Consumer Rights Management and GDPR Overview - Salesforce DMP

Similar documents
DATA PROTECTION POLICY

Hillgate Travel GDPR Response. Privacy Policy

Data Processing Addendum

The GDPR how to prepare MiFID II where are we now? Wednesday 21 February 2018

Customer GDPR Data Processing Agreement

Michael R. Cohen CIPP/US, CIPP/E Gray Plant Mooty. Overview of the EU General Data Protection Regulation (GDPR)

Rigor, Inc. GDPR Data Processing Addendum

BINDING CORPORATE RULES

Data Processing Addendum

Budget FREQUENTLY ASKED QUESTIONS. August 7, Budget Configuration and Dashboard Information What is Budget?...1

How To Guide X3 Bank Card Processing Sage Exchange

Privacy Statement v 1.1

General Data Protection Regulation (GDPR) Data Protection Notice

Benefits Module Release Notes

Amazon Elastic Compute Cloud

Privacy Notice. Our Hastings Direct SmartMiles policy has a separate privacy notice which can be found here.

privacy notice who is responsible for processing your personal data and who you can contact in this regard reasons for processing your data

JOSTENS EUROPEAN PRIVACY POLICY

DEAL BY SEA LTD PRIVACY NOTICE

Data Processing Appendix

PRIVACY POLICY OVERVIEW

07/21/2016 Blackbaud CRM 4.0 Revenue US 2016 Blackbaud, Inc. This publication, or any part thereof, may not be reproduced or transmitted in any form

ON24 DATA PROCESSING ADDENDUM

PRIVACY NOTICE issued by DALE Accounting and Tax Services Ltd

Data protection Your privacy is important to us

Privacy Policy Statement

Man and Machine - Data Protection Policy

GDPR DATA PROCESSING ADDENDUM INSTRUCTIONS FOR JOSTLE CUSTOMERS

Appendix Special Conditions for Public Cloud Computing Services Software and Services

DATA PROCESSING ADDENDUM (GDPR and EU Standard Contractual Clauses)

Compensating Balances for Business Loans

Data Protection Notice pursuant to the General Data Protection Regulation (GDPR)

Streamline and integrate your claims processing

Data protection information under the EU General Data Protection Regulation in Italy

Real-time Driver Profiling & Risk Assessment for Usage-based Insurance with StreamAnalytix

Impact of the European General Data Protection Regulation on U.S. M&A

06/13/2017 Blackbaud Altru 4.96 Revenue US 2017 Blackbaud, Inc. This publication, or any part thereof, may not be reproduced or transmitted in any

GDPR Data Processing Addendum (DPA) Instructions for Area 1 Security Customers

PRIVACY NOTICE LAST UPDATED: SEPT. 2018

The Controller and Processor Data Protection Binding Corporate Rules of BMC Software

Data Processing Appendix

OATS to CAT FAQ Mapping Exercise

GDPR CCPA LGPD. Protected information

CLOUDINARY DATA PROCESSING ADDENDUM

The EU s General Data Protection Regulation enters into force on 25 May 2018

All Sorts UK Limited Data Protection Policy 17 th May 2018

Epicor Tax Connect for Eclipse. Release 9.0.3

Data Privacy Statement

Your Data Your Rights

Version Setup and User Manual. For Microsoft Dynamics 365 Business Central

Data Privacy Notice of Sumitomo Mitsui Banking Corporation, Brussels Branch ( SMBC )

ABBOTT DIABETES CARE Effective Date: February 4, 2018

2018 Australian privacy outlook

DATA PROCESSING ADDENDUM

HOW TO EXECUTE THIS DPA:

INVESTOR360 : ADDITIONAL ASSETS

DATA PROTECTION POLICY. AtonLine Limited

Cyber ERM Proposal Form

Implementation Wizard

PRIVACY POLICY: INSURANCE OPERATIONS

Data Processing Addendum

Table of Contents. Genoa User Guide. Policy Setup Bridge User Guide Policy Setup

EU General Data Protection Regulation vs. Swiss Data Protection Act (in the Private Sector 1 )

a publication of the health care compliance association SEPTEMBER 2018

Full Stocktake 3 Partial Stocktake 4. Scanning/ Counting 7. Printing/ Reviewing Variances 9. Finalizing 10. Printing Stock Reports 11.

