (Conventional Data) Personal data with consent and enforceable protection Non-personal data N20 C02 HYPER PREMIUM, SMALL MARKET // Regulatory disincentive OLD INDUSTRY Regulatory incentive NEW CLEAN INDUSTRY + + slide 37
(a) Advertising technology and data businesses face enormous disruption. (b) Parts of Google will be disrupted. (c) Parts of Facebook will be disrupted. (d) Publishers face short term difficulty, but have the potential to transform their position. (e) Adtech needs to shift to non-personal data, but most adtech companies are fixated on getting consent for personal data. Summary slide 38

Empfohlen

Deck at GDPR Summit at Croke Park.
Deck at GDPR Summit at Croke Park. Deck at GDPR Summit at Croke Park.
Deck at GDPR Summit at Croke Park. Johnny Ryan
 
GLG webcast impact of GDPR on ad tech
GLG webcast impact of GDPR on ad tech GLG webcast impact of GDPR on ad tech
GLG webcast impact of GDPR on ad tech Johnny Ryan
 
GDPR, ePrivacy Regulation, consent, and online media
GDPR, ePrivacy Regulation, consent, and online media GDPR, ePrivacy Regulation, consent, and online media
GDPR, ePrivacy Regulation, consent, and online media Johnny Ryan
 
The GDPR Risk to Brands. Presentation at ISBA, the UK trade body that represe...
The GDPR Risk to Brands. Presentation at ISBA, the UK trade body that represe...The GDPR Risk to Brands. Presentation at ISBA, the UK trade body that represe...
The GDPR Risk to Brands. Presentation at ISBA, the UK trade body that represe...Johnny Ryan
 
Slides from PageFair presentation in Athens, GDPR for Marketers Conference, 1...
Slides from PageFair presentation in Athens, GDPR for Marketers Conference, 1...Slides from PageFair presentation in Athens, GDPR for Marketers Conference, 1...
Slides from PageFair presentation in Athens, GDPR for Marketers Conference, 1...Johnny Ryan
 
Burst Media Case Study
Burst Media Case StudyBurst Media Case Study
Burst Media Case Studycbourguignon
 
GDPR solution for websites and apps. Digital Content Next (DCN) webinar, Apri...
GDPR solution for websites and apps. Digital Content Next (DCN) webinar, Apri...GDPR solution for websites and apps. Digital Content Next (DCN) webinar, Apri...
GDPR solution for websites and apps. Digital Content Next (DCN) webinar, Apri...Johnny Ryan
 
Talk to Norwegian CMOs about the folly of adtech
Talk to Norwegian CMOs about the folly of adtech Talk to Norwegian CMOs about the folly of adtech
Talk to Norwegian CMOs about the folly of adtech Johnny Ryan
 

Empfohlen

Deck at GDPR Summit at Croke Park.
Deck at GDPR Summit at Croke Park. Deck at GDPR Summit at Croke Park.
Deck at GDPR Summit at Croke Park. Johnny Ryan
 
GLG webcast impact of GDPR on ad tech
GLG webcast impact of GDPR on ad tech GLG webcast impact of GDPR on ad tech
GLG webcast impact of GDPR on ad tech Johnny Ryan
 
GDPR, ePrivacy Regulation, consent, and online media
GDPR, ePrivacy Regulation, consent, and online media GDPR, ePrivacy Regulation, consent, and online media
GDPR, ePrivacy Regulation, consent, and online media Johnny Ryan
 
The GDPR Risk to Brands. Presentation at ISBA, the UK trade body that represe...
The GDPR Risk to Brands. Presentation at ISBA, the UK trade body that represe...The GDPR Risk to Brands. Presentation at ISBA, the UK trade body that represe...
The GDPR Risk to Brands. Presentation at ISBA, the UK trade body that represe...Johnny Ryan
 
Slides from PageFair presentation in Athens, GDPR for Marketers Conference, 1...
Slides from PageFair presentation in Athens, GDPR for Marketers Conference, 1...Slides from PageFair presentation in Athens, GDPR for Marketers Conference, 1...
Slides from PageFair presentation in Athens, GDPR for Marketers Conference, 1...Johnny Ryan
 
Burst Media Case Study
Burst Media Case StudyBurst Media Case Study
Burst Media Case Studycbourguignon
 
GDPR solution for websites and apps. Digital Content Next (DCN) webinar, Apri...
GDPR solution for websites and apps. Digital Content Next (DCN) webinar, Apri...GDPR solution for websites and apps. Digital Content Next (DCN) webinar, Apri...
GDPR solution for websites and apps. Digital Content Next (DCN) webinar, Apri...Johnny Ryan
 
Talk to Norwegian CMOs about the folly of adtech
Talk to Norwegian CMOs about the folly of adtech Talk to Norwegian CMOs about the folly of adtech
Talk to Norwegian CMOs about the folly of adtech Johnny Ryan
 
GDPR's Impact on Social Media - Everything You Need to Know
GDPR's Impact on Social Media - Everything You Need to KnowGDPR's Impact on Social Media - Everything You Need to Know
GDPR's Impact on Social Media - Everything You Need to KnowVisitor Analytics
 
Johnny Ryan PageFair slide deck from SIINDA (search industry trade body) conf...
Johnny Ryan PageFair slide deck from SIINDA (search industry trade body) conf...Johnny Ryan PageFair slide deck from SIINDA (search industry trade body) conf...
Johnny Ryan PageFair slide deck from SIINDA (search industry trade body) conf...Johnny Ryan
 
Criteo CCPA project
Criteo CCPA project Criteo CCPA project
Criteo CCPA project Gerry L. H.
 
