What Singular is doing with the Mobile Attribution Privacy working group
Will we soon be living in a post-IDFA world? It’s hard to say, but there are some reasons to prepare for it, which is why Singular has established the Mobile Attribution Privacy working group.
In 2019 so far there have been over 1,000 privacy breaches exposing over 146 million records. That’s just one reason why privacy and data security are becoming increasingly important, both from a regulatory standpoint and a customer trust point of view.
Recently, we met with representatives from companies including Lyft, AirBnB, Twitter, WB Games, Jam City, DraftKings, Oracle, Branch, Unity, the Mobile Marketing Association, LUMA Partners, and many others as part of a Mobile Attribution Privacy (MAP) working group. Our goal as advertisers and vendors: talk about options for measuring marketing while serving the privacy needs and desires of customers and users … even if the IDFA goes away.
Post-IDFA: what we talked about
In our first meeting, we talked about whether this was mobile and web, or mostly just mobile. The consensus: we’re going to keep this primarily focused on mobile attribution.
We also talked about Google advertising ID, and whether that should be part of the conversation. Though it seems that Google would be much less likely to abandon their primary identifier than Apple, we decided that we should look at global solutions for both Android and iOS.
One of the things we unanimously agreed on: we need to be focused on the needs of people: users and customers. If something doesn’t matter to users, it shouldn’t matter to us, and conversely, if it does, then it needs to be a core concern for marketers and marketing technology vendors.
This is one of those things that sounds simple but is actually complex.
For example, Apple cares first and foremost about their users, but to get these users to the iOS platform they need content providers to thrive and have an economic incentive to build for it. As one participant said: “People choose a phone based on where they can play Fortnite.”
And while big content creators could survive removal of device identifiers (by switching to something else – like an email address), many smaller ecosystem players would struggle to survive, as this will greatly deteriorate people’s ability to know who their users are and where they came from.
Broadening the conversation
Two interesting ideas that have legs came up. And they’re both ways to broaden the conversation.
One is to bring this discussion to the IAB, the Interactive Advertising Bureau, and perhaps create a working group focused on Mobile Identifiers. The IAB, after all, is dealing with other privacy-related topics. Another is to view this area as an extension to the GDPR and CCPA (California Consumer Privacy Act) legislation. Both are valid suggestions, and we’ll be looking into both options.
And finally, we spoke about multiple device identifier options:
- Auto-rotating (short-lived) IDFAs
If the IDFA auto-rotated, say weekly or monthly, Apple would limit how long you can track any particular user. This should permit proper advertising attribution. One question yet to answer: can an app developer stitch the rotating IDFAs together as long as the user is active within their app? Some would consider that app activity as a “meaningful relationship” which may permit doing so; others might consider it a violation of privacy.
- Google Play Referrer equivalent
Google has an excellent mechanism for passing referrer context into Google Play that the app can then query upon installation. Again, this would enable attribution. The obvious problem here is that enabling this type of link tracking makes it impossible to prevent vendors from appending a device ID, click ID, or other form of identification that could be connected to a specific person.
This is somewhat of a similar concept: you pass info to the App Store, but it’s not exposed to the installed app. The data is controlled by the operating system, and the amount of data you can pass along is greatly limited. In its current form this feels immature, but that could change with serious interest from major players.
And the conversation continues
Ultimately, we’re going to continue the conversation. We’re also going to broaden it to new players, and we invite anyone who is an interested party to be part of the next meeting of the Mobile Attribution Privacy group, either in person or via videoconferencing.
Email us at firstname.lastname@example.org to join the conversation!