By 2023, 75 percent of the world's population will be under consent-based privacy laws. In the US, this includes four new state laws from Colorado, Virginia, Connecticut, and Utah, as well as updates to California’s CCPA law (CPRA).
One thing is clear: regulations are taking effect, and businesses are not ready for them. And these new laws are just the beginning of a trend that combines commercial interest, individual freedom and national security.
Consumers will have new rights to opt out of sharing personal data. This is the area where most businesses are lacking, because data leaks far more than they realize. It is an invisible threat with huge consequences for businesses that don’t take it seriously. Getting it right however, creates a new opportunity to build trust with your customers and maintain your brand's reputation.
If you look at your current data practices, I can almost guarantee there will be holes. Data leakage usually occurs unintentionally. You may be unaware of first party data trickling out through tags, pixels and beacons on web pages. You may not realize a software patch you recently deployed impairs the transmission of consumer opt-outs. Or your vendors may be careless in their policies. Consumers frequently know before you do, but by then it’s too late.
There are two clauses in the CCPA that many businesses are not following, and legally should be. The good news is that the new state laws generally seek to be interoperable. In other words, as more states follow suit, they’re likely to have many similarities.
By tweaking your data practices to adhere to the following two clauses, you’ll not only protect yourself from legal action, but also be more prepared for future data privacy laws.
A critical clause in the CCPA states that businesses must provide two or more approved methods for opting out of the sale of personal data. The term “selling” will be replaced with “sharing” in the updated CPRA to remove any ambiguity on this subject. When looking to see who is following the rules and who isn’t, a good place to start is with blue chip companies.
In Q2, We conducted research on the opt out methods used by the Fortune 100 and found that only 52 of the companies use two or more methods, and only 33 of them used two or more approved methods. This has already likely changed since Sephora was issued a fine for non-compliance in late August. If the big players with ample resources aren’t getting it right, it’s a strong indication that most other companies aren’t either.
That’s not to say these companies aren’t trying to do the right thing. What they’re doing isn’t up to code, especially when you add in how ineffective these methods can be.
There are five common methods used by US enterprises to opt-out of data sharing:
Industry consortia are the most technically reliable, but California has suggested they may not be sufficient. Web forms are effective when consumers ask company representatives to take certain actions, such as access to or deletion of data. Unfortunately, web forms fail roughly 50 percent of the time when they are used to trigger actions on web browsers, due to mistakes in configuration and implementation. CMPs can usually capture opt-out consent from site visitors, yet consent fails over one-third of the time when transmitted to third party vendors. We call these failures dark signals.
User-enabled browser tools like Global Privacy Control (GPC) are now mandated by California. Attorney General Rob Bonta’s recent enforcement actions demonstrate the consequences of ignoring this signal. Sephora was fined $1.2 million in part for failing to heed this signal.
So how do you protect your business and your customers? Do your due diligence and identify your blind spots. Make it as easy as possible for your customers to opt out and use methods that reflect how you interact with them. Providing a 1-800 number is questionable if you’re sharing data about non logged in visitors online. It is extraordinarily difficult for a call center to connect unauthenticated customers to online profiles.
Once you’ve chosen the best methods for your customers, consider using a technology to audit your methods and identify weak links. That way, if data is leaking, you can do something about it.
A recent addition to the CCPA regulations suggests businesses should regularly audit their partners’ data practices to ensure that shared data is used in a lawful manner. This means businesses can no longer turn a blind eye to the unethical practices of their partners (or partners' partners), or rely on contractual agreements that pass along liability.
We’ve seen cases where data was maliciously used by partners four or five times removed. These bad actors behave like credit card skimmers on gas pumps. In this case, they skim personal data rather than money, because your consumers’ data is useful to malware providers and even your competitors.
Rick Arney, co-author of the CCPA and CPRA, told us: “It’s time for businesses to truly put their consumers’ best interests first, and this new clause stops businesses from shirking their duties. That’s why it states that companies must comply with “not just the letter of the law, but the spirit of the law” too.”
The law is clear: If you share the data you’re entrusted with, you are on the hook for how it is used internally and externally. If you do not audit your partners’ systems, you can't claim you didn’t know they were violating the CCPA. This supersedes indemnification clauses in your business contracts. Fortunately, software can automate monitoring for you.
If following the law and avoiding regulatory action isn’t reason enough to put these changes into practice, consider your business reputation. We’re in the era of the consumer, governed by trust, and the use of personal information plays a big part in your relationship.