Cookies, FLoC & GDPR: Marketing Impact
Cookies, FLoC & GDPR: Marketing ImpactCookies, FLoC & GDPR: Marketing Impact
Cookies, FLoC & GDPR: Marketing ImpactCMassociates
 
Tech stole your audience. Take it back.
Tech stole your audience. Take it back. Tech stole your audience. Take it back.
Tech stole your audience. Take it back. Johnny Ryan
 
Operational impact of gdpr finance industries in the caribbean
Operational impact of gdpr finance industries in the caribbeanOperational impact of gdpr finance industries in the caribbean
Operational impact of gdpr finance industries in the caribbeanEquiGov Institute
 
TrustArc-Webinar-Slides-2022-09-20-Cross-Contextual-Advertising
TrustArc-Webinar-Slides-2022-09-20-Cross-Contextual-AdvertisingTrustArc-Webinar-Slides-2022-09-20-Cross-Contextual-Advertising
TrustArc-Webinar-Slides-2022-09-20-Cross-Contextual-AdvertisingTrustArc
 
Understanding gdpr compliance gdpr analytics tools
Understanding gdpr compliance gdpr analytics toolsUnderstanding gdpr compliance gdpr analytics tools
Understanding gdpr compliance gdpr analytics toolsRominaMariaBaltariu
 
Ethical digital marketing (Trinity College Dublin)
Ethical digital marketing (Trinity College Dublin)Ethical digital marketing (Trinity College Dublin)
Ethical digital marketing (Trinity College Dublin)Johnny Ryan
 
The GDPR - A data revolution
The GDPR - A data revolutionThe GDPR - A data revolution
The GDPR - A data revolutionDan Brookman
 
GDPR & Data Privacy Guide - Free Download
GDPR & Data Privacy Guide - Free DownloadGDPR & Data Privacy Guide - Free Download
GDPR & Data Privacy Guide - Free DownloadVisitor Analytics
 
UXPSystems_whitepaper_Privacy_Nov182016
UXPSystems_whitepaper_Privacy_Nov182016UXPSystems_whitepaper_Privacy_Nov182016
UXPSystems_whitepaper_Privacy_Nov182016Andrey Plotnikov
 
GDPR - Australian perspective - the challenge, the opportunity and your duty
GDPR - Australian perspective - the challenge, the opportunity and your duty GDPR - Australian perspective - the challenge, the opportunity and your duty
GDPR - Australian perspective - the challenge, the opportunity and your duty Jakub Otrząsek
 
Data opportunities mini whitepaper
Data opportunities mini whitepaperData opportunities mini whitepaper
Data opportunities mini whitepaperRobert Bowstead
 
NetSquared London - GDPR for charities
NetSquared London - GDPR for charitiesNetSquared London - GDPR for charities
NetSquared London - GDPR for charitiesTech Trust
 
Brendan Eich's letter to Senator Thune and Senator Nelson, Senate Committee o...
Brendan Eich's letter to Senator Thune and Senator Nelson, Senate Committee o...Brendan Eich's letter to Senator Thune and Senator Nelson, Senate Committee o...
Brendan Eich's letter to Senator Thune and Senator Nelson, Senate Committee o...Johnny Ryan
 
Are you GDPR Ready? Checklist Whitepaper
Are you GDPR Ready? Checklist WhitepaperAre you GDPR Ready? Checklist Whitepaper
Are you GDPR Ready? Checklist WhitepaperServersys
 
The Meaning and Impact of the General Data Protection Regulation
The Meaning and Impact of the General Data Protection RegulationThe Meaning and Impact of the General Data Protection Regulation
The Meaning and Impact of the General Data Protection RegulationJake DiMare
 
Are You Prepared for the GDPR?
Are You Prepared for the GDPR?Are You Prepared for the GDPR?
Are You Prepared for the GDPR?PrivacyPolicies.com
 
The GDPR Most Wanted: The Marketer and Analyst's Role in Compliance
The GDPR Most Wanted: The Marketer and Analyst's Role in ComplianceThe GDPR Most Wanted: The Marketer and Analyst's Role in Compliance
The GDPR Most Wanted: The Marketer and Analyst's Role in ComplianceObservePoint
 
CPDP 2022
CPDP 2022CPDP 2022
CPDP 2022Johnny Ryan
 
Brief presentation to UCD 17 December 2020
Brief presentation to UCD 17 December 2020 Brief presentation to UCD 17 December 2020
Brief presentation to UCD 17 December 2020 Johnny Ryan
 

Weitere ähnliche Inhalte

Ähnlich wie Deck for Chardan conference call on ePrivacy and GDPR

GDPR's Impact on Social Media - Everything You Need to Know
GDPR's Impact on Social Media - Everything You Need to KnowGDPR's Impact on Social Media - Everything You Need to Know
GDPR's Impact on Social Media - Everything You Need to KnowVisitor Analytics
 
Johnny Ryan PageFair slide deck from SIINDA (search industry trade body) conf...
Johnny Ryan PageFair slide deck from SIINDA (search industry trade body) conf...Johnny Ryan PageFair slide deck from SIINDA (search industry trade body) conf...
Johnny Ryan PageFair slide deck from SIINDA (search industry trade body) conf...Johnny Ryan
 
Criteo CCPA project
Criteo CCPA project Criteo CCPA project
Criteo CCPA project Gerry L. H.
 
Cookies, FLoC & GDPR: Marketing Impact
Cookies, FLoC & GDPR: Marketing ImpactCookies, FLoC & GDPR: Marketing Impact
Cookies, FLoC & GDPR: Marketing ImpactCMassociates
 
Tech stole your audience. Take it back.
Tech stole your audience. Take it back. Tech stole your audience. Take it back.
Tech stole your audience. Take it back. Johnny Ryan
 
Operational impact of gdpr finance industries in the caribbean
Operational impact of gdpr finance industries in the caribbeanOperational impact of gdpr finance industries in the caribbean
Operational impact of gdpr finance industries in the caribbeanEquiGov Institute
 
TrustArc-Webinar-Slides-2022-09-20-Cross-Contextual-Advertising
TrustArc-Webinar-Slides-2022-09-20-Cross-Contextual-AdvertisingTrustArc-Webinar-Slides-2022-09-20-Cross-Contextual-Advertising
TrustArc-Webinar-Slides-2022-09-20-Cross-Contextual-AdvertisingTrustArc
 
Understanding gdpr compliance gdpr analytics tools
Understanding gdpr compliance gdpr analytics toolsUnderstanding gdpr compliance gdpr analytics tools
Understanding gdpr compliance gdpr analytics toolsRominaMariaBaltariu
 
Ethical digital marketing (Trinity College Dublin)
Ethical digital marketing (Trinity College Dublin)Ethical digital marketing (Trinity College Dublin)
Ethical digital marketing (Trinity College Dublin)Johnny Ryan
 
The GDPR - A data revolution
The GDPR - A data revolutionThe GDPR - A data revolution
The GDPR - A data revolutionDan Brookman
 
GDPR & Data Privacy Guide - Free Download
GDPR & Data Privacy Guide - Free DownloadGDPR & Data Privacy Guide - Free Download
GDPR & Data Privacy Guide - Free DownloadVisitor Analytics
 
UXPSystems_whitepaper_Privacy_Nov182016
UXPSystems_whitepaper_Privacy_Nov182016UXPSystems_whitepaper_Privacy_Nov182016
UXPSystems_whitepaper_Privacy_Nov182016Andrey Plotnikov
 
