This article details the implementation steps for Privacy Management in Campaign Classic.

For a general presentation on Privacy Management, refer to this page.

Implementation steps for Adobe Campaign Standard are detailed in this page.

This information applies to both GDPR and CCPA. The opt-out for the Sale of Personal Information, which is specific to CCPA, is explained in this section.

Caution:

Installation procedures described in this document are applicable starting Campaign Classic 18.4 (build 8931+). If you are running on a previous version, refer to this technote.

About Privacy Requests

In order to help you facilitate your Privacy readiness, Adobe Campaign now allows you to handle Access and Delete requests.

The Right to Access is the right for the Data Subject to obtain from the Data Controller confirmation as to whether or not personal data concerning them is being processed, where and for what purpose. The controller shall provide a copy of the personal data, free of charge, in an electronic format.

Also known as Data Erasure, the Right to be Forgotten (delete request) entitles the Data Subject to have the Data Controller erase his/her personal data, cease further dissemination of the data, and potentially have third parties halt processing of the data.

Let's see how you can create Access and Delete requests and how Adobe Campaign processes them.

Principles

Adobe Campaign offers Data Controllers two possibilities for performing Privacy access and delete requests:

  • Via the Adobe Campaign interface: for each Privacy request, the Data Controller creates a new privacy request in Adobe Campaign
  • Via the API: Adobe Campaign provides an API that allows the automatic process of Privacy requests using SOAP.

Prerequisites

Adobe Campaign offers Data Controllers tools to create and process Privacy requests for data stored in Adobe Campaign. However, it is the Data Controller's responsibility to handle the relationship with the Data Subject (email, customer care or a web portal). It is your responsibility as a Data Controller to confirm the identity of the Data Subject making the request and confirming the data returned to requester is about the Data Subject.

Install the Privacy package

In order to use this feature, you need to install the Privacy Data Protection Regulation package via the Tools > Advanced > Import package > Adobe Campaign Package menu. For more information on how to install packages, refer to the detailed documentation.

Two new folders, specific to Privacy are created under Administration > Platform:

  • Privacy Requests: this is where you will create your Privacy requests and track their evolution.
  • Namespaces: this is where you will define the field that will be used to identify the Data Subject in the Adobe Campaign database.
GDPR Folders

In Administration > Production > Technical workflows, three technical workflows run every day to process Privacy requests.

GDPR Workflows
  • Collect privacy requests: this workflow generates the recipient's data stored in Adobe Campaign and makes it available for download in the privacy request's screen.
  • Delete privacy requests data: this workflow deletes the recipient's data stored in Adobe Campaign.
  • Privacy request cleanup: this workflow erases the access request files that are older than 90 days.

In Administration > Access Management > Named rights, the Privacy Data Right named right has been added. This named right is required for Data Controllers in order for them to use privacy tools. This allows them to create new requests, track their evolution, use the API, etc.

GDPR Rights

Managing Privacy Requests

Namespaces

Before creating Privacy requests, you need to define the namespace you will use. The namespace is the key that will be used to identify the Data Subject in the Adobe Campaign database. Out-of-the-box, three namespaces are available: email, phone and mobile phone. If you need a different namespace (a recipient custom field, for example), you can create a new one from Administration > Platform > Namespaces.

Create a Privacy request

Adobe Campaign allows you to create your Privacy requests and track their evolution. To create a new Privacy request, follow these instructions:

  1. Access the Privacy request folder under Administration > Platform > Privacy Requests.

    GDPR Folders
  2. This screen allows you to view all the current Privacy requests, their status and logs. Click New to create a new Privacy request.

    GDPR Create
  3. Select the Request type (Access or Delete), select a Namespace and enter the Reconciliation value. If you're using email as the namespace, type in the Data Subject's email.

    GDPR Create - 2

    The Privacy technical workflows run once every day and process each new request:

    • Delete request: the recipient's data stored in Adobe Campaign is erased.

    • Access requests: the recipient's data stored in Adobe Campaign is generated and made available as an XML file in the left part of the request screen.