According to the 2022 Adobe Trust Report, 69% of customers will stop buying from companies who use their data without permission, and 68% will do the same if their data preferences are disrespected. The general population is more savvy about online advertising that many give them credit for, and they know when their personal information is being used without their consent.
Surveys suggest that companies are more aware of their lack of data security than we might think. According to KPMG, 62% of business leaders say they should do more to protect data, 33% say consumers should be concerned with how their data is used, and 29% admit their company sometimes uses unethical data collection methods. The era of excuses is over.
Being at the forefront of consumer protection is an opportunity to be a leader and improve your brand's reputation. And it doesn’t take much. Small steps are better than none and are acknowledged by enforcers. Colorado Attorney General Philip Weiser stated “our number one priority is those who are wilfully non complying with the law. That is where our blood is going to most boil.”
Connecticut State Senator James Maroney, who wrote Connecticut’s privacy law, made a similar point when he said their attorney general is not looking for “foot faults or little fouls.”
The intent is not to harm businesses. The laws are here to protect consumers.
The arrival of CAN-SPAM in 2003 after email users demanded more privacy was a huge shift. Now opt-out provisions are expected. The same thing is happening with privacy in digital advertising. Embrace the changes now to ensure and your consumers will thank you for it.
Boltive Launches New Product Ad Monitor: Revolutionizing Ad Insights with AI-Powered Discovery Engine
Go to Post
Text LinkIAPP GPS - Our Thoughts, Part 2: What Regulators Want Us To Do – The Value of Proactivity
Go to Post
Text LinkIAPP GPS - Our Thoughts, Part 1: What Regulators Want Us To Know – Busting Common Myths
Go to Post
Text LinkPrioritizing Children's Privacy: Strategies for Ethical Advertising and the Use of AI
Go to Post
Text LinkBusiness Ninjas Podcast - Secure Protection for Advertisers Against Invasive Media
Go to Post
Text LinkBoltive and Slalom Consulting Join Forces to Bolster Data Privacy: A Powerful Alliance Against Emerging Risks
Go to Post
Text LinkAutomating Threat Detection: How Boltive is Harnessing Artificial Intelligence to Reshape Ad Security
Go to Post
Text LinkForbes Article - The Privacy Prescription: Rules Restricting Health Data Use And How To Employ More Holistic Security Measures
Go to Post
Text LinkOur CEO, Dan Frechtling, featured on Leadership Live podcast with Daphna Horowitz
Go to Post
Text LinkWhy Data Privacy is Being Overhauled in 2023: Dan Frechtling featured on the Security Weekly Productions podcast
Go to Post
Text LinkOur Director of Product, Christine Desrosiers, discusses the current state of Ad Tech with Brand Safety Institute
Go to Post
Text LinkGeekwire wrote about the heartening link that brought our CEO and CFO to Boltive.
Go to Post
Text LinkHow do businesses handle more consumer demand for proactive control over their personal information when regulatory bodies are giving them what they want?
Read MoreWith U.S. privacy laws in flux, Boltive's Privacy Guard simplifies compliance and empowers consumers with control over their data.
Read MoreEmpowering Brands and Publishers with Advanced AI Technology for Real-Time Ad Compliance and Enhanced Security
Read MoreLearn how BuzzFeed expanded their partnership with Boltive to protect consumers on their mobile app.
Read MoreReview the latest ad security data gathered by Boltive's Ad Lightning product.
Read MoreFrom ad security to data privacy, discover all of the major milestones Boltive has achieved over the years.
Read MoreCatch up on Part 2 of Christine Desrosiers’s thoughts from IAPP GPS as she dives into What Regulators Want Us To Do.
Read MoreFollow along as Boltive team member, Christine Desrosiers, shares her notes from the IAPP Global Privacy Risk Summit.
Read MoreIn this blog post, we’ll delve into the world of deceptive non-compliant ads discussing how our Boltive AI Engine is helping combat this problem.
Read MoreDiscover how the Boltive Object Identification Engine revolutionizes the way we manage tags and cookies, making manual searches a thing of the past.
Read MoreBoltive and CG Infinity have partnered to provide a data privacy solution in a time where privacy regulations are beginning to really ramp up.
Read MoreDiscover the secrets behind cookies, pixels, and tags and gain a deeper understanding of these tools and how they affect your data privacy practices.
Read MoreAs children and teens become more exposed to the dangers of social media and online advertising, regulators are stepping in to help protect them.
Read MoreCatch up on the latest updates from the ScamClub Active Threat that the Ad Lightning product has identified.
Read MoreExplore Boltive’s use of artificial intelligence in the world of ad security and the ability to quickly identify and mitigate unwanted content.