GDPR - Australian perspective - the challenge, the opportunity and your duty
GDPR - Australian perspective - the challenge, the opportunity and your duty GDPR - Australian perspective - the challenge, the opportunity and your duty
GDPR - Australian perspective - the challenge, the opportunity and your duty Jakub Otrząsek
 
Data opportunities mini whitepaper
Data opportunities mini whitepaperData opportunities mini whitepaper
Data opportunities mini whitepaperRobert Bowstead
 
NetSquared London - GDPR for charities
NetSquared London - GDPR for charitiesNetSquared London - GDPR for charities
NetSquared London - GDPR for charitiesTech Trust
 
Brendan Eich's letter to Senator Thune and Senator Nelson, Senate Committee o...
Brendan Eich's letter to Senator Thune and Senator Nelson, Senate Committee o...Brendan Eich's letter to Senator Thune and Senator Nelson, Senate Committee o...
Brendan Eich's letter to Senator Thune and Senator Nelson, Senate Committee o...Johnny Ryan
 
Are you GDPR Ready? Checklist Whitepaper
Are you GDPR Ready? Checklist WhitepaperAre you GDPR Ready? Checklist Whitepaper
Are you GDPR Ready? Checklist WhitepaperServersys
 
The Meaning and Impact of the General Data Protection Regulation
The Meaning and Impact of the General Data Protection RegulationThe Meaning and Impact of the General Data Protection Regulation
The Meaning and Impact of the General Data Protection RegulationJake DiMare
 
The GDPR Most Wanted: The Marketer and Analyst's Role in Compliance
The GDPR Most Wanted: The Marketer and Analyst's Role in ComplianceThe GDPR Most Wanted: The Marketer and Analyst's Role in Compliance
The GDPR Most Wanted: The Marketer and Analyst's Role in ComplianceObservePoint
 

Ähnlich wie Deck for Chardan conference call on ePrivacy and GDPR (20)

GDPR's Impact on Social Media - Everything You Need to Know
GDPR's Impact on Social Media - Everything You Need to KnowGDPR's Impact on Social Media - Everything You Need to Know
GDPR's Impact on Social Media - Everything You Need to Know
 
Johnny Ryan PageFair slide deck from SIINDA (search industry trade body) conf...
Johnny Ryan PageFair slide deck from SIINDA (search industry trade body) conf...Johnny Ryan PageFair slide deck from SIINDA (search industry trade body) conf...
Johnny Ryan PageFair slide deck from SIINDA (search industry trade body) conf...
 
Criteo CCPA project
Criteo CCPA project Criteo CCPA project
Criteo CCPA project
 
Cookies, FLoC & GDPR: Marketing Impact
Cookies, FLoC & GDPR: Marketing ImpactCookies, FLoC & GDPR: Marketing Impact
Cookies, FLoC & GDPR: Marketing Impact
 
Tech stole your audience. Take it back.
Tech stole your audience. Take it back. Tech stole your audience. Take it back.
Tech stole your audience. Take it back.
 
Operational impact of gdpr finance industries in the caribbean
Operational impact of gdpr finance industries in the caribbeanOperational impact of gdpr finance industries in the caribbean
Operational impact of gdpr finance industries in the caribbean
 
TrustArc-Webinar-Slides-2022-09-20-Cross-Contextual-Advertising
TrustArc-Webinar-Slides-2022-09-20-Cross-Contextual-AdvertisingTrustArc-Webinar-Slides-2022-09-20-Cross-Contextual-Advertising
TrustArc-Webinar-Slides-2022-09-20-Cross-Contextual-Advertising
 
Understanding gdpr compliance gdpr analytics tools
Understanding gdpr compliance gdpr analytics toolsUnderstanding gdpr compliance gdpr analytics tools
Understanding gdpr compliance gdpr analytics tools
 
Ethical digital marketing (Trinity College Dublin)
Ethical digital marketing (Trinity College Dublin)Ethical digital marketing (Trinity College Dublin)
Ethical digital marketing (Trinity College Dublin)
 
The GDPR - A data revolution
The GDPR - A data revolutionThe GDPR - A data revolution
The GDPR - A data revolution
 
GDPR & Data Privacy Guide - Free Download
GDPR & Data Privacy Guide - Free DownloadGDPR & Data Privacy Guide - Free Download
GDPR & Data Privacy Guide - Free Download
 
UXPSystems_whitepaper_Privacy_Nov182016
UXPSystems_whitepaper_Privacy_Nov182016UXPSystems_whitepaper_Privacy_Nov182016
UXPSystems_whitepaper_Privacy_Nov182016
 
GDPR - Australian perspective - the challenge, the opportunity and your duty
GDPR - Australian perspective - the challenge, the opportunity and your duty GDPR - Australian perspective - the challenge, the opportunity and your duty
GDPR - Australian perspective - the challenge, the opportunity and your duty
 
Data opportunities mini whitepaper
Data opportunities mini whitepaperData opportunities mini whitepaper
Data opportunities mini whitepaper
 
NetSquared London - GDPR for charities
NetSquared London - GDPR for charitiesNetSquared London - GDPR for charities
NetSquared London - GDPR for charities
 
Brendan Eich's letter to Senator Thune and Senator Nelson, Senate Committee o...
Brendan Eich's letter to Senator Thune and Senator Nelson, Senate Committee o...Brendan Eich's letter to Senator Thune and Senator Nelson, Senate Committee o...
Brendan Eich's letter to Senator Thune and Senator Nelson, Senate Committee o...
 
Are you GDPR Ready? Checklist Whitepaper
Are you GDPR Ready? Checklist WhitepaperAre you GDPR Ready? Checklist Whitepaper
Are you GDPR Ready? Checklist Whitepaper
 
The Meaning and Impact of the General Data Protection Regulation
The Meaning and Impact of the General Data Protection RegulationThe Meaning and Impact of the General Data Protection Regulation
The Meaning and Impact of the General Data Protection Regulation
 
Are You Prepared for the GDPR?
Are You Prepared for the GDPR?Are You Prepared for the GDPR?
Are You Prepared for the GDPR?
 