TRAVELTOKENS SALE PRIVACY POLICY Last updated:

Solar Eclipse Credit Card Authorization. Release 9.0.4

GDPR Data Processing Addendum

DATA PROCESSING ADDENDUM (INCLUDING EU STANDARD CONTRACTUAL CLAUSES)

DATA PROCESSING AGREEMENT

GDPR Essentials. To Meet the May 25th Deadline. FIA Webinar March 1, 2018

Revising policies and procedures under the new EU GDPR

General Data Protection Regulation (GDPR)

Margin Direct User Guide

Questions & Answers (Q&A)

Oracle CRL-Financials Enabled Projects

Amazing Charts PM Billing & Clearinghouse Portal

PRIVACY POLICY FOR CUSTOMER, PROSPECT AND PARTNER REGISTER

Amgen Binding Corporate Rules (BCRs) Public Document

Shared: Budget. Setup Guide. Last Revised: April 13, Applies to these SAP Concur solutions:

GDPR: The Most Frequently Asked Questions: Are the Standard Contractual Clauses Enough?

Cover option 2. The Interplay of HIPAA, Privacy and Data Security Principles, and Health Information Interoperability. Subtitle or Company Name

Member Circular March Implementation of the EU General Data Protection Regulation 2016/679 General Guidance to Members

GDPR FOR PRIVATE EQUITY AND REAL ESTATE

Banks Sheridan Limited Data Protection Privacy Policy 19 May 2018

DATA PROCESSING ADDENDUM

DATA PROCESSING AGREEMENT (GDPR, Privacy Shield, and Standard Contractual Clauses)

WHEDA-Connect Administrators and Users Manual

Data Processing Agreement

THE IMPACT OF THE CALIFORNIA CONSUMER PRIVACY ACT

Oracle. Financials Cloud Implementing Tax. Release 13 (update 17D)

DATA PROCESSING ADDENDUM

EMPLOYEE PRIVACY STATEMENT

Guidance: The new EU General Data Protection Regulation: Implications for Australia

User guide for employers not using our system for assessment

The GDPR Possible Impact on the Life Sciences and Healthcare Sectors

ADDSECURES WAY OF PROCESSING PERSONAL DATA

Claims System Overview

PRIVACY NOTICE Use of Information Data Controller and Data Processor

Know Your Customer Risk Assessment Guide. Release 2.0 May 2014

Transcription:

Consumer Rights Management and GDPR Overview - Salesforce DMP How Salesforce Accelerates Compliance & Customer-Centricity with GDPR Maxwell Anderson, Director Product Management Debra Kadner, Sr. Director Product Management

Agenda 01. Revisit Solution Components 02. Review Technical Options 03. Product Demo 04. Implementation Best Practices 05. Further Resources & Questions

Key Areas of Focus Four key areas of focus across Salesforce Marketing Cloud & Salesforce DMP Right to be Forgotten Consent Management Restriction of Processing Data Portability

Salesforce Commitment to you... We are not your legal counsel - but we are your trusted partner. -Ourcommitment to you is we are going to give you a toolkit that empowers you to make decisions about policy that meet the needs of your business and your customer.

Key GDPR Terms & Concepts

Physical Entities Overview Processing Internet User ( Data Subject aka consumer ) Processing AWS for Salesforce DMP ( Sub-Processor ) DMP Customer ( Controller ) You Processing Salesforce ( Processor ) Salesforce Data Subject : individual the Personal Data relates to (aka consumer) Controller : primarily responsible for Privacy compliance (aka DMP customer) Processor, Sub-processor : act upon instruction of Controller; also responsible for Privacy compliance Processing : any handling of Personal Data

Actions Overview Consumer Rights Management features introduce four new actions in the DMP Salesforce DMP Action Action Meaning Action Response Provide Consent (set) Used to set consent information for a given user input. Blacklists for downstream activities updated. Get Current Consent Status (get) Used to get consent information for a given user input. Consent settings provided to requester. Delete Data (remove) Used to request data deletion for a user. All data deleted in DMP, all consent settings set to false. Get User Data (portability) Used to request all data for a given user. Specific data feed created and delivered to customer via S3.