    GDPR - Create 3

List of tables

When performing a Delete or Access Privacy request, Adobe Campaign searches all the Data Subject's data based on the Reconciliation value in all the tables that have a link to the recipient table (own type).

Here is the list of out-of-the-box tables that are taken into account when performing Privacy requests:

  • Recipients (recipient)
  • Recipient delivery log (broadLogRcp)
  • Recipient tracking log (trackingLogRcp)
  • Archived event delivery log (broadLogEventHisto)
  • Recipient list content (rcpGrpRel)
  • Visitor offer proposition (propositionVisitor)
  • Visitors (visitor)
  • Subscription history (subHisto)
  • Subscriptions (subscription)
  • Recipient offer proposition (propositionRcp)

If you created custom tables that have a link to the recipient table (own type), they will also be taken into account. For example, if you have a transaction table linked to the recipient table and a transaction details table linked to the transaction table, they will be both taken into account.

Caution:

If you perform Privacy batch requests using profile deletion workflows, please take into consideration the following remarks:

  • Profile deletion via workflows do not process children tables.
  • You need to handle the deletion for all the children tables.
  • Adobe recommends that you create an ETL workflow that add the lines to delete in the Privacy Access table and let the Delete privacy requests data perform the deletion. We suggest to limit to 200 profiles per day to delete for performance reasons.

Different statuses of a Privacy request

Here are the different statuses for Privacy requests:

  • New / Retry pending: in progress, the workflow has not processed the request yet.
  • Processing / Retry in progress: the workflow is processing the request.
  • Delete pending: the workflow has identified all the recipient data to delete.
  • Delete in progress: the workflow is processing the deletion.
  • Delete Confirmation Pending: (Delete request in 2-steps process mode) the workflow has processed the Access request. Manual confirmation is requested to perform the deletion. The button is available for 15 days.
  • Complete: the processing of the request has finished without an error.
  • Error: the workflow has encountered an error. The reason appears in the list of privacy requests in the Request status column. For example, Error data not found means that no recipient data matching the Data Subject's Reconciliation value has been found in the database.

2-step process

By default, the 2-steps process is activated. When you create a new Delete request using this mode, Adobe Campaign always performs an Access request first. This allows you to check the data before confirming the deletion.

You can change this mode from the privacy request edition screen. Click on Advanced settings.

GDPR - 2-step

With the 2-steps mode activated, the status of a new Delete request changes to Confirm Delete Pending. Download the generated XML file from the privacy request screen and check the data. To confirm erasing the data, click on the Confirm delete data button.

GDPR - 2-step - 2

JSSP URL

When processing Access requests, Adobe Campaign generates a JSSP that retrieves the recipient's data from the database and exports it into an XML file stored on the local machine. The JSSP URL is defined as below:

"$(serverUrl)+'/nms/gdpr.jssp?id='+@id"

where @id is the privacy request ID

This URL is stored in the "File location" (@urlFile) field of the Privacy Requests (gdprRequest) schema.

The information is available in the database for 90 days. Once the request is cleaned up by the technical workflow, the information is removed from the database and the URL becomes obsolete. Please check that the URL is still valid before downloading the data from a web page.

Here is an example of a Data Subject's data file:

GDPR Access File

Data Controllers can easily create a web application including the corresponding JSSP URL to make the Data Subject's data file available from a web page.

GDPR JSSP

Here is a code snippet you can use as an example in the web application Page activity.