The GDPR Most Wanted: The Marketer and Analyst's Role in Compliance
The GDPR Most Wanted: The Marketer and Analyst's Role in ComplianceThe GDPR Most Wanted: The Marketer and Analyst's Role in Compliance
The GDPR Most Wanted: The Marketer and Analyst's Role in Compliance
 

Mehr von Johnny Ryan

Brief presentation to UCD 17 December 2020
Brief presentation to UCD 17 December 2020 Brief presentation to UCD 17 December 2020
Brief presentation to UCD 17 December 2020 Johnny Ryan
 
Presentation to world news publishers, November 2020
Presentation to world news publishers, November 2020Presentation to world news publishers, November 2020
Presentation to world news publishers, November 2020Johnny Ryan
 
Kryptonite, neglected
Kryptonite, neglected Kryptonite, neglected
Kryptonite, neglected Johnny Ryan
 
Judiciary Committee Senate staffer briefing 8 September 2019
Judiciary Committee Senate staffer briefing 8 September 2019Judiciary Committee Senate staffer briefing 8 September 2019
Judiciary Committee Senate staffer briefing 8 September 2019Johnny Ryan
 
Brave2020報告書:データ保護当局の執行能力
Brave2020報告書:データ保護当局の執行能力Brave2020報告書:データ保護当局の執行能力
Brave2020報告書:データ保護当局の執行能力Johnny Ryan
 
Talk at IAPP London May 2020: Competition, and why the GDPR is failing
Talk at IAPP London May 2020: Competition, and why the GDPR is failing Talk at IAPP London May 2020: Competition, and why the GDPR is failing
Talk at IAPP London May 2020: Competition, and why the GDPR is failing Johnny Ryan
 
Presentation at CPDP
Presentation at CPDP Presentation at CPDP
Presentation at CPDP Johnny Ryan
 
Johnny Ryan, Presentation at Data Protection Leadership Day, Arthur Cox Solic...
Johnny Ryan, Presentation at Data Protection Leadership Day, Arthur Cox Solic...Johnny Ryan, Presentation at Data Protection Leadership Day, Arthur Cox Solic...
Johnny Ryan, Presentation at Data Protection Leadership Day, Arthur Cox Solic...Johnny Ryan
 
Purpose limitation in data protection law as a protection against "cascading ...
Purpose limitation in data protection law as a protection against "cascading ...Purpose limitation in data protection law as a protection against "cascading ...
Purpose limitation in data protection law as a protection against "cascading ...Johnny Ryan
 
Briefing on adtech, RTB, and the GDPR at dmexco Brave event.
Briefing on adtech, RTB, and the GDPR at dmexco Brave event. Briefing on adtech, RTB, and the GDPR at dmexco Brave event.
Briefing on adtech, RTB, and the GDPR at dmexco Brave event. Johnny Ryan
 
Briefing for World Federation of Advertisers Media Buyers
Briefing for World Federation of Advertisers Media Buyers Briefing for World Federation of Advertisers Media Buyers
Briefing for World Federation of Advertisers Media Buyers Johnny Ryan
 
IVIR summer school slides
IVIR summer school slidesIVIR summer school slides
IVIR summer school slidesJohnny Ryan
 
Presentation to ANFO, Norwegian Advertisers Association
Presentation to ANFO, Norwegian Advertisers Association Presentation to ANFO, Norwegian Advertisers Association
Presentation to ANFO, Norwegian Advertisers Association Johnny Ryan
 
Presentation to FTC technology taskforce
Presentation to FTC technology taskforce Presentation to FTC technology taskforce
Presentation to FTC technology taskforce Johnny Ryan
 
Discussion starter at Future of Privacy Forum in Washington, DC.
Discussion starter at Future of Privacy Forum in Washington, DC. Discussion starter at Future of Privacy Forum in Washington, DC.
Discussion starter at Future of Privacy Forum in Washington, DC. Johnny Ryan
 
Presentation to European Political Strategy Centre at the European Commission
Presentation to European Political Strategy Centre at the European CommissionPresentation to European Political Strategy Centre at the European Commission
Presentation to European Political Strategy Centre at the European CommissionJohnny Ryan
 
Quick 10 minute overview of RTB problems to be fixed at ICO stakeholders' ses...
Quick 10 minute overview of RTB problems to be fixed at ICO stakeholders' ses...Quick 10 minute overview of RTB problems to be fixed at ICO stakeholders' ses...
Quick 10 minute overview of RTB problems to be fixed at ICO stakeholders' ses...Johnny Ryan
 
Presentation at UK Direct Marketing Association Data Protection Conference 2019
Presentation at UK Direct Marketing Association Data Protection Conference 2019Presentation at UK Direct Marketing Association Data Protection Conference 2019
Presentation at UK Direct Marketing Association Data Protection Conference 2019Johnny Ryan
 

Mehr von Johnny Ryan (20)

CPDP 2022
CPDP 2022CPDP 2022
CPDP 2022
 
Brief presentation to UCD 17 December 2020
Brief presentation to UCD 17 December 2020 Brief presentation to UCD 17 December 2020
Brief presentation to UCD 17 December 2020
 
Presentation to world news publishers, November 2020
Presentation to world news publishers, November 2020Presentation to world news publishers, November 2020
Presentation to world news publishers, November 2020
 
Ofcom briefing
Ofcom briefing Ofcom briefing
Ofcom briefing
 
Kryptonite, neglected
Kryptonite, neglected Kryptonite, neglected
Kryptonite, neglected
 
Judiciary Committee Senate staffer briefing 8 September 2019
Judiciary Committee Senate staffer briefing 8 September 2019Judiciary Committee Senate staffer briefing 8 September 2019
Judiciary Committee Senate staffer briefing 8 September 2019
 
Brave2020報告書:データ保護当局の執行能力
Brave2020報告書:データ保護当局の執行能力Brave2020報告書:データ保護当局の執行能力
Brave2020報告書:データ保護当局の執行能力
 
Talk at IAPP London May 2020: Competition, and why the GDPR is failing
Talk at IAPP London May 2020: Competition, and why the GDPR is failing Talk at IAPP London May 2020: Competition, and why the GDPR is failing
Talk at IAPP London May 2020: Competition, and why the GDPR is failing
 
Presentation at CPDP
Presentation at CPDP Presentation at CPDP
Presentation at CPDP
 
Johnny Ryan, Presentation at Data Protection Leadership Day, Arthur Cox Solic...
Johnny Ryan, Presentation at Data Protection Leadership Day, Arthur Cox Solic...Johnny Ryan, Presentation at Data Protection Leadership Day, Arthur Cox Solic...
Johnny Ryan, Presentation at Data Protection Leadership Day, Arthur Cox Solic...
 
Purpose limitation in data protection law as a protection against "cascading ...
Purpose limitation in data protection law as a protection against "cascading ...Purpose limitation in data protection law as a protection against "cascading ...
Purpose limitation in data protection law as a protection against "cascading ...
 
