What is GDPR and what is Acoustic Campaign doing to prepare for it?

The General Data Protection Regulation (GDPR) is a regulation intended to strengthen and unify data protection for individuals within the European Union (EU). The GDPR aims primarily to give control to citizens and residents over their personal data and to simplify the regulatory environment.

IBM is making several changes to Acoustic Campaign to assist organizations with the GDPR which goes into effect on May 25, 2018. The first set of updates in early 2018 will include new APIs to programmatically retrieve or remove the entirety of a customer’s personal data. Soon, you will be able to handle requests from people for data removal and data access by using the Right to Erasure and Right of Access GDPR Acoustic Campaign APIs.

Whether you accept Right to Erasure or Right of Access requests from individuals via a web portal, call center, or any other process, you can use the Acoustic Campaign GDPR APIs to process those requests in batch.

How will Acoustic Campaign’s technical preview of GDPR APIs help you?

Right to Erasure requests can be made by any data subject that wants their personal data to be removed by a data controller or processor. As a data controller, you can accept the request, ensure the authenticity or accuracy of the requestor as needed, and then submit requests in batch to Acoustic Campaign via the Right to Erasure API.

Right of Access requests can be made by any data subject that wants confirmation as to whether personal data concerning them is being processed and, where that is the case, access to that personal data. The Right of Access API provides you with the ability to collect and provide that information to individuals.

Frequently Asked Questions Link –  Acoustic Campaign General Data Protection Regulation FAQs

We would like to hear from you about this technology preview of Acoustic Campaign GDPR APIs. Please comment on Right to Erasure and Right of Access RESTful APIs for GDPR.

8 comments on"Acoustic Campaign General Data Protection Regulation readiness"

  1. Tom Coppedge May 11, 2018

    Hi, please provide status on when:
    1. The GDPR APIs for erasure and access can be used
    2. The APIs will be included in the Postman collection of WCA APIs
    3. The UI will support handling of DSARs

    Thanks!

    • Hi Tom,
      I reached out to Scott Hamilton to confirm and have CC’d you on the email.

      Thanks
      Jeri

  2. Hi there

    Can see the APIs included on Postman. Can you update on when the GDPR APIs for erasure and access can be used and also when the APIs will be included in the Postman collection of WCA APIs?

    Thanks

    • Hello Berta,
      I am gathering this info for you and will get back to you as soon as I know more.

      Thank you
      Jeri

    • Hello Berta,
      XML APIs are available in Postman. The GDPR and REST APIs will be available soon.

      Thank you
      Jeri

  3. Is WCA loading our subscriber data into MDM (GDPR registry profile) or is it our responsibility to load it?

    • Hello Mike,
      Can you confirm that MDM means Mobile Device Management? If no, can you explain what MDM means?

      Thank you
      Jeri

      • Hi Jeri, no MDM is the GDPR data registry profile system. This is where you actually register a person PI data so it can be discovered during a GDPR DAR process. To be honest I do not actually know what the MDM acronym stands for! So this is GDPR related, nothing to do with mobile devices.

Join The Discussion

Your email address will not be published. Required fields are marked *