Read MoreRead how Sovrn Holdings leveraged Ad Lightning capabilities to defend against offensive ads.
Read MoreWith new state regulations around consumer data collection going into effect in 2024, top companies are taking action to ensure they are staying compliant.
Read MoreAre health websites sharing personal or sensitive data? Read this report from Boltive and Consumer Reports on our findings.
Read MoreDetected and blocked a reoccurring redirect campaign impacting 50 domains.
Read MoreRedirect campaign targeting both mobile and desktop users with fake update messages.
Read MoreRedirect campaign spanning almost 1,500 sites over the past 7-days.
Read MoreFraudsters hosting obfuscated scripts on AWS & Yahoo platforms, attempted to deliver malicious redirects to over 300 different domains.
Read MoreThis malicious campaign has two methods of triggering the redirect.
Read MoreReview the ad security data gathered by Boltive's Ad Lightning product in this month's Risk Report.
Read MoreCatch up on the latest Active Threats that the Ad Lightning product has identified.
Read MoreWith the TCF v2.2 being released in November 2023 and an updated GPP coming in January 2024, are you prepared to be compliant with these new releases.
Read MoreBoltive CEO Dan Frechtling joins Kelsey McDonald on the WriteForMe podcast "Business Ninjas" to discuss data privacy.
Read MoreThe new partnership provides customers with the ability to build privacy programs that stand up to growing scrutiny in data privacy regulations and evolving privacy threats.
Read MoreCatch up on the latest Active Threats that the Ad Lightning product has identified.
Read MoreThe Boltive team is leveraging the use of Artificial Intelligence to enhance the way publishers identify and mitigate threats.
Read MoreThough there are laws in place to protect health data, there are many compliance loopholes when it comes to data sharing.
Read MoreThough there are laws addressing Children's Data Privacy, there is much room for improvement to protect them.
Read MoreAd Security threats come in many forms - are you prepared to identify and address them?
Read MoreWith new regulations recently released and more coming, are your privacy programs and technologies ready?
Read MoreIn this More Than a Refresh episode the panel takes a deep dive into Digital Privacy. Join along as the group further explore data privacy regulations and how to best combat non-compliance.
Read MoreBoltive CEO Dan Frechtling joins Intuizi's Ron Donaire on The Data Deep Dive to discuss Boltive and how it fits into the Privacy world.
Read MoreTechnology Council Member and Boltive CEO, Dan Frechtling dives into the evolution of data privacy.
Read MoreChristine Desrosiers, our Director of Product, shares an insightful and informative whitepaper on the current state of privacy compliance.
Read MoreDan talks about his journey from marketing to data privacy. He is on a mission to protect consumers from invasive media. He shares his personal story about being tracked online and how the hyper targeting he was victim of started him on his journey to Boltive.
Read MoreToday on That Tech Pod, Laura and Kevin speak with CCPA & CPRA Co-author Rich Arney and Boltive CEO Dan Frechtling.
Read MoreGiven the uncertain macroeconomic climate, the outlook for digital ad spending is spotty at best. Over the last year we have seen that large advertisers are pulling back budgets, and it’s looking like that will only continue this year.
Read MoreOur CEO Boltive, Dan Frechtling, has been accepted into Forbes Technology Council, an invitation-only community for world-class CEOs, CIOs, CTOs, and other technology executives
Read MoreDon’t miss this episode of Leadership Live where Dan Frechtling discusses loss, leadership, and data privacy – what every CEO needs to think about.
Read MoreGet the scoop about why Sephora was recently fined, and why data privacy is being overhauled in 2023
Read MoreAssuming CMPs are infallible could be detrimental to your data privacy efforts, resulting in broken relationships with your consumers, damaged business reputations, and hefty fines.
Read MoreOur Director of Product, Christine Desrosiers, discusses the current state of Ad Tech with Brand Safety Institute
Read MoreBoltive featured in Quirk's Media article on how to comply with changing data privacy regulation
Read MoreGeekwire wrote about the heartening link that brought our CEO and CFO to Boltive.
Read MoreBoltive's Privacy Guard was recently featured in Consumer Reports
Read MoreWe recently published our 2021 Q2 Malware Recap, so take a look at what has been plaguing website publishers and users this quarter.
Read MoreSix months ago, we partnered with Setupad and replaced their legacy ad quality solution to improve their coverage against bad ads.
Read MoreCheck out our our 2021 Guide to Blocking Bad Ads and Ensuring Ad Quality – a comprehensive roadmap that platforms and publishers can utilize to successfully navigate the frontlines in the battle of ad quality.
