Home Privacy Fun Fact About Clean Rooms: Data Security Isn’t A Given

Fun Fact About Clean Rooms: Data Security Isn’t A Given

SHARE:
data clean rooms (hero size)

Data clean rooms are magic. All you have to do is put your data inside, press a button, and it comes out matched, privacy safe and secure on the other side.

Just kidding.

Advertisers need to do their due diligence on potential clean room partners before working together, including (and especially) finding out how secure the platform is.

Because once data has been exposed, linked or enriched by another data set, “you can’t walk that back,” said Devon DeBlasio, VP of product marketing at InfoSum, speaking at an IAB Tech Lab Rearc privacy event in New York City last week.

Toothpaste doesn’t go back in the tube.

Somebody call security

Some of the potential security threats in a data clean room environment are the commingling of data, information leakage and “publisher ad observation.”

If, for example, a publisher knows which ads an advertiser is planning to serve, it could observe and log the first-party IDs associated with its own visitors who were also shown the ads. Then the publisher could look up the plaintext PII match keys for those identifiers and – voila! – the data has been exposed.

But not all threats are nefariously motivated, said Bosko Milekic, chief product officer at data collaboration platform Optable.

For example, say a media company owns and operates its own SSP or an advertiser has its own DSP. There’s nothing wrong with that, Milekic said, but even seemingly benign internal data sharing between them can be a form of “collusion” that leads to privacy and security problems, including data transfer through unsecured channels.

In order for data clean rooms to be considered secure, according to the IAB Tech Lab’s new technical standard for data clean room interoperability (which was released for public comment last week), the rooms have to check three important boxes.

Subscribe

AdExchanger Daily

Get our editors’ roundup delivered to your inbox every weekday.

  1. All PII must be encrypted and never shared directly with any party.
  2. No participant should be able to learn anything about the identity of people who aren’t in their own contributed data set.
  3. No one involved should be able to learn anything about anyone in the overlapping audience.

Miss any of these steps, and a clean room can’t really call itself a clean room.

Always ask

But the devil is in those details, and there are a lot of other things for advertisers to consider before partnering with a data clean room.

For example (deep breath):

How does the clean room access data? Can the data stay put, or will it have to be streamed into another platform? Do you have to change the format of your data before sharing it? Are there controls for data governance and encryption? How granular are the controls? Is there a time limit for how long the clean room has access to the data? Will the data flows be audited? What queries can you run on the platform, and is there a specific query language? What type of liability do you have in case of a data breach, and whose responsibility is it? What happens if there’s a breach involving matched data?

“This gets very complicated,” DeBlasio said, “but these are very important questions to ask.”

And we’re not done.

Don’t forget to ask about which privacy-enhancing technologies (PETs) the data clean room uses, said Rachel Blum, principal architect and field CTO at Snowflake.

Some PETs are more privacy-enhancing than others, depending on the use case and the advertiser’s own risk tolerance. And PETs aren’t static. The “level” of privacy can be dialed up or down based on qualitative thresholds, and there’s usually a trade-off between privacy and accuracy.

A data breach is a headache no one wants, but implementing a PET that’s so strong you can’t do anything practical is also a problem.

“It’s important to consider what you’re interested in implementing and what risks you’re looking at,” Blum said. “You also need to be able to actually perform the activity.”

Must Read

Inside PubDesk, The Trade Desk’s New Dashboard That Shows What Buyers Actually Care About

A peek inside PubDesk, The Trade Desk’s new dashboard that gives sellers detailed info on how buyers value their inventory.

(Photo credit: Samsung Ads on Linkedin)

How To Advertise To Advertisers At Ad Industry Events (Like Advertising Week)

New Yorkers are bombarded by ads at every turn. But targeted ads? For your industry? While you’re on your way to an event for that industry? The surreality of that experience can still pack a punch.

CleanTap Says It Easily Fooled Programmatic Tech With Spoofed CTV Devices

CleanTap claims that 100% of the invalid traffic it spoofed was accepted into live auctions run by programmatic platforms and was successfully bid on by advertisers.

Privacy! Commerce! Connected TV! Read all about it. Subscribe to AdExchanger Newsletters

HUMAN Expands Its IVT Detection Tool Kit With A New Product For Advertisers, Not Platforms

HUMAN has recently started complementing its bid request analysis by analyzing the time between when a bot clicks an ad and when the landing page loads. Now it’s offering the solution to individual advertisers.

Index Exchange Launches A Data Marketplace For Sell-Side Curation

Through Index Exchange’s data vendor marketplace, curators gain access to third-party data sets without needing their own integrations.

Can Publishers Trust The Trade Desk’s New Wrapper?

TTD says OpenAds is not just a reaction to Prebid’s TID change, but a new model for fairer, more transparent ad auctions. So what does the DSP need to do to get publishers to adopt its new auction wrapper?