- May 19, 2011
- First Name
TreasureData is fired by Clarivoy in http://tags-cdn.clarivoy.com/spincar/td/tva/loader.js, which is fired by u.clarivoy.script.setAttribute("src", "//tags-cdn.clarivoy.com/spincar/td/tva/loader.js") in integrator.swipetospin.comThings are still coming to light (offline), but it might be time to give SpinCar the benefit of the doubt. Even though it is questionable that this exact thing seems to have happened twice now
Everything I'm about to say is purely my opinion on reading things. I have not spoken to anyone at SpinCar or Clarivoy.
I think SpinCar has had enormous growth quickly and :thumbup: to them for it! When that rocket ship blasts off it is difficult to do everything cleanly. Judging by the use of dealership names in the script I'm going to guess some quick code was thrown together to get something out the door. The word sloppy comes to mind, but it is understandable when moving at their pace. Plus, this is the advertising side of the car business - it ain't medical equipment or space engineering. My point is that this is forgivable. All it takes is transparency and an apology.
On collecting lead data. Is this an accident? Is it being sold for profit somewhere? Does SpinCar even know it is happening? Again, this looks sloppy without a public explanation. If I were a SpinCar dealer I'd want to know EXACTLY what is happening with my customers' personal information off of my website's lead forms. There are potential legal issues to be mindful of.
And if I were SpinCar I'd be diving deep into what "TreasureData" is and where the collected lead data is flowing to. Might there be a partner in the script that did not disclose all that was happening?
With all that's going on in this thread, we will be hosting Jeffrey Tognetti on the next RefreshFriday to focus on (AGAIN) what it means to have scripts on your website. This time the focus will be on the penalties coming in 2020 from California's version of GDPR.
Understood about Criteo...however, it may NOT be the case entirely. Meaning if there was a retargeting campaign in place before where the U variable has a dealer ID and that campaign is no longer active then, in theory, it would still be collecting data.
Hmmmmmm, I haven't always seen eye to eye with Jeffrey on everything, but he's right. At best this is sloppy. When it comes to my data I don't trust anybody. And I mean anybody, including the OEM's. And as much as I hate it, the CCPA is going to shine a light on the dark data spots of the car business. Dealers are going to have to KNOW what's going on with their data. All of these companies are going to have to sign a boatload of disclosure statements about who they share data with and what they do with it. It's gonna get really ugly before it gets cleaned up.
Finally, my larger point is, that there are other people imbedded in the script that are in fact collecting data, inclusive of PII.
(This I know for a fact)
The dealers we have as clients did NOT consent to this and had run-ins previously around this but yet it is happening again. That is the very direct point I'm making.