PageFair’s long letter to the Article 29 Working Party

This note discusses a letter that PageFair submitted to the Article 29 Working Party. The answers may shape the future of the adtech industry.  Eventually the data protection authorities of Europe will gain a thorough understanding of the adtech industry, and enforce data protection upon it. This will change how the industry works. Until then, we are in … Continue reading PageFair’s long letter to the Article 29 Working Party

GDPR consent design: how granular must adtech opt-ins be?

This note examines the range of distinct adtech data processing purposes that will require opt-in under the GDPR.[1] In late 2017 the Article 29 Working Party cautioned that “data subjects should be free to choose which purpose they accept, rather than having to consent to a bundle of processing purposes”.[2] Consent requests for multiple purposes … Continue reading GDPR consent design: how granular must adtech opt-ins be?

Here is what GDPR consent dialogues could look like. Will people click yes?

THIS NOTE HAS NOW BEEN SUPERSEDED BY A A MORE RECENT PAGEFAIR INSIDER NOTE ON GDPR CONSENT DIALOGUES. PLEASE REFER TO THE NEW NOTE.  This note presents sketches of GDPR consent dialogues, and invites readers to participate in research on whether people will consent.  [x_alert heading="Note" type="info"]It is important to note that the dialogue presented … Continue reading Here is what GDPR consent dialogues could look like. Will people click yes?

The 3 biggest challenges in GDPR for online media & advertising

This note explains the three deepest challenges that the online advertising industry must overcome to survive the new European data rules. It also outlines our approach.  The General Data Protection Regulation (GDPR) and the ePrivacy Regulation (ePR) pose particular challenges for publishers, brands, and adtech companies. These go beyond the normal gap analysis and security overhaul that other businesses … Continue reading The 3 biggest challenges in GDPR for online media & advertising

PageFair statement at European Parliament rapporteur’s ePrivacy Regulation roundtable

Lightly edited transcription of PageFair remarks at rapporteur's sessions at the European Parliament in Brussels on 29 May 2017, concerning the ePrivacy Regulation.  Statement at roundtable on Articles 9, and 10.  Dr Johnny Ryan: Thank you. PageFair is a European adtech company. We are very much in support of the Regulation as proposed, in so far … Continue reading PageFair statement at European Parliament rapporteur’s ePrivacy Regulation roundtable

Why pseudonymization is not the silver bullet for GDPR.

Pseudonymization will not save online advertising companies from having to seek consent to use browsing and other personal data. This note explains why. Personal data will become toxic in May 2018 when the General Data Protection Regulation is applied, unless data subjects have given consent.[1] Some businesses may try to rely on “pseudonymization”, a partial … Continue reading Why pseudonymization is not the silver bullet for GDPR.

Supporting new European data regulation

Unusually for an ad-tech company, PageFair supports the proposed ePrivacy Regulation. Here is why. [x_alert type="success"]Additional note (11 May 2017): our position concerns the proposal's impact on online behavioural advertising (OBA). Though there are kinks to work out, as we note in our recent statement to Parliament representatives, we strongly endorse the proposal's broad approach to OBA.[/x_alert]  The … Continue reading Supporting new European data regulation

Why the GDPR ‘legitimate interest’ provision will not save you

The “legitimate interest” provision in the GDPR will not save behavioral advertising and data brokers from the challenge of obtaining consent for personally identifiable data. As previous PageFair analysis illustrates, personally identifiable data (PII) will become toxic except where it has been obtained and used with consent once the General Data Protection Regulation is applied in May 2018. Even so, many advertising intermediaries believe that they can continue to use PII data without consent because of an apparent carve-out related to “legitimate interest” contained in the GDPR. This is a false hope.

Ten Key Things That Happened in Q4

Amid the blizzard of press releases and conference tidbits concerning media, advertising, and adblocking, only some really matter. Here are the ten key things that happened in Q4. OCTOBER 1. US Department of Justice examines possible agency shenanigans.  It transpired that the US Department of Justice had launched an investigation into rigged bids that unfairly favored … Continue reading Ten Key Things That Happened in Q4

Europe’s new privacy regime will disrupt the adtech Lumascape

In a year and a half, new European rules on the use of personal information will disrupt advertising and media across the globe. Here are the three biggest impacts.  Since 1996 when cookies were first repurposed to track users around the Web there has been an assumption that gathering and trading users' personal information is the essence of advertising online. This is about to change.

Eight Things From Q3 Worth Knowing

Now, ten days into October, we have had time to digest on the events of the last quarter. As is ever the case with history, only some of the headlines of the last three months will have any lingering impact. But of all the events in the past three months the following eight are worth … Continue reading Eight Things From Q3 Worth Knowing