Briefing on adtech, RTB, and the GDPR at dmexco Brave event.
Briefing on adtech, RTB, and the GDPR at dmexco Brave event. Briefing on adtech, RTB, and the GDPR at dmexco Brave event.
Briefing on adtech, RTB, and the GDPR at dmexco Brave event.
 
Briefing for World Federation of Advertisers Media Buyers
Briefing for World Federation of Advertisers Media Buyers Briefing for World Federation of Advertisers Media Buyers
Briefing for World Federation of Advertisers Media Buyers
 
IVIR summer school slides
IVIR summer school slidesIVIR summer school slides
IVIR summer school slides
 
Presentation to ANFO, Norwegian Advertisers Association
Presentation to ANFO, Norwegian Advertisers Association Presentation to ANFO, Norwegian Advertisers Association
Presentation to ANFO, Norwegian Advertisers Association
 
Presentation to FTC technology taskforce
Presentation to FTC technology taskforce Presentation to FTC technology taskforce
Presentation to FTC technology taskforce
 
Discussion starter at Future of Privacy Forum in Washington, DC.
Discussion starter at Future of Privacy Forum in Washington, DC. Discussion starter at Future of Privacy Forum in Washington, DC.
Discussion starter at Future of Privacy Forum in Washington, DC.
 
Presentation to European Political Strategy Centre at the European Commission
Presentation to European Political Strategy Centre at the European CommissionPresentation to European Political Strategy Centre at the European Commission
Presentation to European Political Strategy Centre at the European Commission
 
Quick 10 minute overview of RTB problems to be fixed at ICO stakeholders' ses...
Quick 10 minute overview of RTB problems to be fixed at ICO stakeholders' ses...Quick 10 minute overview of RTB problems to be fixed at ICO stakeholders' ses...
Quick 10 minute overview of RTB problems to be fixed at ICO stakeholders' ses...
 
Presentation at UK Direct Marketing Association Data Protection Conference 2019
Presentation at UK Direct Marketing Association Data Protection Conference 2019Presentation at UK Direct Marketing Association Data Protection Conference 2019
Presentation at UK Direct Marketing Association Data Protection Conference 2019
 

Kürzlich hochgeladen

PHX May 2024 Corporate Presentation Final
PHX May 2024 Corporate Presentation FinalPHX May 2024 Corporate Presentation Final
PHX May 2024 Corporate Presentation FinalPanhandleOilandGas
 
Over the Top (OTT) Market Size & Growth Outlook 2024-2030
Over the Top (OTT) Market Size & Growth Outlook 2024-2030Over the Top (OTT) Market Size & Growth Outlook 2024-2030
Over the Top (OTT) Market Size & Growth Outlook 2024-2030tarushabhavsar
 
Arti Languages Pre Seed Teaser Deck 2024.pdf
Arti Languages Pre Seed Teaser Deck 2024.pdfArti Languages Pre Seed Teaser Deck 2024.pdf
Arti Languages Pre Seed Teaser Deck 2024.pdfwill854175
 
Mifepristone Available in Muscat +918761049707^^ €€ Buy Abortion Pills in Oman
Mifepristone Available in Muscat +918761049707^^ €€ Buy Abortion Pills in OmanMifepristone Available in Muscat +918761049707^^ €€ Buy Abortion Pills in Oman
Mifepristone Available in Muscat +918761049707^^ €€ Buy Abortion Pills in Omaninstagramfab782445
 
Falcon Invoice Discounting: Tailored Financial Wings
Falcon Invoice Discounting: Tailored Financial WingsFalcon Invoice Discounting: Tailored Financial Wings
Falcon Invoice Discounting: Tailored Financial WingsFalcon Invoice Discounting
 
TVB_The Vietnam Believer Newsletter_May 6th, 2024_ENVol. 006.pdf
TVB_The Vietnam Believer Newsletter_May 6th, 2024_ENVol. 006.pdfTVB_The Vietnam Believer Newsletter_May 6th, 2024_ENVol. 006.pdf
TVB_The Vietnam Believer Newsletter_May 6th, 2024_ENVol. 006.pdfbelieveminhh
 
Lucknow Housewife Escorts by Sexy Bhabhi Service 8250092165
Lucknow Housewife Escorts by Sexy Bhabhi Service 8250092165Lucknow Housewife Escorts by Sexy Bhabhi Service 8250092165
Lucknow Housewife Escorts by Sexy Bhabhi Service 8250092165meghakumariji156
 
Phases of Negotiation .pptx
Phases of Negotiation .pptx Phases of Negotiation .pptx
Phases of Negotiation .pptxnandhinijagan9867
 
Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...
Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...
Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...daisycvs
 
Power point presentation on enterprise performance management
Power point presentation on enterprise performance managementPower point presentation on enterprise performance management
Power point presentation on enterprise performance managementVaishnaviGunji
 
Putting the SPARK into Virtual Training.pptx
Putting the SPARK into Virtual Training.pptxPutting the SPARK into Virtual Training.pptx
Putting the SPARK into Virtual Training.pptxCynthia Clay
 
Organizational Transformation Lead with Culture
Organizational Transformation Lead with CultureOrganizational Transformation Lead with Culture
Organizational Transformation Lead with CultureSeta Wicaksana
 
Falcon Invoice Discounting: Empowering Your Business Growth
Falcon Invoice Discounting: Empowering Your Business GrowthFalcon Invoice Discounting: Empowering Your Business Growth
Falcon Invoice Discounting: Empowering Your Business GrowthFalcon investment
 
Dr. Admir Softic_ presentation_Green Club_ENG.pdf
Dr. Admir Softic_ presentation_Green Club_ENG.pdfDr. Admir Softic_ presentation_Green Club_ENG.pdf
Dr. Admir Softic_ presentation_Green Club_ENG.pdfAdmir Softic
 
Marel Q1 2024 Investor Presentation from May 8, 2024
Marel Q1 2024 Investor Presentation from May 8, 2024Marel Q1 2024 Investor Presentation from May 8, 2024
Marel Q1 2024 Investor Presentation from May 8, 2024Marel
 
Uneak White's Personal Brand Exploration Presentation
Uneak White's Personal Brand Exploration PresentationUneak White's Personal Brand Exploration Presentation
Uneak White's Personal Brand Exploration Presentationuneakwhite
 
Jual Obat Aborsi ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan Cytotec
Jual Obat Aborsi ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan CytotecJual Obat Aborsi ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan Cytotec
Jual Obat Aborsi ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan CytotecZurliaSoop
 
joint cost.pptx COST ACCOUNTING Sixteenth Edition ...
joint cost.pptx COST ACCOUNTING Sixteenth Edition ...joint cost.pptx COST ACCOUNTING Sixteenth Edition ...
joint cost.pptx COST ACCOUNTING Sixteenth Edition ...NadhimTaha
 

Kürzlich hochgeladen (20)

!~+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUD...
!~+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUD...!~+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUD...
!~+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUD...
 
