Adobe Experience Platform GDPR Technical Overview

Make the most of our GDPR product updates for your Adobe Experience Platform.

The European Union’s General Data Protection Regulation (GDPR) harmonizes and modernizes data protection requirements in the EU. Although reaching GDPR-readiness may require some adjustments by businesses, our GDPR product updates in Adobe Experience Platform can help you take advantage of this new opportunity. We’re dedicated to ensuring our products meet consumer privacy, support all your enterprise implementations, and improve governance.

Increase trust.
Strengthen relationships by giving individuals more control and transparency over their personal data.

Execute multiple GDPR requests faster.
Send GDPR requests via API to the Adobe Experience Cloud solutions.

Protect your business.
Meet GDPR requirements and mitigate regulatory risks.

Additional GDPR updates to  Adobe Experience Platform.

As one of your Data Processors, Adobe built the following data privacy features in Adobe Experience Platform to help you become GDPR-ready with Adobe Experience Cloud products.

An API to process GDPR requests

Under GDPR, in certain instances, data subjects have the right to access or delete their personal data (GDPR request) collected by data controllers. When your data is in Adobe Experience Cloud, you can use the Adobe GDPR API to more quickly and conveniently manage GDPR requests from data subjects.

GDPR User Interface (UI)

Adobe’s GDPR UI allows you to execute GDPR requests using a visual interface. While the GDPR API requires implementation and is best suited for handling large amounts of requests at a time, this UI is especially designed for one-off requests and does not require implementation.

Curate and label your data

Before you can submit GDPR requests to Adobe Experience Cloud, you must identify and label the data types that should be referenced in a GDPR request.

An optional lightweight JavaScript tag to capture IDs

For Adobe’s GDPR API to process GDPR requests, it requires businesses to send us user IDs to associate the corresponding data. Consider deploying our GDPR ID retrieval tag on form pages where individuals submit GDPR requests to quickly capture those IDs and include them in your GDPR API call for processing.

Integrations with consent management tools

Evaluate your data collection and use practices to determine if and when consumers’ consent is needed. To help you obtain consents, we have three prebuilt integrations with these consent management solutions: Evidon, OneTrust, and TrustArc. These integrations are available within Launch by Adobe, our next-generation tag management system.

GDPR workflow (7 steps)

STEP ONE

Use our integrations with consent management tools to obtain consent when and if needed. Then, begin collecting authorized personal data.

STEP TWO

Label your data in Adobe solutions.

STEP THREE

Create a privacy portal to allow Data Subjects to submit GDPR requests.

STEP FOUR

Consider deploying our GDPR ID retrieval tag in your privacy portal to retrieve user IDs.

STEP FIVE

Implement Adobe’s GDPR API and submit GDPR requests to Adobe solutions for processing.

STEP SIX

Adobe will process and respond to data controllers’ GDPR requests via API.

STEP SEVEN

You will aggregate responses from any internal systems and  all of your data processors and submit a response to the data subject.