Methods Overview 5 methods exist to request Consumer Rights Management actions </> API SDK JS Tag File DMP UI

Action Impact Overview When an action is taken, what does it apply to? 1 Device Level Defaults 2 Bridge Key Level Actions Supported Action Request Customer ID / User ID / Bridge Key 3 Predictive CDIM Actions Not Supported Device 1 Targeting = YES Device 2 Targeting = YES Device 3 Targeting = YES

Action Impact Overview When an action is taken, what does it apply to? Device + Organization Organization Linking Supported Legal Standardization Requirements Customer responsible for ensuring legal standardization across organization / organizations.

Consent Management

Consent Flags Overview DMP functionality gated based on consent for 6 activities Salesforce DMP Term Interpretation Data Collection Collecting and storing events. Targeting Sending a device to a 3rd party for campaign execution or other uses. Analytics Any processing of data. Cross Device Using data to link one device to another. Sharing Data Sharing data or linkages with 3rd parties. Reidentification Taking data collected with a pseudonymous or anonymous key and merging it to a PII key.

Consent Management Basics 1. All devices in each organization must have a consent setting for all flags - null consent is not possible. 2. Customer responsible for obtaining consent and passing the consent to the DMP through one of the 5 methods. 3. Regardless of customer actions DMP functionality is gated based on consent settings for each device within each organization.

Understanding Consent Sources First Party Direct Consent: - Direct consent obtained directly from a consumer and passed to the DMP - Highest signal quality - Applies to - Files - SDK - API - UI

Understanding Consent Sources Second Party Indirect Consent: - Used when direct consent is absent - Inherited from customer defined configuration - Applies only to users in - ad_impression.gif heartbeat.gif DT 2.0 media_analytics.gif event.gif

Understanding Consent Sources Third Party Indirect Consent: - Used when second party and first party consent do not exist - Applies to all users from 3P data providers - Data providers contractually obligated to provide consented data for - Targeting Analytics

Understanding Consent Sources Industry Opt Out: - Addresses opt outs from NAI, DAA, and DMP Privacy Page - Applies across all organizations - Trumps any other consent source

Unknown Consent & Policy Regime Unknown consent is interpreted differently based on policy regime Policy Regime: A specific set of privacy policy regulations that apply for a specific device. ` GDPR Global Standard

Policy Regime Association Each device has an associated policy regime within each account, but how? All devices in account associated with a single Organizat ion Level policy regime. Each device in account associated based on geographic region OR customer designation. User Level

Unknown Consent - Policy Regime Based Defaults Consent defaults are assigned based on policy regime in absence of other signals GDPR Global Standard Data Collection: Data Collection: Targeting: Targeting: Analytics: Analytics: Cross Device: Cross Device: Data Sharing: Data Sharing: Reidentification: Reidentification:

Consent Resolution Hierarchy Consent is based on the most recent signal from the highest priority consent source Industry Opt Out Example 1: First Party Consent Used Priority First Party (Direct) Second Party (Indirect) 3rd Party (Indirect) Unknown Recency

Consent Resolution Hierarchy Consent is based on the most recent signal from the highest priority consent source Example 2: Second Party Consent Used Industry Opt Out Priority First Party (Direct) Second Party (Indirect) 3rd Party (Indirect) Unknown Recency

Consent Resolution Hierarchy Consent is based on the most recent signal from the highest priority consent source Example 3: Third Party Consent Used Industry Opt Out Priority First Party (Direct) Second Party (Indirect) 3rd Party (Indirect) Unknown Recency

Consent Resolution Hierarchy Consent is based on the most recent signal from the highest priority consent source Example 4: Opt Out Honored Industry Opt Out Priority First Party (Direct) Second Party (Indirect) 3rd Party (Indirect) Unknown Recency

Consent Conflicts Some consent signals have dependencies which can result in conflicting consent settings Conflict Example: Analytics Targeting, Cross Device, Data Sharing, and Reidentification all depend on positive analytics consent. Targeting Cross Device Data Sharing Reidentification A device cannot consent to targeting without consenting to analytics.