PHX May 2024 Corporate Presentation Final
PHX May 2024 Corporate Presentation FinalPHX May 2024 Corporate Presentation Final
PHX May 2024 Corporate Presentation Final
 
Over the Top (OTT) Market Size & Growth Outlook 2024-2030
Over the Top (OTT) Market Size & Growth Outlook 2024-2030Over the Top (OTT) Market Size & Growth Outlook 2024-2030
Over the Top (OTT) Market Size & Growth Outlook 2024-2030
 
Arti Languages Pre Seed Teaser Deck 2024.pdf
Arti Languages Pre Seed Teaser Deck 2024.pdfArti Languages Pre Seed Teaser Deck 2024.pdf
Arti Languages Pre Seed Teaser Deck 2024.pdf
 
Mifepristone Available in Muscat +918761049707^^ €€ Buy Abortion Pills in Oman
Mifepristone Available in Muscat +918761049707^^ €€ Buy Abortion Pills in OmanMifepristone Available in Muscat +918761049707^^ €€ Buy Abortion Pills in Oman
Mifepristone Available in Muscat +918761049707^^ €€ Buy Abortion Pills in Oman
 
Falcon Invoice Discounting: Tailored Financial Wings
Falcon Invoice Discounting: Tailored Financial WingsFalcon Invoice Discounting: Tailored Financial Wings
Falcon Invoice Discounting: Tailored Financial Wings
 
TVB_The Vietnam Believer Newsletter_May 6th, 2024_ENVol. 006.pdf
TVB_The Vietnam Believer Newsletter_May 6th, 2024_ENVol. 006.pdfTVB_The Vietnam Believer Newsletter_May 6th, 2024_ENVol. 006.pdf
TVB_The Vietnam Believer Newsletter_May 6th, 2024_ENVol. 006.pdf
 
Lucknow Housewife Escorts by Sexy Bhabhi Service 8250092165
Lucknow Housewife Escorts by Sexy Bhabhi Service 8250092165Lucknow Housewife Escorts by Sexy Bhabhi Service 8250092165
Lucknow Housewife Escorts by Sexy Bhabhi Service 8250092165
 
Phases of Negotiation .pptx
Phases of Negotiation .pptx Phases of Negotiation .pptx
Phases of Negotiation .pptx
 
Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...
Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...
Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...
 
Power point presentation on enterprise performance management
Power point presentation on enterprise performance managementPower point presentation on enterprise performance management
Power point presentation on enterprise performance management
 
Putting the SPARK into Virtual Training.pptx
Putting the SPARK into Virtual Training.pptxPutting the SPARK into Virtual Training.pptx
Putting the SPARK into Virtual Training.pptx
 
Organizational Transformation Lead with Culture
Organizational Transformation Lead with CultureOrganizational Transformation Lead with Culture
Organizational Transformation Lead with Culture
 
Falcon Invoice Discounting: Empowering Your Business Growth
Falcon Invoice Discounting: Empowering Your Business GrowthFalcon Invoice Discounting: Empowering Your Business Growth
Falcon Invoice Discounting: Empowering Your Business Growth
 
Dr. Admir Softic_ presentation_Green Club_ENG.pdf
Dr. Admir Softic_ presentation_Green Club_ENG.pdfDr. Admir Softic_ presentation_Green Club_ENG.pdf
Dr. Admir Softic_ presentation_Green Club_ENG.pdf
 
Marel Q1 2024 Investor Presentation from May 8, 2024
Marel Q1 2024 Investor Presentation from May 8, 2024Marel Q1 2024 Investor Presentation from May 8, 2024
Marel Q1 2024 Investor Presentation from May 8, 2024
 
Uneak White's Personal Brand Exploration Presentation
Uneak White's Personal Brand Exploration PresentationUneak White's Personal Brand Exploration Presentation
Uneak White's Personal Brand Exploration Presentation
 
Jual Obat Aborsi ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan Cytotec
Jual Obat Aborsi ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan CytotecJual Obat Aborsi ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan Cytotec
Jual Obat Aborsi ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan Cytotec
 
joint cost.pptx COST ACCOUNTING Sixteenth Edition ...
joint cost.pptx COST ACCOUNTING Sixteenth Edition ...joint cost.pptx COST ACCOUNTING Sixteenth Edition ...
joint cost.pptx COST ACCOUNTING Sixteenth Edition ...
 
unwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabi
unwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabiunwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabi
unwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabi
 

Deck for Chardan conference call on ePrivacy and GDPR

  • 1. Changing ePrivacy laws and the implications for online media Dr Johnny Ryan
  • 2. 1. What the new European rules (the GDPR and the ePR) are.  (a)Global impact and risk 2.The three big challenges for online media & advertising. 3.Outlook (a) Adtech data players. (b) Google. (c) Facebook.  (d) Publishers.  Contents slide 1
  • 3. General Data Protection Regulation (GDPR) ePrivacy Regulation (ePR) Area of focus Protection of personal data (Article 8 of the EU Charter of Fundamental Rights) Respect for private life and communications (Article 7 of the EU Charter of Fundamental Rights) Current status Has entered in to force, and will soon be applied. Currently being negotiated between lawmaking institutions. Date of application 25 May 2018 25 May 2018 (or later) Geographic impact Global European Economic Area (may widen) slide 2
  • 4. 513+ million people • Processing data by, or for, an EU business. • Businesses that offer services to, or sell to, or monitor and profile users in the EU. European Economic Area Geographic scope slide 3
  • 5. for infringements relating to the consent of a child, processing that does not require identification, data protection by design, the tasks of the data protection officer, and certification for infringements related to the legal basis for processing, consent, and processing of sensitive data (including profiling), notification about users rights and the processing of their data, the rights of users (e.g. data rectification, erasure, portability, etc.), transfers of data outside of the EU, and failure to comply with a supervisory authority’s order to cease processing or to suspend a data flow 2% of total worldwide annual turnover (or €10M, whichever is higher) 4% of total worldwide annual turnover (or €20M, whichever is higher) plus court actions by data subjects and their representatives.  Penalties slide 4
  • 6. 3 Big Challenges 1. Risk: Not getting consent 2. Risk: Data leakage 3. Risk: Data portability slide 5
  • 7. “any information relating to an identified or identifiable natural person ('data subject'); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person…” -GDPR, Article 4 “Personal data” slide 6
  • 8. “Single customer view” Indirectly identifiable: Netflix users’ TV & movies Directly identifiable: IP addresses, where ISP can identify the subscriber slide 7
  • 11. /// Visitor Site SSP DSP DMP Brand $ “Demand side”“Supply side” Ad Exchange slide 10
  • 12. /// Visitor Site SSP Ad Exchange DSP DMP serve page request page request bid request segment ad request cookie to SSP deliver ad sync deliver segment sync Ad request Brand $ store data “Demand side”“Supply side” slide 11
  • 13. The Daily Bugle ExchangeExchange Exchange Exchange DSP DMP DSP DMP DSP DMP DSP DMP DSPDMP DSPDMP DSPDMP DMP DSP DSPDSP DSP DSP DSP slide 12
  • 14. The Daily Bugle ExchangeExchange Exchange Exchange DSP DMP DSP DMP DSP DMP DSP DMP DSPDMP DSPDMP DSPDMP DMP DSP DSPDSP DSP DSP DSP ? ? ? ? ? ? ? ADVERTISEMENT slide 13
  • 15. 1. Any one of the 100s of parties receiving data from an ad exchange can share onward with further parties. 
 
