Kantar, our global insights and market research group, has a chief privacy officer and a Privacy Network of experts from across its businesses. It meets every two months to discuss external and internal developments and identify any actions required and best practices to adopt. It has launched a series of standards and frameworks governing privacy and data practices. These include its Survey Data Sharing Framework, for companies working with data from survey responses, and its Passive Collection Framework, for companies managing behavioural data.
In addition to WPP training on privacy, all units within Kantar provide specific modules relevant to the privacy issues in their business. For example, a module is run on client sample data for employees handling research data that comes from the client rather than being collected by the agency.
Several parts of Kantar have achieved external accreditation for their market research and information security management systems. For example, Kantar Operations, which provides centralised market research and data services for the Kantar group, has been accredited with ISO 20252 in its UK and North American offices and ISO 27001 in its UK and India offices. George Pappachen, Kantar’s chief privacy officer, is a member of the privacy and legal affairs committees of the industry associations ESOMAR, MRA and CASRO and serves on the Public Policy Council of IAB, which guides the interactive industry.
Kantar works with a number of organisations to improve privacy practices. In 2012, this included work with TRUSTe on uniform data storage and retention protocols, to improve transparency for consumers over how their data will be used and how long it will be retained; with ESOMAR to launch an online platform that covers the entire industry and improves transparency around the use of data in research; and with W3C and others on issues around online tracking.
Pharmaceutical companies operate in a highly-regulated environment and their sales and marketing practices are subject to a high level of scrutiny. Sudler & Hennessey, a WPP agency providing pharmaceutical advertising, promotional and medical education services, has implemented a full compliance program to make sure its client work meets the highest ethical standards and to provide guidance to clients on regulatory compliance.
A full-time compliance officer works to embed high ethical standards, oversees training and policy implementation, and collaborates with clients on ethical issues. A Regulatory Ethical Monitoring Board, made up of senior leaders, oversees compliance efforts and reviews any cases of concern.
All employees must understand relevant regulations and comply with the agency’s healthcare compliance guidelines. New hires complete compliance training within the first 45 days of employment, and receive regular communications on ethics and compliance. These include examples of ethical dilemmas and scenarios employees may encounter in their work, to help promote discussion on these topics.