Consent Conflict Resolution Some consent signals have dependencies Analytics Analytics Positive R esolution Targeting Cross Device Data Sharing Reidentification Negative Resolution Targeting Cross Device Data Sharing Reidentification

Consent Backfill Overview Optional method for addressing day zero population fluctuations 1. All devices in account set to consent settings per designation in UI. This can be based on your interpretation of rights / consent from pre-gdpr worldview. 2. Helps ensure populations stay high while you work through consent implementations. Settings applied once, and never repeated again. 3. Customer responsible for defining with their legal team which approach makes sense.

Data Deletion & Portability

Data Deletion Overview - After requested ALL data in the DMP is deleted for that account - Data not deleted includes consent history (aka audit logs) and BK-KUID relationships - this is due to audit purposes

Data Portability Overview - After requested ALL relevant raw data in the DMP will be delivered to customer for the requesting user - Files delivered within 14 days - Customer responsible for delivering to the consumer / data subject

Method Overview

Methods Overview 5 methods exist to request Consumer Rights Management actions Considerations when determining the appropriate method Ease of implementation effort and maintenance (automated vs manual) Speed of processing consent signal (real time vs batch) Dependencies (requires existing DMP infrastructure or not) Real-time API SDK JS Tag DMP UI File Batch Manual Automated

Method: API, SDK, and JavaScript Consent Tag API, SDK and Consent Tags are the recommended method for passing consent signals where possible Ease of implementation Fastest processing of consent signal Recency rules inherently reflect the user preference Krux('ns:mynamespace', 'consent:set', { idt: 'device', dt: 'idfa', idv: '6D92078A-8246-4BA4-AE5B-76104861E7DC', dc: true, al: true, tg: true, cd: true, sh: false, re: false }); Note: Consent Tags require DMP Control Tags on page https://consumer.krxd.net/consent/set/xxxxxxx-xxxx-xxxx-xxxx-xxxxxxxx?idt=device&dt=kxcookie&pr=gdpr&dc=1&al=1&tg=1&cd=1&sh=0&re=0

Method: Consent File File uploads are supported, but put ongoing burden on the organization to ensure timely delivery and proper file format Consent files uploaded to S3 Only records in valid format will be processed Data is processed daily, so requests are not registered until after processing is complete Recency will be determined by the record timestamp (if submitted) or the processing timestamp of the file device^kxcookie^abcdef123^set^global^dc=1&tg=1&al=1&cd=1&sh=0&re=1^1515471711277000 device^idfa^6d92078a-8246-4ba4-ae5b-76104861e7dc^set^gdpr^dc=1&tg=0&al=0&cd=1&sh=0&re=0^ bk^email_sha256^f660ab912ec121d1b1e928a0bb4bc61b15f5ad44d5efdc4e1c92a25e99b8e44a^remove^^^

Method: DMP UI DMP UI requires manual administration, and recommended only for one-off cases This method is intended to support set, remove, and portability requests coming via other sources such as support tickets Manual recording of identifiers in UI is inherently error-prone Recency will be determined by when UI Administrator clicks Submit

Audit Logs Overview - All activities triggered (regardless of method) are stored in audit logs - Audit logs delivered to customer daily (S3) and can be used for troubleshooting or general auditing Device: idt^dt^idv^kuid^orguuid^consentsource^ts^{flags}^action^pr^prsrc^ip^reqid Bridge Key: idt^dt^idv^kuid^orguuid^consentsource^ts^{flags}^action^pr^prsrc^ip^reqid

UI Demo

Implementation Best Practices

Implementation Key Takeaway You MUST pass consent signals as functionality will be gated regardless.