GDPR JSSP2
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head> <meta http-equiv="Content-Language" content="en"> <meta http-equiv="Content-Type" content="text/html; charset=utf-8" /> <link rel="stylesheet" type="text/css" href="/nl/webForms/landingPage.css"/> <title>Clickthrough</title> <style type="text/css" media="all"> /* override formulary area */ .formulary { top: 200px; position: absolute; left: 0; } </style> </head> <body style="" class="">
<center>
<div id="wrap">
<div id="header"><img class="nlui-widget" alt="placeholder_header" src="/nms/img/contentModels/placeholder_header.png" unselectable="on" />
<div class="header-title center-title">DOWNLOAD GDPR DATA</div>
<div class="formulary center-formulary"><form>
<div class="button large-button"><a href=[SERVER_URL]/nms/gdpr.jssp?id=13000" data-nl-type="externalLink">CLICK TO DOWNLOAD</a></div>
</form></div>
</div>
<div id="content">
<div class="row">
<div class="info">
<div class="desc">
<div class="title">EFFICIENCY</div>
<div class="desc">Our service is guaranteed to improve your efficiency. Increase performance and use our high-technology service to implement even the most ambitious of projects.</div>
</div>
</div>
</div>
</div>
<div id="footer">
<div style="text-align: center;">
<div style="float: left;"><a href="#">Contact us</a></div>
<div style="float: right;">&copy; Copyrights</div>
<div><a href="#"><img title="facebook" class="nlui-widget" alt="facebook" src="/xtk/img/facebook.png" unselectable="on" /></a> <a href="#"><img title="Twitter" class="nlui-widget" alt="twitter" src="/xtk/img/twitter.png" unselectable="on" /></a> <a href="#"><img title="Google" class="nlui-widget" alt="google_plus" src="/xtk/img/google_plus.png" unselectable="on" /></a> <a href="#"><img title="Linkedin" class="nlui-widget" alt="Linkedin" src="/xtk/img/linkedin.png" unselectable="on" /></a></div>
</div>
</div>
</div>
</center>
</body> </html>

Since the access to the Data Subject's data file is restricted, the web page anonymous access must be disabled. Only operator with the Privacy Data Right named right can log on to the page and download the data.

Using the API

Adobe Campaign provides an API which allows you to setup an automatic Privacy request process.

With the API, the general Privacy process is the same as using the interface. The only difference is the creation of the Privacy request. Instead of creating the request in Adobe Campaign, a POST containing the request information is sent to Campaign. For every request, a new entry is added in the Privacy Requests screen. The Privacy technical workflows then process the request, the same way as for a request added using the interface.

If you're using the API to submit Privacy requests, we recommend that you leave the 2-steps process activated for the first Delete requests, in order to test the returned data. When your tests are finished, you can deactivate the 2-steps process so that the Delete request process can run automatically.

The CreateRequestByName JS API is defined as follows.

Note:

If you were using the gdprRequest API, you can still use it but it is recommended to use the new privacyRequest API.

Caution:

The Privacy Data Right named right is required to use the API.

<method library="nms:gdpr.js" name="CreateRequestByName" static="true">
 <help>Create a new GDPR Request using namespace internal name</help>
 <parameters>
 <param name="namespaceName" type="string" desc="Namespace internal name"/>
 <param name="reconciliationValue" type="string" desc="Reconciliation value"/>
 <param name="type" type="long" desc="Reconciliation value"/>
 <param name="confirmDeletePending" type="boolean" desc="Request confirm before deleting data"/>
 <param name="id" type="long" inout="out" desc="ID of newly created request"/>
 </parameters>
 </method>

Invoking the API externally

Here is an example of how you can invoke the API externally (authentication via the API and details about the Privacy API specifically). For more information on the Privacy API, consult the API documentation. You can also consult the Web service calls documentation.

First of all, you need to perform the authentication via the API:

  1. Download the xtk:session WSDL via this url: <server url>/nl/jsp/schemawsdl.jsp?schema=xtk:session

  2. Use the "Logon" method and pass in a username and password as parameters in the request. You will get a response containing a session token. Here is an example using SoapUI.

    GDPR API
  3. Use the returned Session Token as the authentication for all subsequence API calls. It expires after 24 hours

Then you invoke the Privacy API:

  1. Download the WSDL from this URL: <server url>/nl/jsp/schemawsdl.jsp?schema=nms:privacyRequest

  2. Then you can use CreateRequestByName to create a specific Privacy request. Here is an example using the CreateRequestByName. Notice how we use the session token provided above as authentication. The response is the ID of the created request.

