GDPR is the new data privacy regulation now in force across Europe. You will have felt the effects of this from the torrent of emails asking you to re-subscribe to mailing lists or give your consent to being contacted.
GDPR is great for us - you and me - the average internet user, who innocently traverses the web minding our own business. It provides a set of requirements for the sites we visit and the services we use to treat us and data about us with respect and enforces a common-sense set of rights. This legislation will weed out the "bad actors", the people and companies who have been acting nefariously, and for everyone else, provide a level playing field.
At A Million Ads, we need to share user data between our partners in order to personalise our adverts for you. Data sharing is at the heart of what we do so we built GDPR-compliant practices into our product and processes from the start. This blog post is part of us being open and transparent about what we do and how we do it.
First, GDPR does not stop anyone sharing data, its just states that sharing has to be done lawfully, transparently and with a specific purpose.
We work with big, well-recognised players in the music / audio / radio sphere who are complying with the legislation to collect, store, process and share personal data, and pass it to us so that we can provide our ad personalisation service. Our publisher partners have a very clear value exchange with their users, who appreciate sharing data to get the value of the service.
In GDPR-speak, we are data-controller in tandem with our partners and our legal basis for collecting and storing personal data is legitimate interest.
Finally, we have a Data Protection Officer and any queries can be sent to firstname.lastname@example.org.