General checklist and timing of activities May 25, 2018 Daily/Weekly INITIAL SETUP Define company approach and collect consent 1. 2. 3. 4. 5. Define company approach to GDPR Setup and confirm organization configuration settings Select and implement UX for consent Connect consent experience to the Salesforce DMP Review SuperTag and mark applicable tags Ad hoc REVIEW & ADJUST Modify default settings/approach if required 1. 2. 3. View Consent Reports to understand consent distribution Monitor populations within the DMP for population drop-offs Adjust configuration settings based on risk profile and population sizes ONGOING MAINTENANCE Revisit settings with changing business 1. 2. 3. Link any new organizations during the DMP implementation phase Change Policy Regime Association based on new regulations Ensure SuperTags are marked correctly for data collection where applicable

Review/Confirm Default Settings INITIAL SETUP - Policy Regime Association = User Level, GDPR Conflict Overrides = Consent flags set to false to avoid conflicts Non-consented data collection via 2nd party sources will be deleted nightly 2nd Party Consent Defaults = data collection, analytics, targeting, cross device are true, data sharing and reidentification are false (same as Global Standard Policy Regime defaults)

Linking Organizations INITIAL SETUP How are organizations delineated and managed? Do organizations span different policy regimes? Is consent management centralized? BU 1 Example 1 Example 2 Parent Org Parent Org BU 2 BU 3a BU 3b Market 1 Market 2 Market 3 Market 4 Market 5

Defaults Determine Data Flow and Usability INITIAL SETUP Thoughtful implementation can mitigate collection risk Collection Filter Best Practices Policy Regime Association Consent Conflict Resolution 2nd Party Defaults User True All On Org & GDPR False All Off Reduce Unknown devices by getting consent, and using user level setting instead of organization level Deploy clearly-defined privacy page to reduce the likelihood of conflict Drive 1P traffic to explicitly obtain consent

Importance of Backfill Settings Vary by Implementation In the absence of backfill, devices will be considered to as unknown Setting Influence Segment Lookback Window Amount of Historical Data Return Visitor Status 180+ days Large Seldom 90 days Small Often Real-time segments and short-term windows don t rely on rich historical data Newer implementations have less historical data Frequent visitors provide quick opportunities to get consent post May 25 INITIAL SETUP

Select and Implement UX for Consent Requires coordination across legal, UX team, technical team, DMP Administrator INITIAL SETUP Determine consent model Create UX around consent Document mapping between privacy page and consent signals Determine process, SLA and audit records required for obtaining and passing consent For File and UI-based consent process, determine owner and process for passing consent </> API SDK Salesforce DMP Consumer Rights Management S3 UI

UX Implementation Considerations INITIAL SETUP Showing user current settings requires GET consent method 4 hour deltas between SET and GET showing the recent settings via API/SDK/JSTag Complete consent queries are required else default to false - consider implementing a save button with checks to avoid possible conflicts and partial sets Contemplate SLAs in defining UX

Specifying and Connecting Consent Model Determine the level of consent granularity that is appropriate for your business 1:1 Consent Model Example 1:Many Consent Model Example Hybrid Consent Model Example Please provide your consent to the terms and use of this website Please provide your consent Please provide your consent Data Collection Analytics Targeting Cross Device Data Sharing Reidentification dc: 1 al: 1 tg:1 cd:1 sh:0 re:0 I agree dc: 1 al: 1 tg:1 cd:1 sh:1 re:1 Interest-based advertising Cross-device ID Matching dc: 1 al: 1 tg:1 cd:0 sh:1 re:1 INITIAL SETUP

Ensure Process Covers All Consent Modes Define approach and determine consent model Document process, Consent mapping, Consent audit trails, and SLAs for offline requests INITIAL SETUP Maintain audit logs Build UX Implement API/SDK/JS and Connect to UX DMP ADMIN Train DMP Admin on Consent UI Fulfill requests via UI OFFLINE TECH ONLINE TECH UX LEGAL May 25, 2018 Establish S3 Access and File Specs Upload Files as requested

Stepping through implementation scenarios How setting defaults and implementation decisions affect data flow and population size What is your main source of traffic? (1P / 2P / 3P) Where does your traffic originate? (EU / Other) Are you planning on passing consent? (Y / N) You MUST pass consent signals as functionality will be gated regardless.

