Simplifying Data Compliance with OpenGDPR

A new initiative from Braze, Appsflyer, Amplitude, and mParticle will help companies comply with the GDPR

Share on FacebookTweet about this on TwitterShare on LinkedIn

The clock is ticking.

Beginning May 25th, the European Union’s new General Data Protection Regulation (GDPR) will be enforced globally, fundamentally changing the way global brands treat personal data. The GDPR gives EU nationals increased control over their personal data and requires companies to tell consumers how their data will be used and shared and imposes massive potential fines for companies that fail to comply with the regulation—those penalties can be up to 20 million euros or 4% of global revenue, whichever is greater. (Facebook, for instance, could be on the hook for up to $2.8 billion.)

So what happens when one of your EU customers reaches out to let you know that they want to exercise one of their rights (seeing the data you’ve collected on them, erasing it, or a number of others) under the new law? Under the GDPR, you have to take full and effective action on these requests within one month of receiving them, or run the risk of getting fined. That’s true whether you keep their data in a single system or leverage it across a range of technologies—and whether you’re receiving a handful of these requests or thousands. (Or millions!)

To make it easier for brands to comply with data deletion requests under the GDPR, Braze (formerly Appboy) is pleased to announce that we’ve joined with three key partners to establish a new, open compliance framework: OpenGDPR.

OpenGDPR: Making compliance simpler, more intuitive, and more streamlined

To comply effectively with the GDPR, brands need a simple, scalable way to respond when their customers ask to have personal data deleted. The OpenGDPR framework—backed by Braze, Amplitude, Appsflyer, and mParticle—is designed to make that process easier.

The OpenGDPR framework includes a public API specification and related best practices that are built to help companies manage GDPR-related deletion requests across the multiple technologies that make up their partner ecosystems in a programmatic, sustainable manner—and to do it in a near real-time way. That makes it possible, for instance, for a brand to respond to an EU data subject’s request to have their personal data deleted across all participating platforms, instead of having to repeat the task across each technology used to process that individual’s personal data.

OpenGDPR supports brands’ efforts to protect consumers’ data privacy rights under the GDPR by making it simpler for those brands to manage consumer data requests in an efficient, reliable way, and to encourage data-related interoperability across the different technologies they use. And because the OpenGDPR working group features leading technology platforms focused on customer engagement (Braze), attribution (Appsflyer), analytics (Amplitude), and data management (mParticle), brands can benefit from a comprehensive, flexible framework designed to help them navigate the GDPR landscape.

Anything else?

To learn more about OpenGDPR, visit the framework’s official website. If you’re still getting up to speed on GDPR and what it means for your business, check out our exclusive resources:

Share this post


Share on FacebookTweet about this on TwitterShare on LinkedIn