 2. The ad unit may contain JavaScript that summons unauthorized trackers. The Daily Bugle ADVERTISEMENT ? 2 FORMS OF DATA LEAKAGE slide 14
  • 16. • It must be specific and informed. 
 Can not be buried in “Terms & Conditions”. • Consent can not be disruptive. Must be obtained freely, without detriment. (Consent Walls may or may not be permissible) •Who or what type of party is receiving the data •What are the purposes of processing, and legal basis for that •How long are the data stored (or what criteria determine duration) •If this giving that data is part of a contract what are the consequences of not providing data •If the data are being transferred to a third country, what safeguards or binding corporate rules are in place? •In cases of automated decision-making, including profiling, what logic is applied and what is the significance of the outcomes. You must tell the user: Consent GDPR & ePrivacy Regulation: Businesses must obtain consent to use personal data. slide 15
  • 17. We would like to share your browsing habits on our site with Brand Name and their analytics partners, to understand what offers may be of interest to you. These data will be deleted after 6 months. You can withdraw permission at any time in My Data. Learn more? Pop-up Dialog OKNo Purpose of processing, and notification of profiling. Article 13, para 1, c, and para 2, f. Duration Article 13, para 2, a. Text links to tool for withdrawing consent. 
 Article 7, paragraph 3. Text links to tool to complain to supervisory authority, and to access, correct, and transfer data, etc. 
 Article 13, para 2, b, c, and d. Can say no Recital 42. Details of recipients and categories of recipients. Text links to contact details of the controller and their data protection officer. 
 Article 13, para 1, a, b, and e. A (probably non-compliant) GDPR CONSENT REQUEST Scenario: a website requests consent to share data with a brand for product offers slide 16
  • 18. We would like to share your browsing habits on our site with Brand Name and their analytics partners, to understand what offers may be of interest to you. These data will be deleted after 6 months. You can withdraw permission at any time in My Data. Learn more? Pop-up Dialog OKNo Thinking of yourself as a visitor to websites, what would you select if shown this message? 79% 21% slide 17
  • 19. Please allow your browsing habits on our sites to be shared with Open ID participants We will then be able to identify offers that are more interesting to you, and process business transactions with our partners. (Alternatively, we will use generic ads, which might be less interesting to you.) You can cancel at any time by clicking the icon on any ad. Learn more about your data. Help us keep Example.com profitable OKNo OK 6 months 12 months [Ad exchange] [Ad exchange] [DMP] [DMP] [DSP] [DSP] [Verification vendor] i i i i i i i [Consortium] and its participants Each controller. and categories of processors. Might GDPR consent requests actually look like this? slide 18
  • 20. 3% 3%32%65% 46% 51% 64%13% Do you believe that users will opt-in to tracking for the purposes of advertising? No Yes, if denied access to the site otherwise Yes 1st party tracking on a website 3rd party tracking on a website Tracking by any party, anywhere on the web 23% 0% 100% 200% Can not deny access because of GDPR Article 7 slide 19
  • 21. Ad server SSP Step 2. Ad server selects an SSP Step 3. SSP selects an exchange Step 7. DSP serves agency creative Step 8. Assets load from CDN Step 9. Agency ad server loads verification vendor ADVERTISERS website.com AD DMP DMP DMP DMP DMP DMP DMP DMP DMP DMP DSP DSP DSP DSP DSP DSP DSP DSP DSP DSP DSP W inningbid DSP Ad server javascript SSP javascript DMP DMP DMP DMP DSP DSP DSP DSP DSP DSP javascript Ad server javascript Step 6. Exchange serves winning bid Verification javascript Agency ad server Verification vendor Winning DSP Step 1. User requests webpage Ad exchange Channel of data leakage Personal data Legend Step 4. Exchange sends bid requests to hundreds of partners Step 5. Exchange lets some DMPs/ DSPs to refresh cookie sync CDN Money This is the current process of real-time bidding that is used in online behavioural advertising. DATA LEAKAGE IN ONLINE ADVERTISING Risk slide 20
  • 22. “Controller” “Processor” “Processor” “Processor” Contract Contract Contract Contracts required that determine the following: • the nature of processing and its duration, • the obligations of the “controller”, • and a guarantee that the “processor” handles the data only as dictated by documented instructions from the controller GDPR requires a new chain of accountability Risk slide 21
  • 23. Holding first-party personal data that are now non-compliant Buying personal data (directly or indirectly identifiable) from other sources to augment profiles Buying behavioural ads online, which currently requires the sharing of personal data with countless partners. BROKER 3 2 1 Risk (brands) slide 22
  • 24. All potentially liable! The Courts Multiple controllers and processors “involved in the same processing” can each be held liable for damages awarded in a case. A person can complain to the regulator, and at the same time go to court. And can take the regulator to court for inaction. Supervisory Authority /// /// Visitor Site SSP Ad Exchange DSP DMP Brand $Risk slide 23
  • 25. Risk: user can move data to a competitors platform slide 24
  • 27. Needs “opt-in” consent, but user has little incentive to agree 4 Needs “opt-in” consent, and may get it 3 Can show an “opt-out” before using data 2 Out of scope of Regulation if business is modified 1 Already out of scope of the Regulation 0 PageFair GDPR disruption scale (digital advertising) 5 Needs “opt-in” consent, but is unable to communicate with users slide 26