Scenario 1: Tight defaults, no consent integration Populations will be dramatically reduced Consent Source 1P Traffic Source EU & Other Policy Regime Level Organization Data Collection: Analytics: Targeting: Cross Device: Policy Regime GDPR Passing Consent N Backfill Set N Data Sharing: Reidentification: All traffic is treated like EU, and in the absence of consent, all flags are set to FALSE

Scenario 2: Standard defaults, no consent integration Data collection and use will vary based on organization traffic Conset Source 1P Traffic Source EU & Other Policy Regime Level User Data Collection: Analytics: Targeting: Cross Device: Policy Regime GDPR Passing Consent N Backfill Set N Data Sharing: Reidentification: 30% traffic originating outside EU will follow Global Standard consent flags

Scenario 3: Standard defaults, backfill, no consent integration Backfill settings defaults will influence data capture and use Consent Source 1P Traffic Source EU & Other Policy Regime Level User Data Collection: Analytics: Targeting: Cross Device: Policy Regime GDPR Passing Consent N Backfill Set Y Data Sharing: Reidentification: Backfilling allows for more devices to be counted for consent

Scenario 4: Establish backfill and pass consent Backfill and consent efforts allow for more opportunities for data capture and use Consent Source 1P Traffic Source EU & Other Policy Regime Level User Data Collection: Analytics: Targeting: Cross Device: Policy Regime GDPR Passing Consent Y Backfill Set Y Data Sharing: Reidentification: This assumes all devices came to 1st party property and ⅔ accept 1P consent across all flags

Scenario 5: Pass consent despite limited EU traffic Consent efforts in place, but EU unknown devices not appropriately treated Consent Source 1P & 2P Traffic Source EU & Other Policy Regime Level User Data Collection: Analytics: Targeting: Cross Device: Policy Regime Global Standard Passing Consent Y Backfill Set Y 2P traffic drives consent across some devices Data Sharing: Reidentification:

Scenario 6: Rely on defaults but may have legal implications 2nd party defaults drive consent, but EU unknown devices not appropriately treated Consent Source 1P & 2P Traffic Source EU & Other Policy Regime Level Org Data Collection: Analytics: Targeting: Cross Device: Policy Regime Global Standard Passing Consent N Backfill Set Y Data Sharing: Reidentification: New 1P devices are assigned Global Standard consent flags, irrespective of location

Review SuperTags for Data Collection INITIAL SETUP Train DMP SuperTag Administrator(s) on new SuperTag control Plan a tag audit and review process in advance of the May 25th timeline based on the number of tags your company is firing via SuperTag Update your tag deployment process to includes data collection reporting and verification Determine any additional audit trail you may want to maintain for inbound tag deployment requests

Monitor Reports and Populations Post-launch DMP population drop-offs may illuminate gaps in consent framework What is the consented population? Are the defaults correct? Is consent resolution appropriate? Are organization links constraining non-eu business? REVIEW ADJUST

Revisit Settings Based on Changes in Business Changes should be made ad hoc based on changing business needs New organizations may need to be linked Defaults may need to be adjusted SuperTags should be evaluated and audited Parent Org BU 1 BU 2 BU 3 Market 1? BU 3 Market 2 ONGOING

DATA INGESTION AUDIENCE ANALYTICS AND SEGMENTATION Build audience segment with 1st party data X X X X X

Data Rectification GDPR Article 16 The data subject shall have the right to obtain from the controller without undue delay the rectification of inaccurate personal data concerning him or her. Taking into account the purposes of the processing, the data subject shall have the right to have incomplete personal data completed, including by means of providing a supplementary statement.

Data Subject Request The data subject shall have the right to obtain from the controller confirmation as to whether or not personal data concerning him or her are being processed, and, where that is the case, access to that personal data and certain other information, such as the purposes of the processing and the recipients of the personal data, among others. GDPR Article 15

Security GDPR Articles 32 The controller and the processor shall implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk.

International Transfers of Data GDPR Articles 44-50 Any transfer of personal data which are undergoing processing or are intended for processing after transfer to a third country (i.e. outside of the European Economic Area) shall take place only if: - that country has received a decision from the European Commission that it is deemed to be adequate ; - there are appropriate legal safeguards in place (e.g. Binding Corporate Rules, Standard Contractual Clauses, etc.); or - there is an applicable derogation (e.g. consent, necessary for the performance of a contract)

2024 © financedocbox.com Privacy Policy | Terms of Service | Feedback