What is GDPR and is MNTN compliant?
GDPR is a new set of rules designed to give EU citizens more control over their personal data. It aims to simplify the regulatory environment for business so both citizens and businesses in the European Union can fully benefit from the digital economy.
The reforms are designed to reflect the world we are living in now, and brings laws and obligations - including those around personal data, privacy and consent - across Europe up to speed for the internet-connected age.
Fundamentally, almost every aspect of our lives revolves around data. From social media companies, to banks, retailers, and governments -- almost every service we use involves the collection and analysis of our personal data. Your name, address, credit card number and more all collected, analyzed and, perhaps most importantly, stored by organizations.
The GDPR was approved and adopted by the EU Parliament in April 2016. The regulation took effect after a two-year transition period and, unlike a Directive, did not require any legislation to be passed by government. GDPR came into force on 25th May 2018.
The GDPR not only applies to organizations located within the EU but also applies to organizations located outside of the EU if they offer goods or services to, or monitor the behavior of, EU data subjects. It applies to all companies processing and holding the personal data of data subjects residing in the European Union, regardless of the company’s location.
MNTN is considered a joint controller by the GDPR standards. A joint controller means MNTN (jointly with the advertiser) is responsible for consent collection, consent tracking, and determine how the data is used and processed.
MNTN took a series of steps to be compliant with the GDPR. See below what you need to do, and what we have already done.
What did MNTN do to become compliant with GDPR?
MNTN has updated privacy policies to reflect the GDPR as well as secured Data Protection Agreements with all partners. MNTN appointed a Chief Data Officer (as required by the GDPR) to oversee all data collection and management (firstname.lastname@example.org). All data protection and collection practices are monitored and documented. MNTN also integrated the IAB GDPR Transparency & Consent Framework. This framework communicates a users consent through the entire ad buying ecosystem.