In compliance with GDPR regulations, Piano offers robust features for data management and export within its platform. This article outlines key functionalities related to GDPR compliance and the export of tracking data via API endpoints.
GDPR Compliance
Piano adheres to GDPR guidelines by providing mechanisms for data deletion and anonymization. As part of our commitment to privacy protection, we have introduced improvements to ensure compliance with GDPR regulations for unregistered users, particularly within the European Union (EU) customer base.
Data Deletion by Browser ID
To meet GDPR requirements effectively, we have added a new GDPR deletion endpoint /publisher/gdpr/deleteAnon. This enhancement enables publishers to delete stored data based on browser ID, addressing specific user data deletion requests received from end-users.
The Browser ID can be retrieved by the user from their browser - in this article, you can find more details about this identifier.
Data Export in CSV Format
To facilitate data management and analysis, we have established export API endpoints that allow:
-
/export/schedule/vx/gdpr/user-id- Retrieval of tracking data for registered users (by UID) -
/export/schedule/vx/gdpr/browser-id- Retrieval of tracking data for unregistered users (by Browser ID)
The export process involves several steps:
-
Export Status Check: After scheduling a report via the designated endpoints above, publishers can monitor the export status using the provided API endpoint
/export/status. More details are available here.
-
Report Download: Once the export status changes to "FINISHED," publishers can download the CSV report using the API endpoint
/export/download/urlor via Reports > Download center in the Piano dashboard’s UI interface.