Read MoreCheck out our recap of the state of ad quality in Q1 2021
Read MoreWe're delighted to tell you about the significant uptick Ad Lightning has seen in platform partnerships in recent months.
Read MoreWe place so much importance on NPS, I wanted to take a few minutes to explain what it is and how we use it at Ad Lightning
Read More2020 was historic, and I don’t mean that in a good way. But there’s always a silver lining, even in the most trying of times.
Read MoreFraudsters were still up to no good in Q4, relying on everything from old standards to newer malicious horizons as their assault on publishers, platforms, consumers, and stakeholders continued full throttle.
Read MoreAd Lightning's video QA tool maximizes publisher ROI by identifying issues before ads go live. Fast, easy, and effective. Learn more at Boltive.
Read MoreThis is what Ad Lightning is providing to the ecosystem with our Look at the Digital Advertising Industry in 2021 – a prescient, thoughtful, practical group of insights that publishers and platforms can use to successfully navigate an uncertain future.
Read MoreWe take a moment to revisit a handful of topics discussed in our 2020 State of Ad Quality report, how they played out during the year, and look at what publishers can do to protect themselves from the bad guys.
Read MoreWe're going to show you some of the most common gaps in the ad quality armor we’ve seen in the ecosystem and discuss what you can do to fill them.
Read MoreChanges to CCPA Put Retargeting in the Regulatory Bullseye
Read MoreCheck out a presentation our CEO, Dan Frechtling, gave at the recent IAPP conference.
Read MoreHaving a Consent Management Platform (CMP) does not let you off the hook if your partners accidently (or intentionally) expose your customers’ data. You need to ensure information sharing consent is given in 4 key areas or you risk brand and profit damage.
Read MoreOnline ads can violate privacy in a number of ways, learn more about how user data may be at risk
Read MoreUnderstand the ad ecosystem and how Privacy Guard's technology provides tailored solutions to detect and resolve privacy issues.
Read MoreLearn more about how Boltive's new tool Privacy Guard delivers key insights you need to keep your consumer data -- and your brand reputation -- safe.
Read MoreGet an overview of the online ad ecosystem, and how Boltive's new tool Privacy Guard can help keep your consumer data -- and your brand reputation -- safe.
Read More63 of F100 Companies Don’t Meet CCPA Standards, 33 Use Methods That Often Fail
Read MoreDid you know 15-30% of consent opt-outs designed to protect personal data routinely fail?
Read MoreAn interview with Rick Arney, board member of Californians for Consumer Privacy (CCP), and co-author of CCPA and CPRA
Read MoreAn interview with Rick Arney, board member of Californians for Consumer Privacy (CCP), and co-author of CCPA and CPRA
Read MoreThe ad ecosystem is like the wild west. Legitimate advertisers and publishers are leaving themselves and their partners exposed to consequences due to non-compliance.
Read MoreThe perception and tolerance of digital advertising is changing.
Read MoreOur forecast of what's to come in 2022
Read MoreWhile 2023 may seem like a long way off, it will come around quicker than you think. It is never too early to prepare - particularly when it comes to updating your data privacy processes to remain compliant.
Read MoreThere has been a lot going on in the world of ad privacy. Here’s what you may have missed this quarter.
Read MoreAs a member of the Coalition of Better Ads, Google has long been an advocate for blocking ads that hamper the user experience. But they took in one step further in fall 2020.
Read MoreCurrent technologies and methods used today routinely interfere with Consumer Rights to Opt-Out. As important as it is to address dark patterns, it’s just as important to address dark signals.
Read MoreOur Privacy Guard solution proves to be a success by identifying critical problems for Fortune 500 brands.
Read More3 To-Dos to Ensure Compliance & Stop Ad Privacy Violations
Read MoreSeveral key takeaways from presentations related to California regulations.
Read MoreWednesday, August 24 marked the end of the quiet period for enforcement of the California Consumer Privacy Act (CCPA).
Read MoreAdvertisers and brands are liable for any unauthorized data sharing in their digital advertising campaigns. Comply with regulations and protect your reputation.
Read MoreThe digital advertising ecosystem is large and complex. And it’s expanding.
Read MoreStay ahead of the game with our article on 5 Ad Security Malware Trends for 2022 and Beyond. Protect your business from evolving threats. Read now on Boltive.
Read MoreWe recently published our 2022 Q1 Ad Quality Report, so take a look at the key trends we’ve identified and how publisher’s are fighting back.
Read MoreWe're fresh out of content!
All the news that's fit to print.
