IAB Europe on the Hook for GDPR Infringement Over Pop-Up Consent Banner Use

Organization could have six months to change its framework

Mark your calendar for Mediaweek, October 29-30 in New York City. We’ll unpack the biggest shifts shaping the future of media—from tv to retail media to tech—and how marketers can prep to stay ahead. Register with early-bird rates before sale ends!

Data regulation in Europe could be about to get a whole lot more complex.

On Friday, ad trade body the Interactive Advertising Bureau (IAB) Europe shared updates that Belgium’s data protection authority (APD) will likely find the trade body in breach of General Data Protection Regulations (GDPR).

At the heart of the matter is whether IAB Europe is classed as a data controller, which means that it determines the means of use of personal data, as opposed to a data processor, which does not own the information it collects.

The investigation is based on the Irish Council of Civil Liberties’ (ICCL) complaints which focus on the IAB Europe’s Transparency & Consent Framework (TCF), the industry mechanism which conveys consent in the open ad exchange bidstream through using pop-up ads on sites.



Subscribe today!

To Read the Full Story Become an Adweek+ Subscriber

View Subscription Options

Already a member? Sign in