Last chance to save on Digiday Publishing Summit passes is February 9
This article is a WTF explainer, in which we break down media and marketing’s most confusing terms. More from the series →
Pity the privacy compliance officers. This year companies have to adapt to five new state-level privacy laws in the U.S., which means companies’ privacy and legal teams have to figure out how to comply with the various laws and their varying requirements for how people’s personal information can be collected and used for advertising purposes and otherwise.
Fortunately for companies, the Interactive Advertising Bureau has devised a privacy compliance framework called the Multi-State Privacy Agreement that aims to aid compliance across all five state-level privacy laws at once.
“There are disclosures of personal information that happen in the digital advertising supply chain where there are presently no contracts that exist at all, but there need to be contracts going forward,” said IAB evp and general counsel Michael Hahn.
The MSPA — in conjunction with the corresponding Global Privacy Platform — effectively functions as a contract-creating trigger to institute agreements between the companies collecting people’s personal information and the companies that may access that data through the programmatic advertising supply chain.
Sound complicated? It is and it isn’t, as the video below explains.
More in Marketing
Here’s what else a $8M, 30-second Super Bowl budget can purchase in 2026
Digiday once again takes a look at what $8 million can afford a buyer elsewhere elsewhere in the media landscape.
ICE has become a national issue for Target
More groups and activists outside of Minnesota have also been calling out Target’s relative silence on ICE activity in its home state.
WTF is Google’s Universal Commerce Protocol?
Google launched its UCP last month — a foundational layer which looks to enable agentic shopping within the tech giant’s ecosystem.