In preparation for GDPR, Adform closely analyzed the requirements of the GDPR and implemented enhancements to its products, processes, and policies on an on-going basis. In the lead up to, and the period after GDPR went into effect, Adform has worked to support our clients and partners in their own GDPR compliance initiatives.

In addition, Adform prepared and implemented new Data Processing Agreements (DPAs) designed to meet requirements outlined by the GDPR.

Adform is ISO 27001 certified annually which demonstrates that the data security and processes required by the GDPR are in place.

Adform is in an a-typical position as we as a company have always had the policy of only processing pseudonymous data which means that no directly identifiable data is allowed onto the platform. The platform automatically rejects data like names, emails, phone numbers and similar data. The database is scanned daily for violation by algorithms as well as manually. Furthermore, several measures like IP truncation are also enforced automatically and through violation scans.

Adform has actively enforced policies to avoid sensitive data. Adform fully support opt-out frameworks and provide full disclosure of Adform's activities to clients and data subjects.