  • 28. 5 Needs “opt-in” consent, but is unable to communicate with users 4 Needs “opt-in” consent, but user has little incentive to agree • Facebook Audience Network • WhatsApp advertising (see assumption 1) 3 Needs “opt-in” consent, and may get it 2 Can show an “opt-out” before using data • NewsFeed ads (based only on personal data with no “special” personal data (e.g. ethnicity, political opinion, religious or philosophical beliefs, sexual orientation), unless marked “public” or visible to “friends of friends” (see assumptions 1 and 2) • Instagram ads (see assumption 1) 1 Out of scope of the regulation, if business is modified. 0 Already out of scope of the regulation. Assumption 2. GDPR Article 6, paragraph 4, c, indicates a higher bar for “special categories of personal data” that reveal race, ethnicity, political opinion, religious or philosophical beliefs, trade union membership, or related to a data subject’s sex life or sexual orientation. However, this does not apply if the data have been “manifestly made public by the data subject” (GDPR, Article 9, paragraph 2, (e)). This may mean that the publicity settings that a user places on their post will prevent or enable those posts to be mined for advertising. GDPR scale: FACEBOOK Assumption 1. That the use of personal data to target advertising will be accepted as a “compatible” purpose with the original purpose for which personal data were shared by users, under GDPR Article 6, paragraph 4. GDPR Recital 61 says that if the further processing is compatible then the company must alert the data subject that it is using their data for this further purpose before it starts processing. GDPR Article 21, paragraph 2 and 3 say that the data subject must be alerted about their right to object to their data being used for direct marketing, and can do so at any time. GDPR Recital 70 says this alert should be presented clearly and separately from any other information. However, the Article 29 Working Party’s opinion on purpose limitation notes that among the various things that the compatibility assessment must consider are “the impact of the further processing on the data subjects”. slide 27
  • 29. Assumption 1 … the Article 29 Working Party’s opinion on purpose limitation notes that among the various things that the compatibility assessment must consider are “the impact of the further processing on the data subjects”. slide 28
  • 30. Until this week, when we asked Facebook about it, the world’s largest social network enabled advertisers to direct their pitches to the news feeds of almost 2,300 people who expressed interest in the topics of “Jew hater,” “How to burn jews,” or, “History of ‘why jews ruin the world.’” To test if these ad categories were real, we paid $30 to target those groups with three “promoted posts” — in which a ProPublica article or post was displayed in their news feeds. Facebook approved all three ads within 15 minutes. “Facebook Enabled Advertisers to Reach 'Jew Haters’”, ProPublica , 14 September 2017 slide 29
  • 31. Sen. Mark Warner, the top Democrat on the Senate Intelligence Committee, has said the ads Facebook has disclosed to date represent just the "tip of the iceberg" of Russians' full election interference via social media. Warner and his fellow Senators have criticized both Facebook and Twitter for the limited scope of their findings. "Facebook gives Russian-linked ads to Congress", CNN, 1 October 2017 slide 30
  • 32. 5 Needs “opt-in” consent, but is unable to communicate with users 4 Needs “opt-in” consent, but user has little incentive to agree • Most personalized AdWords ads on Google properties including Search, Youtube, Maps, and the Google Network (including “remarketing”,“affinity audiences” , “in-market audiences”, “demographic targeting”, "similar audiences”, “Floodlight” cross-device tracking), “customer match”, “remarketing” (see assumption 1) • Gmail ads • Programmatic services (DoubleClick) 3 Needs “opt-in” consent, and may get it 2 Can show an “opt-out” before using data • Location targeting in Maps (see assumption 2) 1 Out of scope of the regulation, if business is modified. • AdWords (if all personalized features are removed) on Google properties including Search, Youtube, Maps 0 Already out of scope of the regulation. • “Placement-targeted” ads on Google properties. Assumption 1. That the average user does not “sign in” to Google Search or Chrome. If, however, users did sign in then Google may be able to further process their data for other purposes. GDPR scale: GOOGLE Assumption 2. That the use of personal data to target advertising will be accepted as a “compatible” purpose with the original purpose for which personal data were shared by users, under GDPR Article 6, paragraph 4. GDPR Recital 61 says that if the further processing is compatible then the company must alert the data subject that it is using their data for this further purpose before it starts processing. GDPR Article 21, paragraph 2 and 3 say that the data subject must be alerted about their right to object to their data being used for direct marketing, and can do so at any time. GDPR Recital 70 says this alert should be presented clearly and separately from any other information. However, the Article 29 Working Party’s opinion on purpose limitation notes that among the various things that the compatibility assessment must consider are “the impact of the further processing on the data subjects”. slide 31
  • 33. USERS PUBLISHERS Outlook for Publishers Now: Agencies and adtech take 50% or more of brand spend. Publishers get what's left. BRANDS ADTECH slide 32
  • 34. USERS PUBLISHERS Outlook for Publishers After 25 May: Publishers take control, and agencies and adtech must rely on them. ADTECH BRANDS slide 33
  • 35. PLAN “A”: SEEK CONSENT (AND END DATA LEAKAGE). PEOPLE WILL OPT-IN TO TRACKING FOR ADS? BUT... HOW CONFIDENT ARE YOU THAT slide 34
  • 36. Not at all How confident are you that the average user will click ‘OK’ to share data with other companies? 0% 100% 200% To a small degree Moderately Highly Very highly How concerned are you about your online behaviour being tracked? 5% 7% 21% 35% 32% 32% 32% 21% 12% 4% slide 35
  • 37. Consent is meaningless, unless it is enforceable NEED TO PREVENT RISK OF DATA LEAKAGE // slide 36
  • 38. Ads (Ethical Data)Ads (Conventional Data) Fossil Fuel Fossil Fuel Classic Cars Renewable Energy Personal data Ads (Conventional Data) Personal data with consent and enforceable protection Non-personal data N20 C02 HYPER PREMIUM, SMALL MARKET // Regulatory disincentive OLD INDUSTRY Regulatory incentive NEW CLEAN INDUSTRY + + slide 37
  • 39. (a) Advertising technology and data businesses face enormous disruption. (b) Parts of Google will be disrupted. (c) Parts of Facebook will be disrupted. (d) Publishers face short term difficulty, but have the potential to transform their position. (e) Adtech needs to shift to non-personal data, but most adtech companies are fixated on getting consent for personal data. Summary slide 38