Home Privacy French Data Regulators Place Targeted Advertising In The Crosshairs

French Data Regulators Place Targeted Advertising In The Crosshairs

SHARE:

France’s data protection regulator is going public with its action plan – and targeted online advertising is to be a “priority topic.”

The Commission nationale de l’informatique et des libertés (CNIL) shared its 2019-2020 agenda in response to appeals from the public, privacy advocates and online marketing professionals looking for guidance on how to comply with the General Data Protection Regulation (GDPR).

Even more than a year out from the GDPR’s enforcement date, compliance remains a moving target.

The ePrivacy Regulation, which will eventually introduce new rules on the use of cookies, is still being debated by EU legislators. But when it’s ready, parts of the ePrivacy regs will take precedence over certain provisions in the GDPR, and that’s leaving the ad industry on shaky ground. For now, all they’ve got to go by are outdated guidelines based on the now-obsolete ePrivacy Directive.

AdExchanger previously reported on the CNIL’s plan to give publishers roughly a year to keep using outmoded scroll-based cookie notices while the agency works to update its cookie guidelines to match the spirit of GDPR, rather than waiting for the ePrivacy Regulation to replace the Directive (whenever the heck that’ll be).

The CNIL will meet with advertisers, ad tech intermediaries and publishers to brainstorm the details over the coming months, and looks to publish its recommendations for public comment by the end of the year or early 2020 at the latest.

The reprieve is an acknowledgement that companies need clearer instructions on how to comply.

But despite taking mercy on pubs and the ad tech companies who love to pixel them, the CNIL said it will continue to investigate complaints during the grace period and, if called for, conduct inspections to make sure that cookies aren’t being dropped before consent is collected. Companies will also be expected to comply with any obligations under GDPR that aren’t in flux, including those related to data security and giving consumers the ability to easily withdraw consent.

The CNIL’s intentions are in line with its counterpart in the United Kingdom, the Information Commissioner’s Office (ICO), which will start investigating the implications of RTB in July.

To date, at least seven complaints contending that RTB is illegal under GDPR have been brought in jurisdictions across Europe, including in the United Kingdom.

In mid June, the ICO issued a disparaging report on the practice of real-time bidding, noting that the “ad tech industry appears immature in its understanding of data protection requirements.”

Subscribe

AdExchanger Daily

Get our editors’ roundup delivered to your inbox every weekday.

It added that the IAB Europe’s Transparency and Consent Framework is “insufficient” under GDPR. But, like the CNIL, the ICO isn’t going to war with ad tech right now.

The ICO is planning to schedule meetings of its own with key stakeholders to gather more information and it might undertake an industry review in six months, depending on what it finds.

Even so, the ad tech industry would do well not to turn a blind eye to these rumblings. It’s not paranoia if they’re really out to get you.

“We expect data controllers in the ad tech industry to reevaluate their approach to privacy notices, use of personal data and the lawful bases they apply within the RTB ecosystem,” the ICO warned.

The CNIL did not respond in time for publication.

Must Read

Intent IQ Has Patents For Ad Tech’s Most Basic Functions – And It’s Not Afraid To Use Them

An unusual dilemma has programmatic vendors and ad tech platforms worried about a flurry of potential patent infringement suits.

TikTok Video For Open Web Publishers? Outbrain Built It.

Outbrain is trying to shed its chumbox rep by bringing social media-style vertical video to mobile publishers on the open web.

Billups Launches Attention Measurement For Out-Of-Home

Billups, a managed services agency that specializes in OOH, is making its attention measurement solution and a related analytics dashboard available for general use.

Privacy! Commerce! Connected TV! Read all about it. Subscribe to AdExchanger Newsletters
US District Court for the Eastern District of Virginia, Alexandria

The Google Ad Tech Antitrust Case Is Over – And Here’s What’s Happening Next

Just three weeks after it began, the Google ad tech antitrust trial in Virginia is over. The court will now take a nearly two-month break before reconvening for closing arguments right before Thanksgiving.

Jounce Media's Chris Kane at Programmatic IO NY on Sept. 25, 2024.

The Bidstream Is A Duplicative, Chaotic Mess – But It Doesn’t Have To Be That Way

Publishers are initiating more and more auctions – but doesn’t mean DSPs are listening to more bids, according to Chris Kane.

Readers Are Flocking To Political News, Says WaPo – And Advertisers Are Missing Out

During certain periods this year, advertisers blocked more than 40% of The Washington Post’s inventory over brand safety concerns.