    GDPR API 2

Invoking the API from a JS

Here is an example of how you can invoke the API from a JS within Campaign Classic.

loadLibrary("nms:gdpr.js");
/**************************** 
This code calls an API to create new Privay request on the DB
It requires 4 parameters below
Feel free to change parameter values 
****************************/
// 1. namespace internal name
var namespaceName = "defaultNamespace1";
// 2. reconciliation value for privacy request
var reconciliationValue = "example@adobe.com";
// 3. privacy request type
// GDPR_REQUEST_TYPE_ACCESS = 1;
// GDPR_REQUEST_TYPE_DELETE = 2;
var requestType = GDPR_REQUEST_TYPE_ACCESS;
// 4. confirm deleting data required
// value : true or false
var bConfirmDeletePending = true;
// BEGIN
var requestId = nms.privacyRequest.CreateRequestByName(namespaceName,reconciliationValue, requestType, bConfirmDeletePending);
// User can use a simple queryDef with requestID as a parameter to check request status

Opt-out for the Sale of Personal Information (CCPA)

CCPA (California Consumer Privacy Act) provides California residents new rights in regards to their personal information and imposes data protection responsibilities on certain entities whom conduct business in California.

The configuration and usage of Access and Delete requests are common to both GDPR and CCPA. This section presents the opt-out for the sale of personal data, which is specific to CCPA.

In addition to the Consent Management tools provided by Campaign (see this page), you have the possibility to track whether a consumer has opted-out for the sale of Personal Information. 

A consumer decides, through your system, that he/she does not allow his/her personal information from being sold to a third-party. In Adobe Campaign, you will be able to store and track this information.

For this to work, you need to extend the Profiles table and add an Opt-Out for CCPA field.

Caution:

It is the responsibility of the customer to keep track of the request dates for CCPA. As a technology provider, we only provide a way to Opt-Out. It is the responsibility of the customer to receive the data subject's request and use the available capability.

Prerequisite

To leverage this information, you need to create this field in Adobe Campaign Classic. For this, you will add a boolean field to the Recipient table. When a new field is created, it is automatically supported by the Campaign API.

If you use a custom recipient table, you also need to perform this operation.

For more detailed information on how to create a new field, refer to the documentation.

Caution:

Modifying schemas is a sensitive operation which must be performed by expert users only.

  1. Click on the Tools > Advanced > Add new fields, select Recipients as the Document type and click on Next. Read more

    ccpa1
  2. For the Field type, select SQL field. For the Label, use Opt-Out for CCPA. Select the 8-bit integer (boolean) type and define the following unique Relative path: @OPTOUTCCPA. Click on FinishRead mode

     

    ccpa2

    This will extend or create the Recipient (cus) schema. Click on it and verify that the field has been correctly added.

    ccpa3
  3. Click on the Configuration > Input forms node of the explorer. In Recipient (nms), under "General Package", add an <input> element and use, for the xpath value, the relative path defined in step 2. Read more

    <input  colspan="2" type="checkbox" xpath="@OPTOUTCCPA"/>
    ccpa4bis
  4. Disconnect and re-connect. Follow the steps described in the next section to verify that the field is available on a recipient's details. 

Usage

It’s the responsibility of the data controller to populate the value of the field and follow the CCPA guidelines and rules concerning data selling.

To populate the values, several methods can be used:

  • using Campaign’s interface by editing the recipient's details
  • using the API
  • via a data import workflow

You should then ensure that you never sell to any third party the personal information of profiles who have opted-out.

To change the opt-out status, go to Profiles and Target > Recipients and select a recipient. In the General tab, you will see the field configured in the previous section.

ccpa5

Configure the recipients list to display the op-out column. To learn how to configure lists, refer to the detailed documentation.  

ccpa6

You can click on the column to sort recipients according to the opt-out information. You can also create a filter to only display recipients who have opted-out. Read more

ccpa7

This work is licensed under a Creative Commons Attribution-Noncommercial-Share Alike 3.0 Unported License  Twitter™ and Facebook posts are not covered under the terms of Creative Commons.

Legal Notices   |   Online Privacy Policy