Liftoff and GDPR

Getting Serious with GDPR

By Morgan Friberg | February 23, 2018

Liftoff does business with a wide variety of app marketers from all corners of the globe. We have teams on three continents, including the Americas, Europe and Asia. As a global company with clients in many different countries, and a core platform delivering ads programmatically, we process lots and lots of data.

As such, with May just around the corner, Liftoff is actively preparing for the release of the General Data Protection Regulation (GDPR), an important regulation designed to ensure the privacy of consumer data in Europe.

During the implementation period for the Regulation, we are evaluating the new customer data protection requirements and updating our data management processes and infrastructure to ensure that we handle customer data in compliance with the law by the May 25, 2018 deadline.

What is GDPR?

“The EU General Data Protection Regulation (GDPR) is the most important change in data privacy regulation in 20 years.”

The General Data Protection Regulation (GDPR) is a regulation intended to strengthen and unify data protection for everyone within the European Union (EU). The GDPR gives control to citizens over their personal data and aims to simplify regulations for businesses operating internationally.

On May 25th, the new regulation will replace the Data Protection Directive of 1995. The scope of the EU data protection law applies to all companies processing data belonging to EU residents. The territorial scope of the GDPR is far wider than current regulations in that it will also apply to non-EU businesses who market their products to people in the EU, or who monitor the behavior of people in the EU.

While the new data protection regulations will make it easier for non-European companies to comply, there are strict data protection compliance guidelines to adhere to with severe penalties if they are not followed. Full details of the GDPR can be found here https://www.eugdpr.org/ and here https://gdpr-info.eu/

What is Liftoff doing to ensure compliance with GDPR?

Liftoff currently processes customer, consumer and partner data in compliance with the EU-US and Swiss-US Privacy Shield Framework. Liftoff is also a participant in the TRUSTe’s privacy certification program.

Additionally, Liftoff is actively evaluating the updated GDPR requirements and working with Osborne Clarke, a law firm specializing in EU data protection law, to audit and assess all Liftoff systems and processes involving customer data, to ensure Liftoff is in full compliance ahead of the May deadline.